An OOB interaction gathering server and client library

:: Prism X · Automated Enterprise Network Security Risk Detection and Vulnerability Scanning Tool / 棱镜 X · 自动化企业网络安全风险检测、漏洞扫描工具

一个攻防知识仓库 Red Teaming and Offensive Security

ScopeSentry-网络空间测绘、子域名枚举、端口扫描、敏感信息发现、漏洞扫描、分布式节点

微信机器人框架，个人微信二次开发，最简单易用的免费开源框架,微信ipad协议

ARL官方仓库备份项目：ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

一款适用于以APP病毒分析、APP漏洞挖掘、APP开发、HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、鸿蒙)辅助分析工具

一个免费高质量的小代理池，解决一些站点有WAF的情况下，进行目录扫描或者字典爆破

安全隐私卫士（AppScan）一款免费的企业级自动化App隐私合规检测工具。

The Next Generation of Anti-Rookit(ARK) tool for Windows.

红队笔记

Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised. Portia performs privilege escalation as …

微信机器人，PC Wechat Api/Bot/Sdk，内置 WEB 管理界面，可接入GPT、Gemini 、星火、文心、混元 、通义千问等大语言模型

复活Itchat,你只需要 pip install itchat-uos

nginx WebShell/内存马，更优雅的nignx backdoor

IDEA代码审计辅助插件（深信服深蓝实验室天威战队强力驱动）

Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件

A guided mutation-based fuzzer for ML-based Web Application Firewalls

TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.

🍯 T-Pot - The All In One Multi Honeypot Platform 🐝

A powerful and useful hacker dictionary builder for a brute-force attack

transparent TCP-to-proxy redirector

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static a…

Efficient and advanced man in the middle framework

CSRF Scanner

Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner

Mac app that shows all open files, directories, sockets, pipes and devices in use by all running processes. Nice GUI for lsof.

安卓应用层抓包通杀脚本

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.