A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.

一款轻量级、高性能、功能强大的内网穿透代理服务器。支持tcp、udp、socks5、http等几乎所有流量转发，可用来访问内网网站、本地支付接口调试、ssh访问、远程桌面，内网dns解析、内网socks5代理等等……，并带有功能强大的web管理端。a lightweight, high-performance, powerful intranet penetration proxy serv…

A platform for building proxies to bypass network restrictions.

Nuclei is a fast, customizable vulnerability scanner powered by the global security community and built on a simple YAML-based DSL, enabling collaboration to tackle trending vulnerabilities on the …

📚 《Go语言高级编程》开源图书，涵盖CGO、Go汇编语言、RPC实现、Protobuf插件实现、Web框架实现、分布式系统等高阶主题(完稿)

Find, verify, and analyze leaked credentials

🔥 Proxy is a high performance HTTP(S) proxies, SOCKS5 proxies,WEBSOCKET, TCP, UDP proxy server implemented by golang. Now, it supports chain-style proxies,nat forwarding in different lan,TCP/UDP po…

A cross-platform programmable network tool

A fast TCP/UDP tunnel over HTTP

Fast web fuzzer written in Go

A next-generation crawling and spidering framework.

In-depth attack surface mapping and asset discovery

Open-Source Phishing Toolkit

一款内网综合扫描工具，方便一键自动化、全方位漏扫扫描。

Fast passive subdomain enumeration tool.

Directory/File, DNS and VHost busting tool written in Go

Adversary Emulation Framework

httpx is a fast and multi-purpose HTTP toolkit that allows running multiple probes using the retryablehttp library.

The Havoc Framework

⬆️ ☠️ 🔥 Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

Vulnerability scanner written in Go which uses the data provided by https://osv.dev

A Tool for Domain Flyovers

Official repository vuls Scan: 15000+PoCs; 23 kinds of application password crack; 7000+Web fingerprints; 146 protocols and 90000+ rules Port scanning; Fuzz, HW, awesome BugBounty( ͡° ͜ʖ ͡°)...

Monitor linux processes without root permissions

A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests

OpenSSF Scorecard - Security health metrics for Open Source

📚 Go语言圣经中文版 🇨🇳

Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application

自动化反编译微信小程序，小程序安全评估工具，发现小程序安全问题，自动解密，解包，可还原工程目录，支持Hook，小程序修改

Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…