woodandfire's repositories
Awesome-Pen-Test
Experiment with penetration testing Guides and Tools for WordPress, iOS, MacOS, Wifi and Car
badvpn
NCD scripting language, tun2socks proxifier, P2P VPN
clair
Vulnerability Static Analysis for Containers
cordova-plugin-tun2socks
Cordova plugin to enable a system-wide VPN for Android devices.
CryptoNoter
In-Browser Javascript Monero Miner for websites / Payout towards personal XMR wallet
fern-wifi-cracker
Automatically exported from code.google.com/p/fern-wifi-cracker
gfw_whitelist
gfw_whitelist
go-socks5
SOCKS5 server in Golang
gotun2socks
A Golang implementation of tun2socks
goWAPT
Go Web Application Penetration Test
hawkeye
A project security/vulnerability/risk scanning tool
kcp-go
A Production-Grade Reliable-UDP Library for golang
kcptun
A Secure Tunnel Based On KCP with N:M Multiplexing
MailSniper
MailSniper is a penetration testing tool for searching through email in a Microsoft Exchange environment for specific terms (passwords, insider intel, network architecture information, etc.). It can be used as a non-administrative user to search their own email, or by an administrator to search the mailboxes of every user in a domain.
My-CTF-Web-Challenges
Collection of CTF Web challenges I made
nginx-rtmp-module
NGINX-based Media Streaming Server
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Reptile
LKM Linux rootkit
ReverseProxy
ReverseProxy in golang
Scanners-Box
The toolbox of open source scanners - 安全行业从业者自研开源扫描器合辑
SecLists
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
vuejs-serverside-template-xss
Demo of a Vue.js app that mixes both clientside templates and serverside templates leading to an XSS vulnerability
VulApps
快速搭建各种漏洞环境(Various vulnerability environment)
vuls
Vulnerability scanner for Linux/FreeBSD, agentless, written in Go
WAF-Bypass
WAF Bypass Cheatsheet
XSStrike
XSStrike is an advanced XSS detection and exploitation suite.
yii2-user
Flexible user registration and authentication module for Yii2
yii2admin
通用的yii2后台,基于Yii2的advanced应用程序模板,整合RBAC、Menu、Config、Migration多语言、RESTfull等等...
ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.