yuanhai1212
Follow
Starred repositories
Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹20000+,暴力破解协议10余种。
云环境利用框架(Cloud exploitation framework)主要用来方便红队人员在获得 AK 的后续工作。
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
WEB安全手册(红队安全技能栈),漏洞理解,漏洞利用,代码审计和渗透测试总结。【持续更新】
🧿 AutorizePro是一款强大越权检测 Burp 插件,通过增加 AI 辅助分析 && 进一步优化检测逻辑,大幅降低误报率,提升越权漏洞检出效率。 [ AutorizePro is a authorization enforcement detection extension for burp suite. By adding Ai-assisted analysis, it sign…
Burpsuite Extension to bypass 403 restricted directory
The Browser Exploitation Framework Project
a rep for documenting my study, may be from 0 to 0.1
Pre-Built Vulnerable Environments Based on Docker-Compose
Fetch known URLs from AlienVault's Open Threat Exchange, the Wayback Machine, and Common Crawl.
Gospider - Fast web spider written in Go
A next-generation crawling and spidering framework.
Simple, fast web crawler designed for easy, quick discovery of endpoints and assets within a web application
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
Making Favicon.ico based Recon Great again !
Port of Wappalyzer (uncovers technologies used on websites) to automate mass scanning.
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
Automated learning of regexes for DNS discovery
DNSGen is a powerful and flexible DNS name permutation tool designed for security researchers and penetration testers. It generates intelligent domain name variations to assist in subdomain discove…
Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.
Fast passive subdomain enumeration tool.
In-depth attack surface mapping and asset discovery
