#安全#sqlmap 是一个开源的渗透测试工具,可以用来自动化的检测,利用SQL注入漏洞,获取数据库服务器的权限。它具有功能强大的检测引擎,针对各种不同类型数据库的渗透测试的功能选项,包括获取数据库中存储的数据,访问操作系统文件甚至可以通过带外数据连接的方式执行操作系统命令。
#新手入门#A collection of hacking tools, resources and references to practice ethical hacking.
翻译 - :pushpin:面向业余笔测试人员的指南,以及一系列黑客工具,资源以及用于实践道德黑客,笔测试和网络安全的参考。
#夺旗赛 (CTF) 和网络安全资源#fsociety Hacking Tools Pack – A Penetration Testing Framework
翻译 - fsociety Hacking Tools Pack –渗透测试框架
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
翻译 - 备忘单,其中包含Windows Active Directory的常见枚举和攻击方法。
Course materials for Modern Binary Exploitation by RPISEC
翻译 - RPISEC的“现代二进制开发”课程资料
Automated All-in-One OS Command Injection Exploitation Tool.
翻译 - 自动化的多合一OS命令注入和利用工具。
Automated Mass Exploiter
翻译 - 自动群发器
#夺旗赛 (CTF) 和网络安全资源#Automation for internal Windows Penetrationtest / AD-Security
File upload vulnerability scanner and exploitation tool.
Automatic SSRF fuzzer and exploitation tool
翻译 - 自动SSRF模糊器和开发工具
UNIX-like reverse engineering framework and command-line toolset.
翻译 - 类似于UNIX的逆向工程框架和命令行工具集。
HackSys Extreme Vulnerable Driver (HEVD) - Windows & Linux
翻译 - HackSys Extreme漏洞Windows驱动程序
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
翻译 - 备忘单,其中包含Windows Active Directory的常见枚举和攻击方法。
Offensive Software Exploitation Course
翻译 - 进攻性软件开发课程
SSH-Snake is a self-propagating, self-replicating, file-less script that automates the post-exploitation task of SSH private key and host discovery.
渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
linWinPwn is a bash script that streamlines the use of a number of Active Directory tools
Display information about files in different file formats and find gadgets to build rop chains for different architectures (x86/x86_64, ARM/ARM64, MIPS, PowerPC, SPARC64). For disassembly ropper uses ...
The Offensive Manual Web Application Penetration Testing Framework.