COLLECTION

夺旗赛 (CTF) 和网络安全资源

一系列工具、脚本、文章等资源,可以帮助您提高网络安全技能并应对下一个 CTF 挑战。


  该仓库整理了Web安全相关攻击示例代码和资源

Python60.55 k

  A collection of hacking / penetration testing resources to make you better!

翻译一系列骇客/渗透测试资源,可助您一臂之力!

15.24 k

  SecLists 是安全测试员工作伴侣。该仓库整理了大量用于安全测试的清单集合,清单中包括弱口令,常用用户名,敏感数据特征码、模糊测试载荷等。

PHP57.38 k

  The Swiss Army knife for 802.11, BLE, HID, CAN-bus, IPv4 and IPv6 networks reconnaissance and MITM attacks.

翻译瑞士军刀可用于802.11,BLE和以太网侦察和MITM攻击。

JavaScript16.59 k

  Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

翻译Nishang-进攻性PowerShell,用于红队,渗透测试和进攻性安全。

PowerShell8.72 k

  articles

翻译该存储库由共享资源和撰写文章的所有社区成员创建和开发,而我唯一要做的@cry__pto就是搜索和上传文件。该存储库的更新将继续进行,直到链接数量达到10000个链接和10000个pdf文件为止。学习道德黑客和渗透测试。数百道德黑客和渗透测试,红队,网络安全和计算机科学资源。

12.87 k

  CTF framework and exploit development library

翻译CTF框架和漏洞利用开发库

Python11.99 k

  Some setup scripts for security research tools.

Shell8.43 k

  Cross-site scripting labs for web application security enthusiasts

翻译Web应用程序安全爱好者的跨站点脚本实验室

PHP290

  Guide to securing and improving privacy on macOS

翻译在macOS上保护和改善隐私的指南

Python21.23 k

  A curated list of CTF frameworks, libraries, resources and softwares

翻译CTF框架,库,资源和软件的精选清单

JavaScript9.71 k

  Quasar 是一个Windows 远程控制管理工具。用途范围从用户支持到日常管理工作再到员工监控。

C#8.7 k

  Advanced dork Search & Mass Exploit Scanner

Perl1.41 k

#自然语言处理#  使用自然语言处理和人工智能以及一些全自动解密/解码/破解工具。

Python18.03 k
juice-shop/juice-shop

  OWASP Juice Shop:可能是最不安全的现代化,复杂的网站。用于漏洞学习目的,包含多种热门安全漏洞。

TypeScript10.28 k

  Exploit Development and Reverse Engineering with GDB Made Easy

翻译利用GDB轻松进行开发和逆向工程

Python7.47 k

  List of Awesome Red Teaming Resources

6.86 k

  Google CTF。CTF是一种流行的信息安全竞赛形式,其英文名可直译为“夺得Flag”,也可意译为“夺旗赛”

Python4.49 k

  E-mails, subdomains and names Harvester - OSINT

翻译电子邮件,子域和名称Harvester-OSINT

Python11.24 k

  Collection of CTF Web challenges I made

翻译我提出的CTF Web挑战集

PHP2.67 k

  RSA attack tool (mainly for ctf) - retrieve private key from weak public key and/or uncipher data

翻译RSA攻击工具(主要用于ctf)-从弱公钥和/或解密数据中检索私钥

Python5.56 k

  This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.

翻译此备忘单旨在面向CTF玩家和初学者,以帮助他们通过示例了解权限提升的基础。

3.28 k

  Web CTF CheatSheet 🐈

翻译Web CTF速查表🐈

Ruby2.54 k

  A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me

翻译微小的XSS有效载荷的集合,可以在不同的上下文中使用。

JavaScript1.92 k

  A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileges ...

Shell2.22 k

  A curated list of awesome privilege escalation

1.21 k

  This cheasheet is aimed at the CTF Players and Beginners to help them sort Hack The Box Labs on the basis of Operating System and Difficulty.

1.53 k

  Pwnable|Web Security|Cryptography CTF-style challenges

CSS404

  Everything needed for doing CTFs

翻译执行CTF所需的一切

PowerShell157

  精选的Unix二进制文件列表,可以用来绕过错误配置系统中的本地安全限制

HTML10.73 k

  This cheasheet is aimed at the CTF Players and Beginners to help them sort Vulnhub Labs. This list contains all the writeups available on hackingarticles.

1.06 k

  Gophish 是一个网络钓鱼工具,为企业和渗透测试人员而设计

Go11.33 k

  保护安全,你所需要知道的一切

9.92 k

  Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

XSLT6.99 k

  Repository to index useful online tools for CTF

146

#安卓#  An effort to build a single place for all useful android and iOS security related stuff. All references and tools belong to their respective owners. I'm just maintaining it.

翻译努力为所有有用的android和iOS安全相关的东西建立一个地方。所有参考和工具均属于其各自所有者。我只是维护它。

2.96 k

  Red Teaming Tactics and Techniques

翻译红队战术与技巧

PowerShell4.01 k

  The goal of this repository is to document the most common techniques to bypass AppLocker.

PowerShell1.9 k

  gitGraber: monitor GitHub to search and find sensitive data in real time for different online services such as: Google, Amazon, Paypal, Github, Mailgun, Facebook, Twitter, Heroku, Stripe...

翻译gitGraber:监控GitHub以实时搜索和查找敏感数据,以获取各种在线服务,例如:Google,Amazon,Paypal,Github,Mailgun,Facebook,Twitter,Heroku,Stripe ...

Python2.01 k

  Automation for internal Windows Penetrationtest / AD-Security

PowerShell3.3 k

  sherlock 是一个社工查询工具,能从上百个社交网站中检索指定 username 的账号是否存在

Python59.44 k

#网络爬虫#  Incredibly fast crawler designed for OSINT.

翻译专为OSINT设计的令人难以置信的快速搜寻器。

Python10.97 k

#Awesome#  😱 A curated list of amazingly awesome OSINT

翻译:scream:很棒的OSINT精选列表

18.6 k

  fsociety Hacking Tools Pack – A Penetration Testing Framework

翻译fsociety Hacking Tools Pack –渗透测试框架

Python10.55 k

  A Workflow Engine for Offensive Security

翻译用于侦察和漏洞扫描的全自动攻击性安全框架

Go5.3 k

  Phishing Campaign Toolkit

Python2.22 k

  swiss army knife for hackers

翻译瑞士军刀黑客

Python507

  Reverse shell generator written in Python 3.

Python508

  Challenges source code

PHP56

  RSA primes numbers /RSA/CTFs

Python64
trimstray/the-book-of-secret-knowledge

#Awesome#  该仓库收集了一堆有用的工具、链接、技术博客、CheatSheet等等

145.62 k

  Come and join us, we need you!

翻译CTF Wiki在线。快来加入我们,我们需要您!

Python8.14 k

  A tool to analyze the network flow during attack/defence Capture the Flag competitions

翻译分析攻击/防御过程中网络流量的工具,以捕获标志比赛

JavaScript588