Automatic SQL injection and database takeover tool

Port Scanner & Banner Identify From TianXiang

中国蚁剑是一款跨平台的开源网站管理工具。AntSword is a cross-platform website management toolkit.

WebSocket 内存马/Webshell，一种新型内存马/WebShell技术

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Log4j2 RCE Passive Scanner plugin for BurpSuite

Nemo是用来进行自动化信息收集的一个简单平台，通过集成常用的信息收集工具和技术，实现对内网及互联网资产信息的自动收集，提高隐患排查和渗透测试的工作效率。

This repo is archived. Thanks for wooyun! 乌云公开漏洞、知识库爬虫和搜索 crawl and search for wooyun.org public bug(vulnerability) and drops

OAExploit一款基于产品的一键扫描工具。

Cyber Security ALL-IN-ONE Platform

A frida tool to dump dex in memory to support security engineers analyzing malware.

Clone this repo to build Frida

Postern binaries & documents & configurations

JNDI注入测试工具（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc）