🙃 A delightful community-driven (with 2,400+ contributors) framework for managing your zsh configuration. Includes 300+ optional plugins (rails, git, macOS, hub, docker, homebrew, node, php, python…

A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red/Blue Team operations, Bug Bounty and more

Some setup scripts for security research tools.

🐧 Linux教程，主要内容：Linux 命令、Linux 系统运维、软件运维、精选常用Shell脚本

Linux privilege escalation auditing tool

IP质量检测脚本 - IP Quality Check Script

Ruby enVironment Manager (RVM)

The dynamic infrastructure framework for everybody! Distribute the workload of many different scanning tools with ease, including nmap, ffuf, masscan, nuclei, meg and many more!

Security Onion is a free and open platform for threat hunting, enterprise security monitoring, and log management. It includes our own interfaces for alerting, dashboards, hunting, PCAP, detections…

My simple Swiss Army knife for http/https troubleshooting and profiling.

Linux enumeration tool for pentesting and CTFs with verbosity levels

x-cmd: Bootstrap 1000+ command line tools in seconds.

[WIP] 整理过去我和K8s、容器、虚拟化相关的分享 🧐

A script that you can run in the background!

Wi-Fi Exploitation Framework

A tool designed to exploit a privilege escalation vulnerability in the sudo program on Unix-like systems. It takes advantage of a specific misconfiguration or flaw in sudo to gain elevated privileg…

使用docker快速搭建各大漏洞靶场，目前可以一键搭建17个靶场。

backdoor-apk is a shell script that simplifies the process of adding a backdoor to any Android APK file. Users of this shell script should have working knowledge of Linux, Bash, Metasploit, Apktool…

Sudomy is a subdomain enumeration tool to collect subdomains and analyzing domains performing automated reconnaissance (recon) for bug hunting / pentesting

Proxy是高性能全功能的http代理、https代理、socks5代理、内网穿透、内网穿透p2p、内网穿透代理、内网穿透反向代理、内网穿透服务器、Websocket代理、TCP代理、UDP代理、DNS代理、DNS加密代理，代理API认证，全能跨平台代理服务器。

linWinPwn is a bash script that streamlines the use of a number of Active Directory tools

红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool

Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。

Linux应急处置/信息搜集/漏洞检测工具，支持基础配置/网络流量/任务计划/环境变量/用户信息/Services/bash/恶意文件/内核Rootkit/SSH/Webshell/挖矿文件/挖矿进程/供应链/服务器风险等13类70+项检查

A simple script just made for self use for bypassing 403

致力于最简单好用的GOST小白脚本

403/401 Bypass Methods + Bash Automation + Your Support ;)

The security tool(project) Set from github。github安全项目工具集合

Automation for javascript recon in bug bounty.

The great THC-HYDRA tool compiled for Windows