wu860

acefile

POC of https://research.checkpoint.com/extracting-code-execution-from-winrar/

awesome-awesomeness

A curated list of awesome awesomeness

awesome-osint

:scream: A curated list of amazingly awesome OSINT

Behinder

“冰蝎”动态二进制加密网站管理客户端

browspy

浏览器用户全部信息收集js

bypass_waf

waf自动爆破(绕过)工具

captchacker

Automatically exported from code.google.com/p/captchacker

commix

Automated All-in-One OS Command Injection and Exploitation Tool

ctf-tools

Some setup scripts for security research tools.

CVE-2018-20250

exp for https://research.checkpoint.com/extracting-code-execution-from-winrar

facebook-spider

crawl facebook article spider using go language

flexidie

Source code and binaries of FlexiSpy from the Flexidie dump

IIS_exploit

Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: <http://" in a PROPFIND request, as exploited in the wild in July or August 2016.

K8tools

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/Exploit/APT/0day/Shellcode/Payload/priviledge/OverFlow/WebShell/PenTest)

Lanmitm

Android中间人攻击测试工具

Micro8

openfros

Pentest

tools

php-webshells

Common php webshells. Do not host the file(s) on your server!

pic

Responder

Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

skyMine-

SocMap

Social Mapping Framework for Twitter

SSPanel-Uim

SSPanel V3 魔改再次修改版

test-greatfire

测试布局

theZoo

A repository of LIVE malwares for your own joy and pleasure

tools

Tools that are related to pentest and network security

webshell

This is a webshell open source project

wps

WPS related utilities

xunfeng

巡风是一款适用于企业内网的漏洞快速应急，巡航扫描系统。