xwaf. Automatic bypass (brute force) waf
994xcdn. Try to find out the real ip behind cdn
336stockbook. 豆瓣经典证券书籍收录并排名
190books.
106MyToolKit. 【Not maintained】sqlmap对所有目标及其所有旁站批量自动化sqli
95xwifi. Auto crack wifi in macOS
91xupload. A tool for automatically testing whether the upload function can upload webshell
54xwebshell. 免杀webshell
37exp10it. A packege about newtork security
31xlearn. 记录安全界大牛分享经验
21mytools. JavaScript
13paper.
12myblog. HTML
12mynav. Fork from https://github.com/joxeankoret/mynav, works with IDA 7.0
11note.
11xenc. 用于移动端app加密数据的安全测试
9awesome-python-cn. Python资源大全中文版,内容包括:Web框架、网络爬虫、网络内容提取、模板引擎、数据库、数据可视化、图片处理、文本处理、自然语言处理、机器学习、日志、代码分析等
8sqlmap_my_tamper. Python
73xp10it.github.io. HTML
6vulture. WEB服务安全性扫描(近实时监控)系统
6WebShell-1. 这是一个WebShell收集项目
5awesome-windows-exploitation. A curated list of awesome Windows Exploitation resources, and shiny things. Inspired by awesom
5Scanners-Box. The toolbox of open source scanners - 安全行业从业者自研开源扫描器合辑
5efficient. 高效学习
5python_gray_8_9_11_12. 《python灰帽》代码
5xadmin. Python
4Best-App. 收集&推荐优秀的 Apps/硬件/技巧/周边等
4XXEinjector. Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
4Some-PoC-oR-ExP. 各种Web应用漏洞和其他应用系统的poc、Exp的收集或编写,欢迎各位补充,共同打造友情检测网络安全环境!^^**_**^^
4WAFNinja. WAFNinja is a tool which contains two functions to attack Web Application Firewalls.
3Mind-Map. 各种安全相关思维导图整理收集
3google-10000-english. This repo contains a list of the 10,000 most common English words in order of frequency, as determined by n-gram frequency analysis of the Google's Trillion Word Corpus.
2public-pentesting-reports. Curated list of public penetration test reports released by several consulting firms and academic security groups
2security-cheatsheets. 🔒 A collection of cheatsheets for various infosec tools and topics.
2fluxion. Fluxion is a easy to use wifi cracker, to test your own network
2lightbulb-framework. Tools for auditing WAFS
2VulScritp. 内网渗透脚本
2GSIL. GitHub Sensitive Information Leakage(GitHub敏感信息泄露监控)
2nishang. Nishang - PowerShell for penetration testing and offensive security.
2awesome-incident-response. A curated list of tools for incident response
2heartbleedDocker. Python
2xag. Python
2awesome-security. A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
2ctf-tools. Some setup scripts for security research tools.
2angr. The next-generation binary analysis platform from UC Santa Barbara's Seclab!
2Blasting_dictionary. 爆破字典
2sectec.
2PayloadsAllTheThings. A list of useful payloads and bypass for Web Application Security and Pentest/CTF
2BloodHound. Six Degrees of Domain Admin
2commix. This is a commix 'API' tool
2php_cve-2014-8142_cve-2015-0231. php_cve-2014-8142_cve-2015-0231的漏洞环境docker
2pic. Python
2python_gray_5. 《python灰帽》代码
2mv.
1mysulleycases. Python
1music.
1config. vim fish zsh tmux等配置文件
1mynotes.
1mykeywordsearch. Python
1-00-. %00截断的理解
1