自动化反编译微信小程序，小程序安全利器，自动解密，解包，可最大程度还原工程目录

用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo

xrecon is a powerful web fingerprinting tool with CDN detection capabilities

CrowdSec - the open-source and participative security solution offering crowdsourced protection against malicious IPs and access to the most advanced real-world CTI.

The **PSStopBruteforce** modules to stop bruteforce attack on SMB, RDP and WinRm.

Block unauthorized users from login in via RDP service.

ALLINONE framework and technology detect lib

Chunsou（春蒐），Python3编写的多线程Web指纹识别工具,适用于安全测试人员前期的资产识别、风险收敛以及企业互联网资产风险摸查。

SBSCAN是一款专注于spring框架的渗透测试工具，可以对指定站点进行springboot未授权扫描/敏感信息扫描以及进行spring框架漏洞扫描与验证的综合利用工具。 [SBSCAN is a penetration testing tool focused on the spring framework that can scan springboot sensitive infor…

Tunnel all your traffic over Websocket or HTTP2 - Bypass firewalls/DPI - Static binary available

ezXSS is an easy way for penetration testers and bug bounty hunters to test (blind) Cross Site Scripting.

Functional enhancement based on nuclei

一本 GPT4 生成的单词书📚，超过 8000 个单词分析，涵盖了词义、例句、词根词缀、变形、文化背景、记忆技巧和小故事

Resource limits

ZipCreater主要应用于跨目录的文件上传漏洞的利用，它能够快速进行压缩包生成。

Using the Xposed Framework, will allow your device to appear as a completely different to specific applications to bypass restrictions.

Titan: A generic user defined reflective DLL for Cobalt Strike

A command-line tool and Rust library with Python bindings for generating regular expressions from user-provided test cases

Using GPT to parse PDF

Exploit for the CVE-2024-5806

SymCC: efficient compiler-based symbolic execution

✨ Perfect 4K@240Hz Virtual Display

Slides & Code snippets for a workshop held @ x33fcon 2024

解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具

Burp Plugin to Bypass WAFs through the insertion of Junk Data

Instrument any LLM to do actual stuff.

微信小程序辅助渗透-自动化

LLM101n: Let's build a Storyteller

A penetration toolkit for container environment

Wechat Chat History Exporter 微信聊天记录导出备份程序