reall0c
Follow
PenTest
A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑
WDScanner平台目前实现了如下功能:分布式web漏洞扫描、客户管理、漏洞定期扫描、子域名枚举、端口扫描、网站爬虫、暗链检测、坏链检测、网站指纹搜集、专项漏洞检测、代理搜集及部署等功能。
fsociety Hacking Tools Pack – A Penetration Testing Framework
OWASP based Web Application Security Testing Checklist
A spreadsheet designed to automatically generate Key Performance Indicators (charts) for Cyber Security Services based on documented data, powered by formulas (no MACROS). Ideal for Team leaders / …
A compact guide to network pivoting for penetration testings / CTF challenges.
Automatic SSTI detection tool with interactive interface
Generates millions of keyword-based password mutations in seconds.
Local privilege escalation via PetitPotam (Abusing impersonate privileges).
Gather and update all available and newest CVEs with their PoC.
Checklists for Testing Security environment
Freeze is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls, and alternative execution methods
Freeze.rs is a payload toolkit for bypassing EDRs using suspended processes, direct syscalls written in RUST
Set the process mitigation policy for loading only Microsoft Modules , and block any userland 3rd party modules
Extracts TEXT section of a PE, ELF, or Mach-O executable to shellcode
Tiny SHell - An open-source UNIX backdoor (I'm not the author!)
Software defined radio receiver powered by GNU Radio and Qt.
A python tool used to discover endpoints, potential parameters, and a target specific wordlist for a given target
A small POC to make defender useless by removing its token privileges and lowering the token integrity
🐚 Python-powered shell. Full-featured and cross-platform.
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests