pentest

#夺旗赛 (CTF) 和网络安全资源#该仓库整理了Web安全相关攻击示例代码和资源

#新手入门#A collection of hacking tools, resources and references to practice ethical hacking.

API, CLI, and Web App for analyzing and finding a person's profile in 1000 social media \ websites

A list of resources for those interested in getting started in bug bounties

hydra

Program for determining types of files for Windows, Linux and MacOS.

#安卓#📱 objection - runtime mobile exploration

windows-kernel-exploits Windows平台提权漏洞集合

Tools and Techniques for Red Team / Penetration Testing

A fast, simple, recursive content discovery tool written in Rust.

game of active directory

Yakit是基于yak语言开发的网络安全单兵工具，旨在打造一个覆盖渗透测试全流程的网络安全工具库。

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

这些是我从各种渠道收集的bug bounty笔记

#速查表 cheatsheets#One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️

Next generation web scanner

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetNuke...

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

An automated e-mail OSINT tool

linux-kernel-exploits Linux平台提权漏洞集合