小红书笔记 | 评论爬虫、抖音视频 | 评论爬虫、快手视频 | 评论爬虫、B 站视频 ｜ 评论爬虫、微博帖子 ｜ 评论爬虫、百度贴吧帖子 ｜ 百度贴吧评论回复爬虫 | 知乎问答文章｜评论爬虫

burpsuite插件-被动无感识别指纹-主动poc扫描

面向网络安全从业者的知识文库🍃 (停止更新)

自不量力的mimikatz分离计划

Scan installed EDRs and AVs on Windows

Information Protection & OSINT resources | 一个关于数字隐私搜集、保护、清理集一体的方案,外加开源信息收集(OSINT)对抗

zabbix学习笔记

The all-in-one browser extension for offensive security professionals 🛠

一个全新的敏感文件发现工具

Ary 是一个集成类工具，主要用于调用各种安全工具，从而形成便捷的一键式渗透。

redteam Build platform

A container analysis and exploitation tool for pentesters and engineers.

Mini Wordress Exploiter using CVE2020

A centralized resource for previously documented WDAC bypass techniques

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

Focus on promoting the evolution of tools in different aspects of security research.专注于推动安全研究各个领域工具化.(项目收录逐步迁移至 https://github.com/knownsec/404StarLink)

Clone a voice in 5 seconds to generate arbitrary speech in real-time

🌴Linux、macOS、Windows Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)

一个拦截 XSSI & 识别Web蜜罐的Chrome扩展

Proof of Concepts

代码审计知识点整理-Java

Collection of methodology and test case for various web vulnerabilities.

Search tool to find specific files containing specific words, i.e. files containing passwords..

源代码漏洞の审计

Extract text, metadata and references (pdf, url, doi, arxiv) from PDF. Optionally download all referenced PDFs.

** DISCONTINUED ** C2 framework that uses Background Intelligent Transfer Service (BITS) as communication protocol and Direct Syscalls + Dinvoke for EDR user-mode hooking evasion.