Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).
OneForAll是一款功能强大的子域收集工具
Attack Surface Management Platform
翻译 - 针对攻击性安全专家的自动Pentest框架
httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.
翻译 - httpx是一种快速且多功能的HTTP工具包,允许使用retryablehttp库运行多个探测器,它旨在通过增加线程来保持结果的可靠性。
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
翻译 - 简单的脚本进行全面侦察
Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...
#夺旗赛 (CTF) 和网络安全资源#A Workflow Engine for Offensive Security
翻译 - 用于侦察和漏洞扫描的全自动攻击性安全框架
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
#安卓#An all-in-one hacking tool to remotely exploit Android devices using ADB and Metasploit-Framework to get a Meterpreter session.
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
The LAZY script will make your life easier, and of course faster.
The Network Execution Tool
有关burpsuite的插件(非商店),文章以及使用技巧的收集(此项目不再提供burpsuite破解文件,如需要请在博客mrxn.net下载)---Collection of burpsuite plugins (non-stores), articles and tips for using Burpsuite, no crack version file
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
#夺旗赛 (CTF) 和网络安全资源#Automation for internal Windows Penetrationtest / AD-Security
An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.
An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具,功能将会强于DirBuster、Dirsearch、cansina、御剑。
#速查表 cheatsheets#A minimalist command line knowledge base manager
翻译 - 简约的知识库管理员