best way to save what you love

Metasploit Framework

Automatic SQL injection and database takeover tool

Xray, Penetrates Everything. Also the best v2ray-core. Where the magic happens. An open platform for various uses.

A professional cross-platform SSH/Sftp/Shell/Telnet/Tmux/Serial terminal.

An open source trusted cloud native registry project that stores, signs, and scans content.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

🐧 A list of awesome Linux softwares

A little tool to play with Windows security

Pre-Built Vulnerable Environments Based on Docker-Compose

Most advanced XSS scanner.

Web path scanner

📻Terminal/ssh/sftp/ftp/telnet/serialport/RDP/VNC/Spice client(linux, mac, win)

Damn Vulnerable Web Application (DVWA)

Termix is a web-based server management platform with SSH terminal, tunneling, and file editing capabilities.

一款长亭自研的完善的安全评估工具，支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

Credentials recovery project

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

You Know, For WEB Fuzzing !

Scripted Local Linux Enumeration & Privilege Escalation Checks

Ultra-high-performance, secure, all-in-one acceleration engine for developer resources

Use Prometheus to monitor Kubernetes and applications running on Kubernetes

Defeating Windows User Account Control

Cloud native networking and network security

One place for all the default credentials to assist the Blue/Red teamers identifying devices with default password 🛡️

WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

“冰蝎”动态二进制加密网站管理客户端