FuzzdictsWeb Pentesting Fuzz 字典,一个就够了。
Stars: ✭ 4,013 (+3650.47%)
A Red Teamer DiariesRedTeam/Pentest notes and experiments tested on several infrastructures related to professional engagements.
Stars: ✭ 382 (+257.01%)
Javafuzzcoverage guided fuzz testing for java
Stars: ✭ 193 (+80.37%)
HackvaultA container repository for my public web hacks!
Stars: ✭ 1,364 (+1174.77%)
DirsearchWeb path scanner
Stars: ✭ 7,246 (+6671.96%)
Syzkallersyzkaller is an unsupervised coverage-guided kernel fuzzer
Stars: ✭ 3,841 (+3489.72%)
fuzzufFuzzing Unification Framework
Stars: ✭ 263 (+145.79%)
Burpsuite CollectionsBurpSuite收集:包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程,欢迎添砖加瓦---burpsuite-pro burpsuite-extender burpsuite cracked-version hackbar hacktools fuzzing fuzz-testing burp-plugin burp-extensions bapp-store brute-force-attacks brute-force-passwords waf sqlmap jar
Stars: ✭ 1,081 (+910.28%)
V3n0m ScannerPopular Pentesting scanner in Python3.6 for SQLi/XSS/LFI/RFI and other Vulns
Stars: ✭ 847 (+691.59%)
FuzzitCLI to integrate continuous fuzzing with Fuzzit
Stars: ✭ 220 (+105.61%)
SharpfuzzAFL-based fuzz testing for .NET
Stars: ✭ 185 (+72.9%)
Reverse ShellReverse Shell as a Service
Stars: ✭ 1,281 (+1097.2%)
Pythonfuzzcoverage guided fuzz testing for python
Stars: ✭ 175 (+63.55%)
Honggfuzz RsFuzz your Rust code with Google-developed Honggfuzz !
Stars: ✭ 222 (+107.48%)
Jsfuzzcoverage guided fuzz testing for javascript
Stars: ✭ 532 (+397.2%)
AflplusplusThe fuzzer afl++ is afl with community patches, qemu 5.1 upgrade, collision-free coverage, enhanced laf-intel & redqueen, AFLfast++ power schedules, MOpt mutators, unicorn_mode, and a lot more!
Stars: ✭ 2,319 (+2067.29%)
doonaNetwork based protocol fuzzer
Stars: ✭ 64 (-40.19%)
ThoronThoron Framework is a Linux post-exploitation framework that exploits Linux TCP vulnerability to provide a shell-like connection. Thoron Framework has the ability to create simple payloads to provide Linux TCP attack.
Stars: ✭ 87 (-18.69%)
VbscanOWASP VBScan is a Black Box vBulletin Vulnerability Scanner
Stars: ✭ 295 (+175.7%)
Gray hat csharp codeThis repository contains full code examples from the book Gray Hat C#
Stars: ✭ 301 (+181.31%)
PyjfuzzPyJFuzz - Python JSON Fuzzer
Stars: ✭ 342 (+219.63%)
SQL-XSSA few SQL and XSS attack tools
Stars: ✭ 29 (-72.9%)
Vaultswiss army knife for hackers
Stars: ✭ 346 (+223.36%)
FaradayFaraday introduces a new concept - IPE (Integrated Penetration-Test Environment) a multiuser Penetration test IDE. Designed for distributing, indexing, and analyzing the data generated during a security audit.
Stars: ✭ 3,198 (+2888.79%)
Commodity Injection SignaturesCommodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
Stars: ✭ 267 (+149.53%)
GowaptGo Web Application Penetration Test
Stars: ✭ 300 (+180.37%)
YsoserialA proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Stars: ✭ 4,808 (+4393.46%)
Iblessingiblessing is an iOS security exploiting toolkit, it mainly includes application information collection, static analysis and dynamic analysis. It can be used for reverse engineering, binary analysis and vulnerability mining.
Stars: ✭ 326 (+204.67%)
FfufFast web fuzzer written in Go
Stars: ✭ 5,687 (+5214.95%)
PocProofs-of-concept
Stars: ✭ 467 (+336.45%)
DharmaGeneration-based, context-free grammar fuzzer.
Stars: ✭ 416 (+288.79%)
Dictionary Of PentestingDictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
Stars: ✭ 492 (+359.81%)
Crlf Injection ScannerCommand line tool for testing CRLF injection on a list of domains.
Stars: ✭ 91 (-14.95%)
Awesome FuzzingA curated list of awesome Fuzzing(or Fuzz Testing) for software security
Stars: ✭ 399 (+272.9%)
H4ckerThis repository is primarily maintained by Omar Santos and includes thousands of resources related to ethical hacking / penetration testing, digital forensics and incident response (DFIR), vulnerability research, exploit development, reverse engineering, and more.
Stars: ✭ 10,451 (+9667.29%)
clusterfuzzliteClusterFuzzLite - Simple continuous fuzzing that runs in CI.
Stars: ✭ 315 (+194.39%)
Afl UtilsUtilities for automated crash sample processing/analysis, easy afl-fuzz job management and corpus optimization
Stars: ✭ 383 (+257.94%)
Thc ArchiveAll releases of the security research group (a.k.a. hackers) The Hacker's Choice
Stars: ✭ 474 (+342.99%)
CrosshairAn analysis tool for Python that blurs the line between testing and type systems.
Stars: ✭ 586 (+447.66%)
Oscp Prepmy oscp prep collection
Stars: ✭ 105 (-1.87%)
Oss FuzzOSS-Fuzz - continuous fuzzing for open source software.
Stars: ✭ 6,937 (+6383.18%)
Cargo FuzzCommand line helpers for fuzzing
Stars: ✭ 725 (+577.57%)
Cve 2017 0065Exploiting Edge's read:// urlhandler
Stars: ✭ 15 (-85.98%)
JscpwnPoC exploit for CVE-2016-4622
Stars: ✭ 89 (-16.82%)
LabsVulnerability Labs for security analysis
Stars: ✭ 1,002 (+836.45%)
Afl.rs🐇 Fuzzing Rust code with American Fuzzy Lop
Stars: ✭ 1,013 (+846.73%)
AngoraAngora is a mutation-based fuzzer. The main goal of Angora is to increase branch coverage by solving path constraints without symbolic execution.
Stars: ✭ 669 (+525.23%)
BlackwidowA Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a target website.
Stars: ✭ 887 (+728.97%)
Pythempentest framework
Stars: ✭ 1,060 (+890.65%)
Test Each🤖 Repeat tests. Repeat tests. Repeat tests.
Stars: ✭ 89 (-16.82%)
Attack Surface Detector BurpThe Attack Surface Detector uses static code analyses to identify web app endpoints by parsing routes and identifying parameters
Stars: ✭ 63 (-41.12%)
Sap exploitHere you can get full exploit for SAP NetWeaver AS JAVA
Stars: ✭ 60 (-43.93%)
Book📖 Guides and tutorials on how to fuzz Rust code
Stars: ✭ 67 (-37.38%)
VulmapVulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞利用功能
Stars: ✭ 1,079 (+908.41%)