Attempt at Obfuscated version of SharpCollection

Athena aims to aggregate vulnerability information from multiple sources and vendor bulletins, providing real-time push notifications to enhance security monitoring and response capabilities.

前端低代码框架，通过 JSON 配置就能生成各种页面。

Android APP漏洞之战系列，主要讲述如何快速挖掘APP漏洞

Scope gathering tool for HackerOne, Bugcrowd, Intigriti, YesWeHack, and Immunefi!

（由于fofa接口改变，所以该脚本已经失效了哦）通过公司名称，在fofa上搜索可能存在通用产品的公司；如果想挖掘cnvd证书，可导出注册资金大于5000w的公司到这个脚本中进行通用系统收集。

CRUSH aims to crawl historical vulnerability data from major platforms and monitor daily updates.

golang learning documentation

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

Hacker tools on Go (Golang)

A curated list of awesome Go frameworks, libraries and software

猫蛋儿安全团队编写的poc能报就能打。企业微信、海康、Metabase、Openfire、泛微OA......

《云安全攻防入门》教材

Find, verify, and analyze leaked credentials

Gospider - Fast web spider written in Go

A next-generation crawling and spidering framework.

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

Mining URLs from dark corners of Web Archives for bug hunting/fuzzing/further probing

颈椎病腰突康复指南，为程序员群体提供简单可靠的康复指南。

A tool for adding new lines to files, skipping duplicates

MagicRecon is a powerful shell script to maximize the recon and data collection process of an objective and finding common vulnerabilities, all this saving the results obtained in an organized way …

A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.

403/401 Bypass Methods + Bash Automation + Your Support ;)

目录扫描+JS文件中提取URL和子域+403状态绕过+指纹识别

EHole(棱洞)魔改。可对路径进行指纹识别；支持识别出来的重点资产进行漏洞检测(支持从hunter和fofa中提取资产)支持对ftp服务识别及爆破

KCon is a famous Hacker Con powered by Knownsec Team.

这是一个用于IP和域名碰撞匹配访问的小工具，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。

A list of interesting payloads, tips and tricks for bug bounty hunters.

Top disclosed reports from HackerOne