Sandboxie Plus & Classic

A proxy tool based on cloud function.

Cyber Security ALL-IN-ONE Platform

👻Stowaway -- Multi-hop Proxy Tool for pentesters

Not Just A Notepad! (golang + mongodb) http:https://leanote.org

High-performance WAF built on the OpenResty stack

ngx_lua_waf是一个基于lua-nginx-module(openresty)的web应用防火墙

App to help configure DEPNotify

gAudit是一个SQL语法审核工具，支持MySQL/TiDB，通过解析SQL语法树实现自定义规则审核

Spring Framework

Stealing Signatures and Making One Invalid Signature at a Time

💻🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

OpenPGP implementation for JavaScript

TideFinger——指纹识别小工具，汲取整合了多个web指纹库，结合了多种指纹检测方法，让指纹检测更快捷、准确。

Linux应急处置/信息搜集/漏洞检测工具，支持基础配置/网络流量/任务计划/环境变量/用户信息/Services/bash/恶意文件/内核Rootkit/SSH/Webshell/挖矿文件/挖矿进程/供应链/服务器风险等13类70+项检查

A Domain Name & Email Address Collection Tool

Empire is a post-exploitation and adversary emulation framework that is used to aid Red Teams and Penetration Testers.

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a rang…

A fast TCP/UDP tunnel over HTTP

Go by Example

通达OA综合利用工具

应急相关内容积累

APT-Hunter is Threat Hunting tool for windows event logs which made by purple team mindset to provide detect APT movements hidden in the sea of windows event logs to decrease the time to uncover su…

Abusing impersonation privileges through the "Printer Bug"

Web Fuzzing Box - Web 模糊测试字典与一些Payloads

Go security checker

📦 Make security testing of K8s, Docker, and Containerd easier.

安卓应用层抓包通杀脚本

An HTTP toolkit for security research.