sqlmap被动代理小工具

对权限绕过自动化bypass的burpsuite插件

爬网站JS文件，自动fuzz api接口，指定api接口（针对前后端分离项目，可指定后端接口地址），回显api响应

This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter

A simple C keylogger for Linux

开发者边车，github打不开，github加速，git clone加速，git release下载加速，stackoverflow加速

翻墙、免费翻墙、免费科学上网、免费节点、免费梯子、免费ss/ssr/v2ray/trojan节点、蓝灯、谷歌商店、翻墙梯子 、外网游戏、国外游戏、vpn、vpn推荐、每天更新、上外网、外网、V2rayN、Qv2ray、V2rayW、V2RayS、Mellow、V2rayX、V2rayU、ClashX、Kitsunebi、BifrostV、i2Ray 、Quantumult、Surge 4、w…

汉化版sqlmap，对于英语不好的朋友们很友好。本项目由sqlmap汉化而来，支持Python3及全系统，v2细节也已汉化，全开源无任何后门等，各位不放心可随便查!

渗透测试常用密码字典合集(持续更新)

Burp的JS API接口过滤插件

Cyber Security ALL-IN-ONE Platform

Burp插件，根据自定义来达到对数据包的处理（适用于加解密、爆破等），类似mitmproxy，不同点在于经过了burp中转，在自动加解密的基础上，不影响APP、网站加解密正常逻辑等。

BlackBox is a virtual engine, it can clone and run virtual application on Android, users don't have to install APK file to run the application on devices. BlackBox control all virtual applications,…

基于Burp插件开发打造渗透测试自动化

前端参数加密渗透测试通用解决方案

上班摸鱼工具集

机场推荐/SSR V2ray节点订阅机场/镜像直连/工具推荐

google-access-helper谷歌访问助手2021全版本合集，访问谷歌商店，谷歌搜索，谷歌地图等...

Python解析域名生成Hosts文件

Switch hosts quickly!

镜像：https://scaffrey.coding.net/p/hosts/git / https://git.qvq.network/googlehosts/hosts

The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.

A SqlMap GUI

Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势

Rockyou for web fuzzing

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules thro…

一款内网综合扫描工具，方便一键自动化、全方位漏扫扫描。

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security