Tools
Dictionaries
- Blasting_dictionary - 爆破字典
- fuzzDicts - Web Pentesting Fuzz Dictionary
- PasswordDic - 弱口令密码字典
- Fuzz_dic - 参数 | 字典 collections
Disassembler
- ApplicationScanner - An open source application scanning tool
- apkscanner - Android application penetration testing for the masses
- ghidra - Ghidra is a software reverse engineering (SRE) framework
- ghidra_scripts - Scripts for the Ghidra software reverse engineering suite
- LibcOffset - main_arena_offset查询工具
- retdec - RetDec is a retargetable machine-code decompiler based on LLVM
Exploit
- oracleShell - oracle 数据库命令执行
- SharpDecryptPwd - 对密码已保存在 Windwos 系统上的部分程序进行解析,包括:Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品(Xshell,Xftp)
- shiro_attack - shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)
- ShiroExploit-Deprecated - Shiro550/Shiro721 一键化利用工具,支持多种回显方式
- ShiroScan - Shiro<=1.2.4反序列化,一键检测工具
- ShiroScan - Shiro RememberMe 1.2.4 反序列化漏洞图形化检测工具(Shiro-550)
- Shiroexploit - Shiro命令执行工具
- Struts2-Scan - Struts2全漏洞扫描利用工具
- Struts2VulsTools - Struts2系列漏洞检查工具
- TPscan - 一键ThinkPHP漏洞检测
- ThinkphpRCE - Thinkphp rce扫描脚本,附带日志扫描
- WeblogicScan - Weblogic一键漏洞检测工具
- weblogicScanner - weblogic 漏洞扫描工具
Infomation
- ds_store_exp - A
.DS_Storefile disclosure exploit. It parses .DS_Store file and downloads files recursively - GitHack - A
.gitfolder disclosure exploit - GSIL - GitHub Sensitive Information Leakage
- idea_exploit - Gather sensitive information from (.idea) folder for pentesters
- OneForAll - OneForAll是一款功能强大的子域收集工具
Scan
- dirmap - An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian
- dirsearch - Web path scanner
- EHole - EHole(棱洞)2.0 重构版-红队重点攻击系统指纹探测工具
- fscan - 一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描
- FuzzScanner - 一个主要用于信息搜集的工具集,主要是用于对网站子域名、开放端口、端口指纹、c段地址、敏感目录等信息进行批量搜集
- Glass - Glass是一款针对资产列表的快速指纹识别工具,通过调用Fofa/ZoomEye/Shodan/360等api接口快速查询资产信息并识别重点资产的指纹,也可针对IP/IP段或资产列表进行快速的指纹识别
- Medusa - 🐈Medusa是一个红队武器库平台,目前包括扫描功能、XSS平台、协同平台、CVE监控、免杀生成、DNSLOG等功能,持续开发中
- NoXss - Faster xss scanner,support reflected-xss and dom-xss
- Packer-Fuzzer - Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack
- vulmap - Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
- wafw00f - WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website
- WebAliveScan - 对目标域名进行快速的存活扫描、简单的指纹识别、目录扫描
- xray - 一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
- Mobile-Security-Framework-MobSF - Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis
Webshell
- antSword - AntSword is a cross-platform website management toolkit
- Behinder - “冰蝎”动态二进制加密网站管理客户端
- Godzilla - 哥斯拉
- frp - A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet
- reGeorg - The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ
- Neo-reGeorg - Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
- pystinger - Bypass firewall for traffic forwarding using webshell
- webshell - This is a webshell open source project
- WebShell-AIHunter - 机器学习NB算法实现基于文本的WebShell检测工具
Code
- JQF - JQF + Zest: Coverage-guided semantic fuzzing for Java
- junit-quickcheck - Property-based testing, JUnit-style