DarkZ8854
Follow
Stars
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
Flowchart & designer component for Vue.js.
Vue drag-and-drop component based on Sortable.js
Scripted Local Linux Enumeration & Privilege Escalation Checks
cmd2 - quickly build feature-rich and user-friendly interactive command line applications in Python
A Security Tool for Bug Bounty, Pentest and Red Teaming.
🔩 jwt-hack is tool for hacking / security testing to JWT. Supported for En/decoding JWT, Generate payload for JWT attack and very fast cracking(dict/brutefoce)
逸尘的字典 渗透测试个人专用的字典,搜索网上,及自己平常收集的一些路径,其中信息包括HVV中常见的各大厂商的弱密码,web常见漏洞测试,会遇到的邮箱,密码,服务弱口令,中间件,子域名,漏洞路径,账户密码,等等,这些内容都是基于本人在实战中收集到的,其中包含Github上公布的密码字典整合,堪称最经典的字典,用这个足以满足日常src,渗透测试,资产梳理,红蓝对抗等前期探测工作。
All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
A library for detecting known secrets across many web frameworks
⚙️ Browser devtools extension for debugging Vue.js applications.
superSearchPlus是聚合型信息收集插件,支持综合查询,资产测绘查询,信息收集 敏感信息提取 js资源扫描 目录扫描 vue组件扫描 整合了目前常见的资产测绘平台 专为白帽子提供快速侦测目标。
Simple, but flexible HTTP client library, with support for multiple backends.
WeblogicTool,GUI漏洞利用工具,支持漏洞检测、命令执行、内存马注入、密码解密等(深信服深蓝实验室天威战队强力驱动)
A hex editor for WeChat/QQ/TIM - PC版微信/QQ/TIM防撤回补丁(我已经看到了,撤回也没用了)
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Sec-Fork / jjjjjjjjjjjjjs
Forked from ttstormxx/jjjjjjjjjjjjjs爬网站JS文件,自动fuzz api接口,指定api接口(针对前后端分离项目,可指定后端接口地址),回显api响应
An experimentation and research platform to investigate the interaction of automated agents in an abstract simulated network environments.
🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens
Veil 3.1.X (Check version info in Veil at runtime)
Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.