Asset discovery and identification tools 快速识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息,辅助蓝队发现疑似脆弱点
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
翻译 - 探测使用Java序列化对象的端点,以识别远程Java类路径上的类,库和库版本。
Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing
翻译 - 渗透测试和黑客攻击CTF的瑞士军刀,具有:反向外壳处理-编码/解码-加密/解密-散列/散列
CloudBunny is a tool to capture the real IP of the server that uses a WAF as a proxy or protection. In this tool we used three search engines to search domain information: Shodan, Censys and Zoomeye.
翻译 - CloudBunny是捕获使用WAF作为代理或保护的服务器的真实IP的工具。在此工具中,我们使用了三个搜索引擎来搜索域信息:Shodan,Censys和Zoomeye。