发表评论
微信扫一扫加我哦~
微信扫一扫加我哦~
收集的所有开源工具:sec-tool-list:超过18K,包括Markdown和Json两种格式
安全资源收集类的Repo:1000多种类别安全资源收集的Github Repo
Windows平台安全性:PE / DLL / DLL注入/Dll-Hijack/Dll-Load/UAC-Bypass/Sysmon/AppLocker/ETW/WSL/.NET/Process-Injection/Code-Injection/DEP/Kernel / ...
Linux安全:ELF / ...
macOS / iXxx安全:Mach-O /越狱/ LLDB / XCode / ...
Android安全:HotFix / XPosed / Pack / Unpack / Emulator / Obfuscate
知名工具:IDA / Ghidra / x64dbg / OllDbg / WinDBG / CuckooSandbox / Radare2 / BinaryNinja / DynamoRIO / IntelPin / Frida / QEMU / ...
攻击性网络安全资源:入侵/渗透/物联网安全/数据渗透/ Metasploit / BurpSuite / KaliLinux / C&C / OWASP /免杀/ CobaltStrike /侦查/ OSINT /社工/密码/凭证/威胁狩猎/有效载荷/ Wifi黑客/无线攻击/后渗透/提权/ UAC绕过/ ...
网络通信:代理/ SS / V2ray / GFW /反向代理/隧道/ VPN / Tor / I2P / ...
网络攻击:中间人/ PortKnocking / ...
网络分析:嗅探/协议分析/网络可视化/网络分析/网络诊断等
Webshell工具和分析/使用文章:Webshell资源收集,包括150个Github项目,200个左右文章
蜜罐资源:250+个开源蜜罐工具,350 +与蜜罐相关文章
Burp Suite资源:400+个开源Burp插件,500 +与Burp相关文章
1000多个Github安全资源收集类的存储库。
[ 34045星] [1m] [Py] minimaxir /顽皮字符串大列表“淘气”的字符串列表,当作为用户输入时很容易引发问题
[ 33101星] [3m] hack-with-github / awesome-hacking骇客,渗透测试者和安全研究人员的一系列绝妙清单
[ 24868星] [18D] trimstray /的书-的秘密知识启发清单,手册,备忘,博客,黑客的集合,单行,CLI /网络工具等。
[ 22055星] [30d] [PHP] danielmiessler / seclists多种类型的资源收集:用户名,密码,URL,敏感数据类型,fuzzing Payload,WebShell等
[ 19766星] [3m] [Jupyter笔记本] camdavidsonpilon /针对黑客的概率编程和贝叶斯方法,又名“针对黑客的贝叶斯方法”:贝叶斯方法+概率编程的介绍,首先计算/了解,数学第二观点。全部使用纯python;)
[ 14867星] [2m] gfwlist / gfwlist gfwlist
[ 11389星] [13d] [Py] swisskyrepo / payloadsallthethings Web应用程序安全性和Pentest / CTF的有用负载和绕过列表
[ 11306星] [12d] [Py] owasp /备忘单系列OWASP备忘单系列的创建是为了提供有关特定应用程序安全性主题的高价值信息的简洁集合。
[ 10944星] [2m] [CSS] hacker0x01 / hacker101 Hacker101
[ 10920星] [1m] enaqx / awesome-pentest渗透测试资源/工具集
[ 10615星] [20d] ruanyf / weekly科技爱好者周刊,每周五发布
[ 9042星] [3m] vitalysim / awesome-hacking-resources一系列黑客/渗透测试资源,可帮助您变得更好!
[ 8031星] [3m] [Py] facebook / chisel Chisel是LLDB命令的集合,以帮助调试iOS应用。
[ 5586星] [1m] rshipp / awesome-malware-analysis精选的真棒恶意软件分析工具和资源列表。
[ 5229星] [4m] [Py] ytisf / thezoo LIVE恶意软件的存放区,您可以尽情享受。
[ 5181星] [27d] [PHP] tennc / webshell webshell收集
[ 5121星] [3m] sbilly / awesome-security与安全相关的软件,库,文档,书籍,资源和工具等收集
[ 5084星] [17d] [HTML] owasp / owasp-mstg关于移动应用安全开发,测试和逆向的相近手册
[ 4441星] [2m] [Shell] zardus / ctf-tools一些用于安全研究工具的设置脚本。
[ 4306星] [17d] [Shell] ashishb / android-security-awesome android安全相关资源的集合
[ 4252星] [1m] qazbnm456 / awesome-web-security web安全资源列表
[ 4115星] [10m] wtsxdev / reverse-engineering很棒的反向工程资源列表
[ 4014星] [3m] [JS] apsdehal / awesome-ctf CTF框架,库,资源和软件的精选清单
[ 4014星] [3m] [JS] apsdehal / awesome-ctf CTF框架,库,资源和软件的精选清单
[ 3945星] [5m] [PHP] paragonie / awesome-appsec精选的用于了解应用程序安全性的资源列表
[ 3922星] [15d] [Py] secureauthcorp / impacket Python类收集,用于与网络协议交互
[ 3868星] [2m] jivoi / awesome-osint OSINT资源收集
[ 3836星] [4y] iosre / iosappreverseengineering世界上第一本非常详细的iOS App逆向工程技能书:)
[ 3796星] [18d] [Py] paralax / awesome-honeypots令人敬畏的蜜罐资源列表
[ 3699星] [5m] [C] secwiki / windows-kernel-exploits windows-kernel-exploits Windows平台提权漏洞集合
[ 3627星] [28d] [HTML] consensys / smart-contract-best-practices智能合约安全最佳做法指南
[ 3616星] [19d] blacckhathaceekr / pentesting-bible链接达到10000个链接和10000个pdf文件。了解道德黑客和渗透测试。数百道德黑客和渗透测试,红色团队,网络安全和计算机科学资源。
[ 3517星] [10m] [C] rpisec / mbe RPISEC现代二进制开发课程资料
[ 3461星] [30d] [C] shellphish / how2heap学习各种堆利用技巧的repo
[ 3383星] [11d] jivoi / awesome-ml-for- cybersecurity针对网络安全的机器学习资源列表
[ 3320星] [2y] scanate / ethlist以太坊综合阅读列表
[ 3301星] [15d] [Shell] toniblex / my-arsenal-of-aws-security- tools用于AWS安全的开源工具列表:防御性,进攻性,审计,DFIR等。
[ 3230星] [16d] [Rich Text Format]黑客行为/ h4cker资源收集:黑客行为,渗透,数字取证,事件响应,入侵研究,入侵开发,逆向
[ 3203星] [6m] hslatman / awesome-threat-intelligence精选的Awesome Threat Intelligence资源列表
[ 3198星] [16d] [Makefile] lorien / awesome-web-scraping用于网络抓取和数据处理的库,工具和API的列表。
[ 3168星] [18d] [CSS] juliocesarfort / public-pentesting-reports几家咨询公司和学术安全组织发布的公共渗透测试报告的精选清单
[ 3141星] [17d] meirwah / awesome-incident-response精选的事件响应工具清单
[ 3005星] [10d] [Py] felixonmars / dnsmasq-china-list特定于中文的配置可改善您喜欢的DNS服务器。chnroutes的最佳合作伙伴。
[ 2977星] [2y] phith0n / mind-map各种安全相关思维导图整理收集
[ 2967星] [11d] [Go] dominikh / go-tools Staticcheck –用于处理Go代码的静态分析工具的集合
[ 2904星] [3m] infosecn1nja / red-teaming-toolkit有助于红队运营的开源和商业工具集合。
[ 2816星] [2m] paulsec / awesome-sec-talks令人敬畏的安全性讨论的收集列表
[ 2800星] [3m] secwiki / sec-chart安全思维导图集合
[ 2759星] [1m] [JS] s0md3v / awesomexss很棒的XSS东西
[ 2680星] [14d] rmusser01 / infosec_reference不吸的信息安全参考
[ 2671星] [1y] [HTML] chybeta /网络安全学习网络安全学习
[ 2660星] [18d] xairy / linux-kernel-exploitation Linux内核FUZZ和入侵利用的资源收集
[ 2621星] [2m] pditommaso / awesome-pipeline受Awesome Sysadmin启发的精湛管道工具包的精选列表
[ 2615星] [1m] [JS] knownsec / kcon KCon是由Knownsec Team提供支持的著名黑客骗局。
[ 2519星] [27d] onlurking / awesome-infosec精选的信息安全课程和培训资源清单。
[ 2499星] [5y] [PHP] audi-1 / sqli-labs SQLI实验室可测试基于错误的,基于布尔布尔的,基于时间的。
[ 2474星] [2m] [Py] 0xinfection / awesome-waf关于Web应用程序防火墙(WAF)的一切都很棒。
[ 2419星] [3y] rpisec /恶意软件RPISEC进行恶意软件分析的课程材料
[ 2395星] [3y] [OCaml] facebookarchive / pfff一堆工具的集合,用于执行静态分析,代码可视化,代码导航,保持格式的代码转换(例如:二进制代码)。完美支持C,Java, JS,PHP,随后将支持其他一大堆语言。
[ 2356星] [12m] hack-with-github / free-security-ebooks免费安全性和黑客电子书
[ 2345星] [22d] yeyintminthuhtut / awesome-red-teaming令人敬畏的红色团队资源列表
[ 2307星] [1m] [PS] k8gege / k8tools K8工具合集(内网渗透/提权工具/远程溢出/突破利用/扫描工具/密码破解/免杀工具/ Exploit / APT / 0day / Shellcode / Payload / priviledge / BypassUAC / OverFlow / WebShell / PenTest)Web GetShell漏洞(Struts2 / Zimbra / Weblogic / Tomcat / Apache / Jboss / DotNetNuke / zabbix)
[ 2228星] [2y] [JS] curry53 / h5sc HTML5安全备忘单-与HTML5相关的XSS攻击向量的集合
[ 2204星] [2m] sobolevn / awesome-cryptography加密资源和链接的精选列表。
[ 2184星] [3y] enddo / awesome-windows-exploitation精选的Windows Exploitation资源和闪亮内容的精选列表。受到敬畏的启发
[ 2169星] [2m] gbdev / awesome-gbdev Game Boy开发资源的精选列表,例如工具,文档,仿真器,相关项目和开源ROM。
[ 2163星] [1y] [C ++] maestron / botnets这是#botnet源代码的集合,没有组织。仅用于教育目的
[ 2161星] [10m] exakat / php-static-analysis-tools有用的PHP静态分析工具的完整列表
[ 2132星] [22d] goq /电报列表电报组,渠道和漫游器列表//Списокинтересныхгрупп,каналовиботовтелеграма//Списокчатовдляп
[ 2118星] [3m] yeahhub / hacking-security-ebooks百大黑客与安全性电子书(免费下载)
[ 2116星] [1m] infoslack / awesome-web-hacking网络应用程序安全性列表
[ 2078星] [2m] edoverflow / bugbounty-cheatsheet漏洞赏金猎人的有趣有效负载,技巧和窍门的列表。
[ 2067星] [12d] tanprathan / mobileapp-pentest-cheatsheet移动应用程序Pentest速查表的创建旨在提供有关特定移动应用程序渗透测试主题的高价值信息的简洁集合。
[ 2066星] [1y] bluscreenofjeff / red-team-infrastructure-wiki Wiki,用于收集红队基础设施强化资源
[ 2057星] [9m] [Shell] foospidy / payloads网络攻击有效载荷集合
[ 2042星] [9d] [Java] williamfiset / algorithms算法和数据结构的集合
[ 2030星] [14d] [HTML] gtfobins / gtfobins.github.io精选的Unix二进制文件列表,可用来绕过系统安全限制
[ 2018星] [2m] qazbnm456 / awesome-cve-poc CVE PoC列表
[ 1990星] [2y] dloss / python-pentest-tools可用于渗透测试的Python工具收集
[ 1982星] [1y] [BitBake] 1n3 /入侵者有效载荷BurpSuite入侵者有效载荷收集
[ 1956星] [2m] [Py] nixawk / pentest-wiki PENTEST-WIKI是面向渗透测试者/研究人员的免费在线安全知识库。如果您有个好主意,请与他人分享。
[ 1930星] [3m] toolswatch / blackhat-arsenal-tools黑帽武器库
[ 1904星] [30d] olivierlaflamme / cheatsheet-god渗透测试参考库-OSCP / PTP和PTX备忘单
[ 1870星] [11m] [PHP] bartblaze / php-backdoors PHP后门的集合。仅用于教育或测试目的。
[ 1845星] [3m] djadmin / awesome-bug-bounty可用的漏洞赏金与披露程序和编写的详尽清单。
[ 1831星] [1y] [CSS] ctfs / write-ups-2015由社区维护的类似Wiki的CTF编写库。2015年
[ 1787星] [4y] caesar0301 / awesome-pcaptools用于处理网络痕迹的工具收集
[ 1779星] [1m] 17mon / china_ip_list IPIP.NET的中国IPList
[ 1771星] [12d] onethawt / idaplugins-list IDA插件收集
[ 1760星] [1y] coreb1t / awesome-pentest-cheat-sheets作弊测试用的备忘单集合
[ 1752星] [1m] ngalongc / bug赏金参考受到启发
[ 1748星] [3m] [PHP] orangetw / my-ctf-web- challenges我提出的CTF Web挑战集
[ 1748星] [4m] tunz / js-vuln-db具有PoC的JavaScript引擎CVE的集合
[ 1739星] [2m] sirredbeard / awesome-wsl Windows子系统专用于Linux的出色列表
[ 1716星] [4m] [R] briatte / awesome-network-analysis精选的出色网络分析资源列表。
[ 1663星] [2y] [Shell] juude / droidreverse android逆向工程工具集
[ 1652星] [10m] tylerha97 /真棒倒车精选真棒倒车资源列表
[ 1650星] [15d] sarojaba / awesome-devblog令人敬畏的Devblog
[ 1636星] [2y] jhaddix / tbhm The Bug Hunters方法论
[ 1630星] [2m] ivrodriguezca / re-ios-apps关于反向工程iOS应用程序的完全免费的开源在线课程。
[ 1602星] [7m] [Py] w1109790800 / penetration渗透超全面的渗透资料
[ 1585星] [7m] [Ruby] brunofacca / zen-rails-security-checklist Ruby on Rails应用程序的安全预防措施清单。
[ 1546星] [19d] emijrp / awesome-awesome精选的精选主题列表,其中包含许多主题。
[ 1534星] [6m] snowming04 / the-hacker-playbook-3-translation对The Hacker Playbook 3的翻译。
[ 1509星] [14d] [YARA] cybermonitor / apt_cybercriminal_campagin_collections APT和CyberCriminal Campaign Collection
[ 1482星] [14d] [C] sleuthkit / sleuthkit 一个库和命令行数字取证工具的集合,使您可以研究卷和文件系统数据。
[ 1481星] [2m] minimaxir / hacker-news-undocumented准则和FAQ中未包含的一些有关Hacker News的隐藏规范。
[ 1479星] [30d] edoverflow /我可以接管xyz吗?—服务列表以及如何使用悬挂的DNS记录声明(子)域。
[ 1421星] [5m] yadox666 / the-hackers-hardware-toolkit用于Red Team,渗透,安全研究的最佳硬件产品集合
[ 1417星] [3m] [执行] hellogcc / 100-gdb-tips gdb提示的集合。100也许就意味着很多。
[ 1417星] [3m] [HTML] owasp / top10 OWASP官方十大文档存储库
[ 1392星] [4y] [PHP] johntroony / php-webshells常见的php webshell。不要在您的服务器上托管文件!
[ 1376星] [2m] grrrdog / java-deserialization-cheat- sheet关于Java反序列化漏洞的备忘单
[ 1347星] [2y] [HTML] daxeel / blockshell用于学习区块链技术的概念的命令行工具,例如喜欢链接,挖掘,工作证明等
[ 1332星] [3m] jaredthecoder / awesome-vehicle-security精选的精选资源,书籍,硬件,软件,应用程序,需要关注的人员以及关于汽车安全,汽车黑客和修补功能的更酷内容的精选清单你的车。
[ 1305星] [1m] nikitavoloboev /尊重隐私PrivacyRespecing服务和软件列表
[ 1290星] [11d] [Shell] firehol / blocklist-ipsets ipsets使用firehol的update-ipsets.sh脚本动态更新
[ 1290星] [11d] [Shell] firehol / blocklist-ipsets ipsets使用firehol的update-ipsets.sh脚本动态更新
[ 1287星] [9m] michalmalik / linux-re-101 Linux逆向资源收集
[ 1252星] [19d] michalmalik / osx-re-101 OSX / iOS逆向资源收集
[ 1242星] [1y] [Ruby] eliotsykes / rails-security-checklist此检查表仅限于Rails安全预防措施,在运行Rails应用程序的许多其他方面都需要加以保护
[ 1223星] [5y] curing53 / xsschallengewiki欢迎使用XSS Challenge Wiki!
[ 1223星] [5y] curing53 / xsschallengewiki欢迎使用XSS Challenge Wiki!
[ 1222星] [25d] dweinstein / awesome-frida frida资源列表
[ 1215星] [8m] riusksk / secbook信息安全从业者书单推荐
[ 1207星] [8m] joe-shenouda / awesome-cyber-skills精选的骇客环境清单,可让您合法安全地培训网络技能
[ 1203星] [1y] felixgr / secure-ios-app-dev iOSApp最常见突破收集
[ 1197星] [2m] [Py] cujanovic / ssrf-testing SSRF(服务器端请求伪造)测试资源
[ 1187星] [2y] [C] mubix /开发后post-exploitation工具收集
[ 1181星] [1m] [Py] 13o-bbr-bbq / machine_learning_security机器学习与安全的几个主题
Security_and_MachineLearning网络安全与机器学习课程
Vulnerabilities_of_ML机器学习突破的汇总
Analytics使用k-means分析捕获的数据包
CNN_test生成针对CNN的对抗样例
DeepExploit使用机器学习的全自动化渗透测试
Generator使用遗传算法和生成对抗网络,自动生成大量用于Web应用程序评估的注入代码。
推荐使用推荐的检测Web应用程序突破的最佳注入代码。
Saivs发现Web应用程序中的突破的AI
[ 1172星] [17d] m4ll0k / awesome-hacking-tools令人敬畏的黑客工具
[1164星][14d] w00t3k/awesome-cellular-hacking Awesome-Cellular-Hacking
[1155星][3y] [PS] powershellempire/powertools PowerShell项目的集合,重点是进攻性操作
PewPewPew scripts that utilize a common pattern to host a script on a PowerShell webserver, invoke the IEX download cradle to download/execute the target code and post the results back to the server, and then post-process any results.
PowerBreach a backdoor toolkit that aims to provide the user a wide variety of methods to backdoor a system.
PowerPick allowing the execution of Powershell functionality without the use of Powershell.exe
[ 1145星] [1m] [批处理文件] ckjbug / hacking整理和开发网络安全性,黑客技术文档和工具,代码。
[ 1145星] [7m] nebgnahz / awesome-iot-hacks物联网空间中的黑客集合,以便我们可以(希望)解决它们。
[ 1143星] [2y] [Py] hackathonhackers /个人站点Hackathon Hackers的个人站点列表。
[ 1141星] [1m] [HTML] securitytxt / security-txt网站定义安全策略的“标准”
[ 1116星] [21d]慢雾/基于知识库的知识库慢雾安全团队知识库
[ 1115星] [1y] paulsec / awesome-windows-domain-hardening精湛的Windows安全强化技术精选清单。
[ 1112星] [1y] [Py] bugcrowd / hunt Burp和ZAP的扩展收集
[ 1110星] [6m] [Py] coffeehb / some-poc-or-exp各种漏洞poc,Exp的收集或编写
[ 1110星] [5m] zbetcheckin / security_list娱乐和暴利的绝佳安全清单
[ 1108星] [2m]史努比安全性/ awesome-burp-extensions Burp扩展收集
[ 1080星] [2m] guardrailsio / awesome-golang-security令人敬畏的Golang安全资源
[ 1066星] [12d] [Py] forseti-security / forseti-security 社区驱动的一系列开源工具,可提高您的Google Cloud Platform环境的安全性
[ 1065星] [2y] wtsxdev /网络安全机器学习精选的工具和资源清单,与将机器学习用于网络安全有关
[ 1062星] [16d] denji / awesome-http-benchmark HTTP(S)基准测试工具,测试/调试和restAPI(RESTful)
[ 1049星] [1m] [Py] ct-开源/ tuya-convert一组脚本,用于将Tuya IoT设备闪存到备用固件
[ 1037星] [2m] [C] xairy / kernel-exploits我对Linux内核的概念验证漏洞
[ 1030星] [1y] naetw / ctf-pwn-tips这里记录有关pwn的一些技巧。某些内容已过时,将不会更新。对于那个很抱歉。
[ 1030星] [7m] stephenturner / oneliners适用于生物信息学的bash一线。
[ 1026星] [17d] sundowndev / hacker-roadmap概述了学习渗透测试所需的知识,以及一系列黑客工具,资源和实践道德黑客的参考资料
[ 1026星] [2y] [ObjC] zhengmin1989 / ios_ice_and_fire iOS冰与火之歌
[ 1020星] [2m] [C] bt3gl / pentesting-toolkit渗透测试,CTF和战争游戏的工具收集
[ 1013星] [1y] [JS] 0xsobky / hackvault我的公共Web黑客的容器存储库!
[ 1009星] [10m] onethawt / reverseengineering-reading-list反向工程文章,书籍和论文的列表
[ 1007星] [1y] [PHP] secwiki / cms-hunter CMS入侵测试用例集合
[ 993星] [19d] [Py] jekil /很棒的黑客很棒的黑客是很棒的黑客工具集合。
[ 990星] [11m] [Py] xiphosresearch /利用其他漏洞利用代码
[ 986星] [8m] 0x4d31 / awesome-threat-detection精选的令人敬畏的威胁检测和狩猎资源列表
[ 977星] [4m] CTF /资源关于CTF和类似安全竞赛的信息,工具和提示的一般集合
[ 963星] [2y] [C] fdiskyou / injectallthethings在一个项目中有七种不同的DLL注入技术。
[ 959星] [5m] bugcrowd / bugcrowd_university研究者社区的教育内容
[ 959星] [10m] wtsxdev / penetration-testing很棒的渗透测试资源,工具和其他有趣的东西的列表
[ 949星] [6m] [C] dhavalkapil / heap-exploitation这本书是关于堆利用的,它是了解glibc堆内部以及对堆结构可能进行的各种攻击的指南。
[ 946星] [2y] [HTML] chybeta /软件-安全性学习软件-安全性学习
[ 943星] [18d] [Py] nullsecuritynet / tools安全和黑客工具,漏洞,概念证明,Shellcode,脚本。
[ 939星] [2y] deepspaceharbor / awesome-ai-security AI安全资源的精选清单
[ 929星] [2m] tom0li /收集文档质量安全文章的收集
[923星][9m] [C] 0x90/wifi-arsenal WiFi arsenal
[921星][7m] [PS] api0cradle/ultimateapplockerbypasslist The goal of this repository is to document the most common techniques to bypass AppLocker.
[917星][7m] cn0xroot/rfsec-toolkit RFSec-ToolKit is a collection of Radio Frequency Communication Protocol Hacktools.无线通信协议相关的工具集,可借助SDR硬件+相关工具对无线通信进行研究。Collect with
by HackSmith
[906星][1m] [Shell] dominicbreuker/stego-toolkit Collection of steganography tools - helps with CTF challenges
[899星][12d] [Py] derekselander/lldb A collection of LLDB aliases/regexes and Python scripts to aid in your debugging sessions
[898星][2m] [HTML] hookmaster/frida-all-in-one FRIDA操作手册
[894星][3m] [Ruby] w181496/web-ctf-cheatsheet Web CTF CheatSheet
[890星][3m] jakejarvis/awesome-shodan-queries Awesome Shodan Search Queries
[871星][12d] explife0011/awesome-windows-kernel-security-development windows kernel security development
[852星][30d] trimstray/iptables-essentials Common Firewall Rules and Commands.
[841星][2m] cugu/awesome-forensics A curated list of awesome forensic analysis tools and resources
[838星][17d] [HTML] rewardone/oscprepo A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP (and more) study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading material in 'BookmarkList' Keepnote. Reconscan in scripts folder.
[836星][15d] v33ru/iotsecurity101 From IoT Pentesting to IoT Security
[829星][4y] [PS] clymb3r/powershell Useful PowerShell scripts
[829星][5m] [Shell] danielmiessler/robotsdisallowed A curated list of the most common and most interesting robots.txt disallowed directories.
[826星][10d] cveproject/cvelist Pilot program for CVE submission through GitHub
[823星][3m] feeicn/security-ppt 大安全各领域各公司各会议分享的PPT
[822星][3m] [Shell] shr3ddersec/shr3dkit Red Team Tool Kit
[813星][3y] [Py] scrapy/quotesbot This is a sample Scrapy project for educational purposes
[805星][3y] shmilylty/awesome-hacking awesome hacking chinese version
[ 796星] [15d] [Shell] aqzt / kjyw快捷运维,代号kjyw,项目基于shell,python,运维脚本工具库,收集各种运维常用工具脚本,实现快速安装nginx,mysql,php, redis,nagios,运维经常使用的脚本等等...
[ 788星] [11m] v2-dev / awesome-social-engineering社会工程学资源集合
[ 778星] [2y] [Py] dagrz / aws_pwn AWS渗透测试垃圾的集合
[ 766星] [2m] daviddias / awesome-hacking-locations由“国家”和“城市”组织的“ Awesome Hacking位置列表”,列出是否具有电源和wifi功能。
[ 761星] [1m] [Py] mubix / shellshocker-pocs #ShellShocker的概念证明和潜在目标证明合集
[760星][3y] masatokinugawa/filterbypass 浏览器XSS 过滤绕过清单
[738星][14d] [C++] google/shaderc A collection of tools, libraries, and tests for Vulkan shader compilation.
[737星][7m] [Py] devttys0/ida IDA插件/脚本/模块收集
wpsearch 查找在MIPS WPS checksum实现中常见的立即数
md5hash 纯Python版的MD5 hash实现(IDA的hashlib有问题)
alleycat 查找向指定的函数内代码块的路径、查找两个或多个函数之间的路径、生成交互式调用图、可编程
codatify 定义IDA自动化分析时miss的ASCII字符串、函数、代码。将data段的所有未定义字节转换为DWORD(于是IDA可识别函数和跳转表指针)
fluorescence 高亮函数调用指令
leafblower 识别常用的POSIX函数:printf, sprintf, memcmp, strcpy等
localxrefs 在当前函数内部查找所有对任意选择文本的引用
mipslocalvars 对栈上只用于存储寄存器的变量进行命名,简化栈数据分析(MISP)
mipsrop 在MIPS可执行代码中搜寻ROP。查找常见的ROP
rizzo 对2个或多个IDB之间的函数进行识别和重命名,基于:函数签名、对唯一字符串/常量的引用、模糊签名、调用图
[736星][1y] [Py] averagesecurityguy/scripts Scripts I use during pentest engagements.
[733星][5m] [Lua] cldrn/nmap-nse-scripts My collection of nmap NSE scripts
[728星][3m] [C#] harleyqu1nn/aggressorscripts Collection of Aggressor scripts for Cobalt Strike 3.0+ pulled from multiple sources
[725星][2m] [HTML] j00ru/windows-syscalls Windows 系统调用表(NT/2000/XP/2003/Vista/2008/7/2012/8/10)
[ 722星] [29d] voorivex / pentest-guide基于OWASP的渗透测试指南,包括测试案例,资源和示例。
[ 714星] [1y] snifer / security-cheatsheets各种信息安全工具和主题的备忘单的集合。
[ 713星] [6m] leezj9671 / pentest_interview个人准备渗透测试和安全面试的经验之谈,和去部分厂商的面试题,干货真的满满〜
[ 712星] [5m] bit4woo / python_sec python安全和代码审核相关资料收集
[ 696星] [2m] [Py] iceyhexman /在线工具在线cms识别|信息重定向|工控|系统|物联网安全| cms扫描| nmap端口扫描|子域名获取|待续..
[ 695星] [4m] netflix / security-bulletins与Netflix开放源代码相关的安全公告
[693星][2y] [C] 1n3/privesc A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.
[685星][14d] [Py] gwen001/pentest-tools 日常使用的渗透工具集合
[684星][2m] andrewjkerr/security-cheatsheets A collection of useful cheatsheets for cheat that focuses on aiding security-type people with either security tools or popular UNIX programs.
[682星][3y] [PHP] xl7dev/webshell Webshell && Backdoor Collection
[681星][1m] [Shell] wslutilities/wslu A collection of utilities for Windows 10 Linux Subsystems
[ 675星] [1y] [C] billy-ellis / exploit-challenges一组易受攻击的ARM二进制文件,用于练习漏洞利用开发
[ 668星] [2m] doridori / android-security-reference A WIP Android安全参考
[ 665星] [2m] redhuntlabs / awesome-asset-discovery真棒资产发现资源列表
[ 664星] [1y] chybeta /代码审核挑战代码审核挑战
[ 662星] [11d] the-akira / computer-science-resources计算机科学不同领域的资源列表(多种语言)
[ 653星] [1m] [YARA]我们各种调查的危害/恶意软件入侵指标(IOC)
[ 643星] [6m] [PHP] mattiasgeniar / php-exploit-scripts在调查被入侵的服务器时发现的一组PHP利用脚本。出于教育目的和测试模糊器和漏洞扫描程序的目的而存储它们。随时贡献。
[ 639星] [9m] cryptogenic / exploit-writeups一个集合,我当前和将来对exploit / CTF的写作将在此收集
[638星][12m] [HTML] bl4de/security_whitepapers Collection of misc IT Security related whitepapers, presentations, slides - hacking, bug bounty, web application security, XSS, CSRF, SQLi
[637星][23d] [PS] olafhartong/sysmon-modular sysmon配置模块收集
[635星][8m] yeyintminthuhtut/awesome-advanced-windows-exploitation-references List of Awesome Advanced Windows Exploitation References
[633星][5m] 3gstudent/pentest-and-development-tips A collection of pentest and development tips
[632星][10m] webbreacher/offensiveinterview Interview questions to screen offensive (red team/pentest) candidates
[629星][4m] bypass007/safety-project-collection 收集一些比较优秀的开源安全项目,以帮助甲方安全从业人员构建企业安全能力。
[620星][2y] turbo/openftp4 A list of all FTP servers in IPv4 that allow anonymous logins.
[619星][1y] jiangsir404/audit-learning 记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获
[618星][22d] 404notf0und/ai-for-security-learning 安全场景、基于AI的安全算法和安全数据分析学习资料整理
[613星][4m] [Shell] ashishb/osx-and-ios-security-awesome OSX and iOS related security tools
[608星][3m] [Swift] gradients/gradients A curated collection of 180 splendid gradients made in swift
[ 606星] [1y] [C] scottybauer / android_kernel_cve_pocs我的带有POC的CVE的列表
[ 604星] [2m] siguza / ios-resources适用于iOS黑客的有用资源
[ 601星] [2m] [Py] hslatman / awesome-工业控制系统-安全工控系统安全资源列表
[ 600星] [6m] fabrimagic72 / malware-samples恶意软件样本
[ 593星] [1m]许可/ awesome-nodejs-security很棒的Node.js安全资源
[ 593星] [2m] [PS] Threatexpress / red-team-scripts以红队为中心的工具,脚本和笔记的集合
[ 592星] [3y] hack-with-github / windows很棒的工具,可以利用Windows!
[ 592星] [12m] pandazheng / ioshackstudy IOS安全学习资料汇总
[ 591星] [16d] [Perl] bollwarm / sectoolset安全项目工具集合
[ 591星] [1y] brunty / awesome-checker-services网站上针对站点,域,安全性等各种检查程序的链接列表
[ 590星] [15d] clarketm / proxy-list空闲,公共,转发代理服务器的列表。每日更新!
[ 587星] [6m] d30sa1 / rootkits-list-download下载Rootkit收集
[ 577星] [2y] hack-with-github / awesome-security-gists Gist收集
[ 574星] [3m] [HTML] gwillem / magento-malware-scanner用于检测Magento恶意软件的规则/样本集合
[ 573星] [2y] [Py] nnamon / linux-exploitation-course中级Linux入侵开发课程
[ 571星] [4m] r35tart / penetration_testing_case用于记录分享一些有趣的案例
[ 564星] [1y] [C] externalist / exploit_playground分析公共漏洞或我的1天漏洞
[ 564星] [3m] [HTML] netspi / sqlinjectionwiki一个专注于聚合和记录各种SQL注入方法的Wiki
[564星][11m] rapid7/ssh-badkeys A collection of static SSH keys (public and private) that have made their way into software and hardware products.
[560星][9m] guardrailsio/awesome-python-security Awesome Python Security resources
[558星][10m] guardrailsio/awesome-php-security Awesome PHP Security Resources
[557星][3y] secmobi/wiki.secmobi.com 手机安全资源收集
[557星][9m] [Py] yellowbyte/reverse-engineering-reference-manual 逆向参考手册. 包括很多工具的使用Tips
[550星][4y] miyogurt/network-security-mind-map 网络安全基础知识思维导图
[549星][4m] [C] espressif/esp-iot-solution Espressif IoT Library. IoT Device Drivers, Documentations And Solutions.
[530星][30d] a13xp0p0v/linux-kernel-defence-map Linux内核防御地图
[530星][2y] [Py] ihack4falafel/oscp Collection of things made during my OSCP journey
[521星][3y] vasanthk/web-security-basics web 安全基础
[504星][2m] hugetiny/awesome-vpn 免费的代理,科学上网,翻墙,梯子大集合
[501星][4m] [PHP] susers/writeups 国内各大CTF赛题及writeup整理
[ 500星] [3y] tengzhangchao / sec-box信息安全工具箱(信息安全工具以及资源集合)
[ 498星] [3m] govolution / betterdefaultpasslist列表包含来自各个制造商的产品(例如NAS,ERP,ICS等)的默认凭据。
[ 496星] [2y] sergey-pronin / awesome-vulnerability-research关于该漏洞研究的精选资源精选清单
[ 494星] [2m] [C] hasherezade / demos恶意软件中各种注入技术的演示
[ 490星] [2y] [C ++] turbo / kpti-poc-collection Meltdown / Spectre PoC SRC集合。
[489星][14d] [C] jiayy/android_vuln_poc-exp This project contains pocs and exploits for vulneribilities I found (mostly)
[488星][2y] b-mueller/android_app_security_checklist Android App Security Checklist
[487星][2m] radareorg/awesome-radare2 A curated list of awesome projects, articles and the other materials powered by Radare2
[486星][1y] lmy375/awesome-vmp 虚拟机分析相关资料
[480星][1y] ksluckow/awesome-symbolic-execution A curated list of awesome symbolic execution resources including essential research papers, lectures, videos, and tools.
[477星][1y] hack-with-github/powerful-plugins Powerful plugins and add-ons for hackers
[476星][23d] [PS] mantvydasb/redteam-tactics-and-techniques Red Teaming Tactics and Techniques
[472星][12m] [PHP] l3m0n/pentest_tools 收集一些小型实用的工具
[470星][3y] [Shell] g0tmi1k/os-scripts Personal Collection of Operating Systems Scripts
[468星][29d] meitar/awesome-cybersecurity-blueteam A collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.
[465星][2y] [Py] coalfire-research/java-deserialization-exploits A collection of curated Java Deserialization Exploits
[465星][1m] gradiuscypher/infosec_getting_started A collection of resources/documentation/links/etc to help people learn about Infosec and break into the field.
[463星][3y] remath/literature_review Survey of program analysis research with a focus on machine code
[462星][6m] [C] phoenhex/files Phoenhex 团队的exploits/POCs/presentation
[461星][2y] [Py] 0xdeadbeefjerky/office-dde-payloads Collection of scripts and templates to generate Office documents embedded with the DDE, macro-less command execution technique.
[460星][5m] [C++] comaeio/opcde OPCDE Cybersecurity Conference Materials
[456星][4y] [C] haka-security/haka 捕获TCP / IP数据包,并根据Lua策略文件对其进行过滤
[455星][22d] m1ghtym0/browser-pwn An updated collection of resources targeting browser-exploitation.
[454星][10m] [C++] ahupowerdns/hello-dns Hello and welcome to DNS!
[ 449星] [4y] [Py] Alienvault-labs / alienvaultlabs Alienvault Labs项目随机资料
[ 442星] [17d] [TSQL] 404notf0und / security-data-analysis-and-visualization 2018-2020青年安全圈-活动技术博主/博客
[ 439星] [2y] magoo / redteam-plan规划redteam练习时要考虑的问题
[ 438星] [1y] meitar / awesome-lockpicking有关锁,按住,钥匙的指南,工具及其他资源的列表
[ 437星] [4m]信任/与golang一起使用Golang安全资源合集
[431星][2y] rsmudge/malleable-c2-profiles Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Cobalt Strike 3.x.
[431星][24d] xuanhun/hackingresource “玄魂工作室--安全圈” 知识星球内资源汇总
[429星][4m] [Shell] ashishb/android-malware Collection of android malware samples
[426星][1m] dropsofzut/awesome-security-weixin-official-accounts 网络安全类公众号推荐
[425星][4m] jack-liang/kalitools Kali Linux工具清单
[ 424星] [3y] pgaijin66 / xss-payloads高级XSS有效负载列表
[ 424星] [2y] ring04h / papers我的安全峰会论文
[ 423星] [12m] [卢阿] w3h / icsmaster综合工控安全相关资源
[ 421星] [6m] preos-security / awesome-firmware-security很棒的固件安全和其他有用的文档
[ 420星] [9m] [Shell] sroberts / awesome-iocs妥协指标的来源集合。
[ 415星] [2y] zhengmin1989 / greatiosjailbreakmaterial很棒的iOS越狱材料!-我读了数百篇论文和PPT。只在这里列出最有用的材料!
[411星][15d] [Py] bl4de/security-tools Collection of small security tools created mostly in Python. CTFs, pentests and so on
[411星][15d] [HTML] w3c/webappsec Web App安全工作组
[411星][2m] husnainfareed/awesome-ethical-hacking-resources Awesome Resources For Learning Hacking & Pentesting
[409星][3m] ph055a/osint-collection Maintained collection of OSINT related resources. (All Free & Actionable)
[407星][2y] [JS] 0xdea/frida-scripts A collection of my Frida.re instrumentation scripts to facilitate reverse engineering of mobile apps.
[ 407星] [8m] kai5263499 / osx-security-awesome OSX和iOS安全资源的集合
[ 405星] [3y] [Py] xitu / macos-security-and-privacy-guide保证macOS安全的实用指南。
[ 397星] [7m] [HTML] gexos / hacking-tools-repository已从Internet上收集到的安全/黑客工具的列表。欢迎提出建议。
[ 396星] [4m] ansjdnakjdnajkd / ios iOS渗透测试最有用的工具
[ 395星] [2y] sweis / crypto-might-not-suck可能不吸引的加密项目列表
[ 393星] [2y] r0ysue / osg-translationteam看雪iOS安全小组的翻译团队作品集合,如有勘误,欢迎斧正!
[392星][2m] dsopas/assessment-mindset 安全相关的思维导图, 可用于pentesting, bug bounty, red-teamassessments
[391星][2m] milabs/awesome-linux-rootkits awesome-linux-rootkits
[391星][13d] [Py] random-robbie/my-shodan-scripts Collection of Scripts for shodan searching stuff.
[389星][2m] tobiasbueschel/awesome-pokemon A curated list of awesome Pokémon & Pokémon GO resources, tools and more.
[388星][2y] [PS] shellntel/scripts A collection of scripts from the security professionals at www.shellntel.com.
[ 386星] [2y] m0l1ce / wooyunallbugs wooyun_all_bugs
[ 385星] [3m] [Jupyter Notebook] endgameinc / ember 110万PE文件的数据集合,可用于训练相关模型。PE文件信息主要包括:SHA256 /直方图(直方图)/ byteentropy(字节熵)/字符串/ PE头信息/段信息/导入表/导出表
[ 383星] [2m] thejambo / awesome-testing精选的测试资源列表
[ 379星] [1y] [CSS] nowsecure / secure-mobile-development安全移动开发最佳实践的集合
[ 378星] [2y] aozhimin / ios-debug-hacks
[376星][5m] xtiankisutsa/awesome-mobile-ctf This is a curated list of mobile based CTFs, write-ups and vulnerable apps. Most of them are android based due to the popularity of the platform.
[375星][8m] opencybertranslationproject/linux-basics-for-hackers 书籍《Linux Basics for Hackers》2019版中文翻译版
[374星][3m] [AngelScript] inquest/malware-samples A collection of malware samples and relevant dissection information, most probably referenced from
[373星][3m] renwax23/xss-payloads List of XSS Vectors/Payloads
[372星][3y] [PHP] nikicat/web-malware-collection Clone of svn repository of
[370星][11m] [Py] awslabs/aws-security-automation Collection of scripts and resources for DevSecOps and Automated Incident Response Security
[369星][30d] fkromer/awesome-ros2 The Robot Operating System Version 2.0 is awesome!
[366星][2y] [PHP] attackercan/regexp-security-cheatsheet
[366星][2m] [Go] tomnomnom/httprobe Take a list of domains and probe for working HTTP and HTTPS servers
[366星][2y] wtsxdev/malware-analysis List of awesome malware analysis tools and resources
[364星][8m] [Py] orangetw/awesome-jenkins-rce-2019 There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
[363星][10m] fr0gger/awesome-ida-x64-olly-plugin IDA x64DBG OllyDBG 插件收集
[363星][13d] hongrisec/web-security-attack Web安全相关内容
[358星][5m] b3nac/android-reports-and-resources A big list of Android Hackerone disclosed reports and other resources.
[356星][5m] [Py] a3sal0n/cyberthreathunting A collection of resources for Threat Hunters
[355星][29d] [Py] lockgit/hacking Hacking工具收集
[354星][14d] [Py] alecmuffett/real-world-onion-sites This is a list of substantial, commercial-or-social-good mainstream websites which provide onion services.
[354星][4y] fireeye/iocs FireEye Publicly Shared Indicators of Compromise (IOCs)
[354星][3y] virajkulkarni14/webdevelopersecuritychecklist A checklist of important security issues you should consider when creating a web application.
[352星][4y] [Java] rsmudge/cortana-scripts A collection of Cortana scripts that you may use with Armitage and Cobalt Strike 2.x. Cortana Scripts are not compatible with Cobalt Strike 3.x. Cobalt Strike 3.x uses a variant of Cortana called Aggressor Script.
[351星][4m] [Shell] maldevel/pentestkit 渗透脚本和工具
[350星][1m] [Shell] fanyueciyuan/eazy-for-ss A Bypassgfw Collection
[345星][3m] softwareunderground/awesome-open-geoscience Curated from repositories that make our lives as geoscientists, hackers and data wranglers easier or just more awesome
[342星][2y] [C++] ele7enxxh/poc-exp 某些 Android 漏洞的poc/exp
[341星][2y] slowmist/eos-bp-nodes-security-checklist EOS超级节点安全执行指南
[335星][2y] [PS] arno0x/powershellscripts Collection of PowerShell scripts
[335星][10d] stamparm/ipsum Daily feed of bad IPs (with blacklist hit scores)
[334星][15d] [PS] mgeeky/penetration-testing-tools A collection of my Penetration Testing scripts, tools, cheatsheets collected over years, used during real-world assignments or collected from various good quality sources.
[ 332星] [2m] [Jupyter笔记本] BEEVA中的beeva / beeva-best-practics最佳做法和样式指南
[ 331星] [3y] [Visual Basic .NET] khr0x40sh / macroshop脚本集合,以帮助通过Office宏传递有效负载。大多数是python。看到
[ 331星] [1y] snyk / vulnerabilitydb Snyk的公共漏洞数据库
[ 330星] [11m] [Py]正义/自由战斗在您的自由斗争活动中可能会派上用场的脚本集。
[ 327星] [10m] pxlpnk / awesome-ruby-security很棒的Ruby安全资源
[327星][12m] [Py] secwiki/office-exploits office-exploits Office漏洞集合
[324星][9m] [JS] zyszys/awesome-captcha Curated list of awesome captcha libraries and captcha crack tools.
[323星][4m] [PS] kmkz/pentesting 渗透测试技巧
[321星][3m] [HTML] eugenekolo/sec-tools A set of security related tools
[320星][3m] xsleaks/xsleaks A collection of browser-based side channel attack vectors.
[318星][13d] cryptax/confsec Security, hacking conferences (list)
[316星][1y] [PHP] grt1st/wooyun_search 乌云公开漏洞、知识库搜索 search from wooyun.org
[315星][2y] burntmybagel/oscp-prep A list of the resources I use as I get ready for the exam
[315星][1m] trimstray/technical-whitepapers 收集:IT白皮书、PPT、PDF、Hacking、Web应用程序安全性、数据库、逆向等
[312星][11m] [Shell] swoodford/aws A collection of bash shell scripts for automating various tasks with Amazon Web Services using the AWS CLI and jq.
[310星][1y] 1522402210/2018-blackhat-tools-list 2018 BlackHat Tools List
[309星][2m] no-github/dork-admin 盘点近年来的数据泄露、供应链污染事件
[306星][2m] [Py] rhinosecuritylabs/cves A collection of proof-of-concept exploit scripts written by the team at Rhino Security Labs for various CVEs.
[306星][2y] [Py] timsutton/python-macadmin-tools List of open-source Python-based Mac sysadmin tools
[305星][2y] [Java] joaomatosf/javadeserh2hc Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).
[305星][3y] [C++] m0n0ph1/malware-1 Malware source code samples leaked online uploaded to GitHub for those who want to analyze the code.
[301星][12m] [Assembly] guitmz/virii Collection of ancient computer virus source codes
[300星][11m] [Shell] ctf-wiki/ctf-tools CTF 工具集合
[299星][25d] [JS] aws-samples/aws-serverless-security-workshop In this workshop, you will learn techniques to secure a serverless application built with AWS Lambda, Amazon API Gateway and RDS Aurora. We will cover AWS services and features you can leverage to improve the security of a serverless applications in 5 domains: identity & access management, code, data, infrastructure, logging & monitoring.
[299星][2y] [C] pwning/docs Tips, Tricks, and Suggestions for Running a CTF
[298星][1y] [Shell] yw9381/burp_suite_doc_zh_cn 这是基于Burp Suite官方文档翻译而来的中文版文档
[297星][5m] tanprathan/owasp-testing-checklist OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and pending test cases.
[295星][1y] findneo/newbie-security-list 网络安全学习资料,欢迎补充
[295星][9m] vysecurity/domainfrontinglists A list of Domain Frontable Domains by CDN
[294星][3y] lucyoa/ctf-wiki Hacking techniques useful during CTFs
[294星][7m] [JS] ma3k4h3d/papers Some papers about cyber security
[294星][10m] [HTML] s1gh/ctf-literature Collection of free books, papers and articles related to CTF challenges.
[292星][8m] [Py] cesar-rodriguez/terrascan Collection of security and best practice test for static code analysis of terraform templates
[290星][30d] [C#] matterpreter/offensivecsharp Collection of Offensive C# Tooling
[289星][3y] [Py] dhilipsiva/webapp-checklist Technical details that a programmer of a web application should consider before making the site public.
[289星][15d] [Java] mr-xn/penetration_testing_poc 渗透测试有关的POC、EXP、脚本、提权、小工具等
[287星][10m] wallarm/awesome-nginx-security A curated list of awesome links related to application/API security in NGINX environment.
[286星][3y] [Py] nanshihui/poccollect a plenty of poc based on python
[285星][3y] [HTML] buddhalabs/packetstorm-exploits Collection of publicly available exploits from Packetstorm
[284星][3m] [C] ayeks/sgx-hardware This is a list of hardware which is supports Intel SGX - Software Guard Extensions.
[282星][23d] [PHP] nico3333fr/csp-useful Collection of scripts, thoughts about CSP (Content Security Policy)
[281星][3m] [C] 0xdea/exploits 研究员 0xdeadbeef 的公开exploits 收集
[277星][2y] [Assembly] tinysec/windows-syscall-table Win XP 到 Win 10 的系统调用表,包括 SSDT 和 Shadow SSDT
[276星][4m] mattnotmax/cyberchef-recipes A list of cyber-chef recipes
[273星][3m] [JS] hynekpetrak/javascript-malware-collection Collection of almost 40.000 javascript malware samples
[272星][18d] [JS] ropnop/serverless_toolkit A collection of useful Serverless functions I use when pentesting
[272星][18d] zodiacon/alltools All reasonably stable tools
[271星][8m] offensive-security/nethunter-lrt The Nethunter Linux Root Toolkit is a collection of bash scripts which install Nethunter onto a supported device.
[270星][2y] [Java] reoky/android-crackme-challenge A collection of reverse engineering challenges for learning about the Android operating system and mobile security.
[267星][2y] [PHP] sqlmapproject/testenv A collection of web pages vulnerable to SQL injection flaws
[265星][13d] [Py] den4uk/andriller a collection of forensic tools for smartphones
[260星][5m] zhaoweiho/web-sec-interview Information Security (Web Security/Penetration Testing Direction) Interview Questions/Solutions 信息安全(Web安全/渗透测试方向)面试题/解题思路
[260星][1m] thelsa/cs-checklist PC客户端(C-S架构)渗透测试checklist / Client side(C-S) penestration checklist
[258星][24d] [Jupyter Notebook] aws-samples/aws-security-workshops A collection of the latest AWS Security workshops
[258星][30d] [Py] inforion/idapython-cheatsheet Scripts and cheatsheets for IDAPython
[258星][2y] [Go] netxfly/xsec-ip-database 恶意IP 和域名库。通过爬虫定期拉取网络中公开的恶意ip 库来获取恶意IP和域名,且支持与自有的其他安全产品联动(HIDS、WAF、蜜罐、防火墙等产品),实时更新IP库
[257星][4y] [C] roxas75/rxtools a collection of hacking tools for Nintendo 3DS/3DSXL/2DS, compatible with all the system versions from 4.1 to 9.2
[256星][11m] [C++] ramadhanamizudin/malware Malware Samples. Uploaded to GitHub for those want to analyse the code. Code mostly from:
[253星][5m] [C++] tonychen56/hackertools 使用MFC编写的病毒技术合集
[252星][12m] crytic/awesome-ethereum-security A curated list of awesome Ethereum security references
[250星][9m] 0x4d31/awesome-oscp A curated list of awesome OSCP resources
[249星][1m] pomerium/awesome-zero-trust A curated collection of awesome resources for the zero-trust security model.
[246星][30d] [C++] strazzere/android-scripts Android逆向脚本收集
[245星][2y] ludiosarchive/unfixed-security-bugs 已公开但未修复的漏洞列表。包括Chrome、VirtualBox、WeeChat、Windows(7-10)等知名软件。
[244星][2y] hsis007/useful_websites_for_pentester This repository is to make life of the pentester easy as it is a collection of the websites that can be used by pentesters for day to day studies and to remain updated.
[244星][3y] [PHP] tdifg/webshell WebShell Collect
[243星][10m] accordbox/awesome-scrapy A curated list of awesome packages, articles, and other cool resources from the Scrapy community.
[243星][2m] croqaz/awesome-decentralized Awesome distributed, decentralized, p2p apps or tools
[243星][17d] euphrat1ca/security_w1k1 collect
[243星][3y] misterch0c/awesome-hacking A collection of various awesome lists for hackers, pentesters and security researchers
[241星][2y] kinimiwar/penetration-testing List of awesome penetration testing resources, tools and other shiny things
[239星][16d] pe3zx/my-infosec-awesome My curated list of awesome links, resources and tools on infosec related topics
[236星][3m] [Py] boy-hack/airbug Airbug(空气洞),收集漏洞poc用于安全产品
[233星][8m] [C] ctz/cifra A collection of cryptographic primitives targeted at embedded use.
[233星][2y] wizardforcel/web-hacking-101-zh
[231星][15d] cpuu/awesome-fuzzing A curated list of awesome Fuzzing(or Fuzz Testing) for software security
[228星][6m] guardrailsio/awesome-dotnet-security Awesome .NET Security Resources
[227星][2y] [C#] t3ntman/social-engineering-payloads Collection of social engineering payloads
[224星][23d] vixentael/my-talks List of my talks and workshops: security engineering, applied cryptography, secure software development
[223星][3m] [C] david942j/ctf-writeups Collection of scripts and writeups
[223星][15d] decalage2/awesome-security-hardening A collection of awesome security hardening guides, tools and other resources
[222星][14d] [C#] carlospolop/privilege-escalation-awesome-scripts-suite PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
[222星][9m] jesusprubio/awesome-nodejs-pentest Awesome Node.js for pentesters
[222星][2m] [PS] tonyphipps/meerkat A collection of PowerShell modules designed for artifact gathering and reconnaisance of Windows-based endpoints.
[221星][2y] sh4hin/mobileapp-pentest-cheatsheet The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
[221星][5m] security-checklist/php-security-check-list PHP Security Check List [ EN ]
[219星][18d] [JS] strangerealintel/cyberthreatintel Analysis of malware and Cyber Threat Intel of APT and cybercriminals groups
[217星][3m] [CSS] 7dog7/bottleneckosmosis 瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf
[217星][2y] cure53/browser-sec-whitepaper Cure53 Browser Security White Paper
[217星][2y] [Py] euphrat1ca/fuzzdb-collect 网络上安全资源的搜集
[216星][10m] puresec/awesome-serverless-security A curated list of awesome serverless security resources such as (e)books, articles, whitepapers, blogs and research papers.
[214星][13d] shogunlab/awesome-hyper-v-exploitation A curated list of Hyper-V exploitation resources, fuzzing and vulnerability research.
[213星][11m] jeansgit/redteam RedTeam资料收集整理
[209星][7m] [PHP] momosecurity/rhizobia_p PHP安全SDK及编码规范
[209星][1m] sigp/solidity-security-blog Comprehensive list of known attack vectors and common anti-patterns
[207星][1y] faizann24/resources-for-learning-hacking All the resources I could find for learning Ethical Hacking and penetration testing.
[207星][15d] vschiavoni/sgx-papers A list of system papers using/about Intel SGX
[204星][2y] evnm/research-in-production A collection of research papers categorized by real-world systems that enact them
[201星][13d] anudeepnd/blacklist Curated and well-maintained host file to block ads, tracking, cryptomining and more! Updated regularly.
[201星][1y] [Py] sec-bit/awesome-buggy-erc20-tokens A Collection of Vulnerabilities in ERC20 Smart Contracts With Tokens Affected
[200星][1y] iamcryptoki/snowden-archive
[199星][4y] [Java] pwntester/serialkillerbypassgadgetcollection Collection of bypass gadgets to extend and wrap ysoserial payloads
[198星][1m] [F#] b2r2-org/b2r2 B2R2 is a collection of useful algorithms, functions, and tools for binary analysis.
[198星][10m] hannoch/scaner 开源扫描器的集合,包括子域枚举、数据库漏洞扫描器、弱密码或信息泄漏扫描器、端口扫描器、指纹扫描器以及其他大规模扫描仪、模块扫描器等。对于其他著名的扫描工具,如:awvs、nmap,w3af将不包含在集合范围内。
[198星][5y] rutkai/pentest-bookmarks A collection of penetration testing related sites
[197星][1y] [Py] pstirparo/mac4n6 Collection of forensics artifacs location for Mac OS X and iOS
[196星][4m] jdonsec/allthingsssrf This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
[196星][3m] noorqureshi/kali-linux-cheatsheet Kali Linux Cheat Sheet for Penetration Testers
[196星][10m] zardus/wargame-nexus An sorted and updated list of security wargame sites.
[195星][9m] [Py] lingerhk/hacking_script 开发或收集的一些网络安全方面的脚本、小工具
[195星][12m] [JS] zer4tul/hacker-howto 本文原文由知名Hacker Eric S. Raymond 所撰写,教你如何成为一名黑客。
[194星][1y] [HTML] yaseng/iot-security-wiki IOT security wiki
[193星][4m] [ObjC] riusksk/secconarchive Security Conference Archive
[192星][4m] [Py] jrspruitt/ubi_reader Collection of Python scripts for reading information about and extracting data from UBI and UBIFS images.
[192星][7m] pochubs/pochubs PocHubs是为了整合网上知名开源框架的漏洞详细和POC
[188星][4y] [Lua] automayt/ics-pcap ICS/SCADA PCAP收集
[186星][2m] feeicn/securityinterviewquestions 网络信息安全从业者面试指南(持续补充各公司招聘题目和侧重点)
[186星][1y] yellowbyte/analysis-of-anti-analysis writings on anti-reverse engineering
[185星][3m] [Py] naategh/pyck A collection of useful Python hacking scripts for beginners
[184星][15d] enovella/tee-reversing A curated list of public TEE resources for learning how to reverse-engineer and achieve trusted code execution on ARM devices
[184星][14d] fkie-cad/awesome-embedded-and-iot-security A curated list of awesome embedded and IoT security resources.
[184星][3y] [Py] wavestone-cdt/hadoop-attack-library A collection of pentest tools and resources targeting Hadoop environments
[183星][4m] radareorg/r2con Radare Congress Stuff
[182星][10m] [Py] hasecuritysolutions/logstash Contains Logstash related content including tons of Logstash configurations
[182星][3m] mre/awesome-dynamic-analysis A curated list of dynamic analysis tools for various programming languages
[181星][2y] [PHP] lcatro/php-webshell-bypass-waf 分享PHP WebShell 绕过WAF 的一些经验
[180星][8m] pandazheng/threat-intelligence-analyst 威胁情报,恶意样本分析,开源Malware代码收集
[179星][2y] [CSS] bhdresh/socialengineeringpayloads This is a collection of social engineering tricks and payloads being used for credential theft and spear phishing attacks.
[177星][2y] [Py] duo-labs/idapython Duo 实验室使用的IDAPython 脚本收集
cortex_m_firmware 整理包含ARM Cortex M微控制器固件的IDA Pro数据库
amnesia 使用字节级启发式在IDA Pro数据库中的未定义字节中查找ARM Thumb指令
REobjc 在Objective-C的调用函数和被调用函数之间进行适当的交叉引用
[176星][7y] [Py] gdssecurity/gwt-penetration-testing-toolset 辅助渗透测试GWT程序的3个工具
[175星][9m] guardrailsio/awesome-java-security Awesome Java Security Resources
[175星][18d] winmin/awesome-vm-exploit share some useful archives about vm and qemu escape exploit.
[174星][2m] chbrian/awesome-adversarial-examples-dl A curated list of awesome resources for adversarial examples in deep learning
[170星][10m] thehackingsage/hackdroid Penetration Testing Apps for Android
[169星][3y] [Py] northernsec/cve-scan Scan systems with NMap and parse the output to a list of CVE's, CWE's and DPE's
[168星][12m] [Py] mnkgrover08-zz/whatsapp_automation Whatsapp Automation is a collection of APIs that interact with WhatsApp messenger running in an Android emulator, allowing developers to build projects that automate sending and receiving messages, adding new contacts and broadcasting messages multiple contacts.
[168星][2y] [Py] monrocoury/forensic-tools A collection of tools for forensic analysis
[167星][1m] [Py] botherder/targetedthreats Collection of IOCs related to targeting of civil society
[167星][2y] [C++] mortenschenk/bhusa2017 Content from presentation at BHUSA 2017
[166星][7m] [Ruby] r00t-3xp10it/msf-auxiliarys My collection of metasploit auxiliary post-modules
[164星][3m] mdrights/digital-rights 抵抗国家机器对公民的监控
[163星][3y] [Py] ctfs/write-ups-tools A collection of tools used to maintain and create CTF write-up folders
[163星][2y] secwiki/hack-movie 黑客相关的电视剧/电影/纪录片
[161星][2y] javierolmedo/shodan-filters A list of shodan filters
[161星][1y] splunk/botsv1 A sample security dataset and CTF platform
[161星][7m] [C#] xorrior/random-csharptools Collection of CSharp Assemblies focused on Post-Exploitation Capabilities
[160星][1y] [HTML] exploitprotocol/mobile-security-wiki
[159星][1y] joychou93/sks Security Knowledge Structure(安全知识汇总)
[159星][3y] [Py] nneonneo/eqgrp-free-file Free sampling of files from the purported Equation Group hack.
[159星][6m] samanl33t/awesome-mainframe-hacking List of Awesome Mainframe Hacking/Pentesting Resources
[158星][4m] [HTML] zer0yu/berserker A list of useful payloads for Web Application Security and Pentest/CTF
[157星][9m] dckc/awesome-ocap Awesome Object Capabilities andCapability-based Security
[156星][1y] [YARA] mikesxrs/open-source-yara-rules YARA Rules I come across on the internet
[156星][2y] [PS] psconfeu/2018 PowerShell Conference Europe 2018 Slides and Demo Scripts
[156星][2y] [ASP] testsecer/webshell 这是一个WebShell收集项目
[154星][3y] zbetcheckin/pdf_analysis Several PDF analysis reassembled with additional tips and tools
[151星][1y] chryzsh/awesome-windows-security List of Awesome Windows Security Resources
[151星][3y] [C] pustladi/windows-2000 Windows 2000专业版的源码
[151星][7m] shramos/awesome-cybersecurity-datasets A curated list of amazingly awesome Cybersecurity datasets
[150星][1y] brucetg/app_security
[150星][2y] dragonquesthero/awesome-windows-security-development awesome-windows-security-development
[150星][2m] leonjza/awesome-nmap-grep Awesome Nmap Grep
[150星][2y] [Py] malwaretech/trickbot-toolkit A collection of tools for dealing with TrickBot
[149星][6y] [C++] kaiserfarrell/malware virus collection source code
[148星][11m] [Shell] aturl/awesome-anti-gfw 突破网络审查和封锁的开源工具清单。
[148星][7m] [Shell] petermosmans/security-scripts A collection of security related Python and Bash shell scripts. Analyze hosts on generic security vulnerabilities. Wrapper around popular tools like nmap (portscanner), nikto (webscanner) and testssl.sh (SSL/TLS scanner)
[147星][14d] [Shell] recolic/awesome-hust HUST experiments, reports, and useful tools.
[147星][1m] security-cheatsheet/reverse-shell-cheatsheet
[146星][2m] bin2415/fuzzing_paper puzzing related paper
[145星][2y] chan9390/awesome-mitm Curated List of MitM frameworks on GitHub
[145星][3m] [Py] ripe-atlas-community/ripe-atlas-community-contrib Repository for links towards tools written during hackathons, and a collection of contributions by the community of the RIPE Atlas visualizations, tools for analysing measurements data and other scripts
[145星][3y] [PHP] webshellpub/awsome-webshell webshell样本大合集。收集各种webshell用于webshell分析与发现
[144星][10m] [Py] kacperszurek/exploits 提权漏洞利用集合
[142星][3y] [C] mdsecresearch/publications A list of published research documents
[142星][3y] kejane/securityrss 网络安全相关的RSS订阅列表
[141星][6m] [C++] oatpp/oatpp-examples List of example projects of how to use oat++ framework
[140星][1y] laxa/hackingtools Exhaustive list of hacking tools
[140星][8y] stefanesser/ida-ios-toolkit 辅助处理iOS kernelcache的IDAPython收集
[139星][29d] pomerium/awesome-security-audits A collection of public security audits.
[138星][2y] [Py] duoergun0729/3book 《Web安全之强化学习与GAN》
[137星][11d] [Py] omegak2/pypoe Collection of Python Tools for Path of Exile
[136星][8m] gaerae/awesome-algorithms-education A curated list to learning and practicing about algorithm.
[136星][3y] kurobeats/pentest-bookmarks Open Penetration Testing Bookmarks Collection
[136星][2m] [Py] wudimahua/firewall 美国国家安全局NSA下属方程式黑客组织(Equation Group)被The Shadow Brokers(影子经纪人)hack出来的并免费分享的源码
[135星][6m] [Makefile] cirosantilli/arm-assembly-cheat MOVED TO:
[135星][11m] [PS] securemode/invoke-apex A PowerShell-based toolkit and framework consisting of a collection of techniques and tradecraft for use in red team, post-exploitation, adversary simulation, or other offensive security tasks.
[135星][2y] thec00n/smart-contract-honeypots 智能合约蜜罐收集
[135星][1y] [Shell] onmyway133/swiftsnippets A collection of Swift snippets to be used in Xcode
[134星][3y] aqzt/sso 项目主要是汇集整理服务器安全运维规范,包括运维工程师必须遵守的规范、服务器运维中注意事项、故障避免手段等文档,帮助运维工程师避免服务器安全和运维故障,方便运维工程师学习成长。
[133星][3y] [C++] chenenyu/androidsecurity Android安全实践
[133星][2m] jlopp/physical-bitcoin-attacks A list of known attacks against Bitcoin / crypto asset owning entities that occurred in meatspace.
[133星][10d] [Shell] adroitadorkhan/energizedprotection A merged collection of hosts from reputable sources. #StayEnergized!
[132星][2y] [C#] m0xiaoxi/ctftools 本项目主要搜集一些关于信息安全攻防相关的知识与工具,便于个人的渗透工作。
[131星][2y] [HTML] chybeta/waf-bypass WAF Bypass Cheatsheet
[131星][10m] [HTML] minhaskamal/cuteviruscollection A Collection of Cute But Deadly Viruses (small-unharmful-annoying-harmless-funny-malware-virus-worm-windows-xp-7-10)
[131星][11m] [C] regehr/ub-canaries collection of C/C++ programs that try to get compilers to exploit undefined behavior
[130星][30d] inquest/yara-rules A collection of YARA rules we wish to share with the world, most probably referenced from
[130星][1y] [PS] xor-function/fathomless A collection of post-exploitation tools for network red teaming. (Migrating to Fathomless Project)
[128星][2y] mawenjian/china-cdn-domain-whitelist 中国CDN服务提供商域名白名单(China CDN Service Providers' Domain Whitelist)
[127星][10m] whid-injector/awesome-go-offensive-tools List of Awesome Offensive Tools written in GO
[126星][3m] [HTML] sundaysec/android-exploits A collection of android Exploits and Hacks
[123星][2m] [HTML] edoverflow/proof-of-concepts A little collection of fun and creative proof of concepts to demonstrate the potential impact of a security vulnerability.
[123星][2y] we5ter/awesome-platforms A curated list of awesome security platforms,including CTF/Security Response Center/Bug Tracker and so on.
[123星][2y] [Shell] averagesecurityguy/cheat-sheets Various Cheat Sheets related to development and security
[122星][1y] nagwww/s3-leaks List of S3 Hacks
[121星][1y] [PHP] a0xnirudh/kurukshetra 通过交互式解决问题的方式来学习安全编程
[121星][4y] [Py] fengxuangit/dede_exp_collect collection dedecms exp use pocsuite framework 收集织梦的一些漏洞,并用pocsuite框架写出利用程序。打造一键日dede
[121星][16d] [HTML] mozillasecurity/fuzzmanager A fuzzing management tools collection
[121星][4y] sandysekharan/ctf-tool A curated list of Capture The Flag (CTF) frameworks, libraries, resources and softwares.
[120星][10m] byt3bl33d3r/ansibleplaybooks A collection of Ansible Playbooks that configure Kali to use Fish & install a number of tools
[118星][7m] fabionoth/awesome-cyber-security A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
[118星][1y] [lua] tanjiti/icstools ics security tools
[117星][9m] marcosvalle/awesome-windows-red-team A curated list of awesome Windows frameworks, libraries, software and resources for Red Teams
[117星][4m] [PS] thom-s/netsec-ps-scripts Collection of PowerShell network security scripts for system administrators.
[116星][2m] govanguard/list-pentest-tools A curated list of network penetration testing tools.
[111星][1m] firmianay/security-paper (与本人兴趣强相关的)各种安全or计算机资料收集
[110星][3m] [C++] x64dbg/scripts A collection of x64dbg scripts. Feel free to submit a pull request to add your script.
[108星][8m] binject/awesome-go-security A dedicated place for cool golang security projects
[108星][2y] [Ruby] porterhau5/bloodhound-owned A collection of files for adding and leveraging custom properties in BloodHound.
[107星][3m] ajvb/awesome-tor A list of awesome Tor related projects, articles, papers, etc
[105星][4m] [Py] ex16x41/oscp-prep my oscp prep collection
[105星][2y] gossithedog/threathunting Tools for hunting for threats.
[105星][4m] soffensive/windowsblindread A list of files / paths to probe when arbitrary files can be read on a Microsoft Windows operating system
[104星][3y] [Py] landgrey/taoman 快速收集
[103星][3y] [C++] azuregreen/injectcollection A collection of injection via vc++ in ring3
[102星][8m] fox-it/cobaltstrike-extraneous-space Historical list of {Cobalt Strike,NanoHTTPD} servers
[102星][13d] houjingyi233/cpu-vulnerability-collections
[102星][3m] ashemery/linuxforensics Everything related to Linux Forensics
[102星][13d] chryzsh/awesome-bloodhound A curated list of awesome BloodhoundAD resources
[101星][2m] jonaschn/awesome-he A curated list of amazing Homomorphic Encryption libraries, software and resources
[101星][4m] xx0hcd/malleable-c2-profiles Cobalt Strike - Malleable C2 Profiles. A collection of profiles used in different projects using Cobalt Strike
[100星][5y] [Py] blasty/moneyshot A collection of python scripts to aid you in the final steps of binary exploitation or during the construction of buffers.
[100星][17d] [Ruby] hahwul/mad-metasploit Metasploit custom modules, plugins, resource script and.. awesome metasploit collection
[99星][19d] [TeX] misp/misp-training MISP trainings, threat intel and information sharing training materials with source code
[99星][10y] [C] tecknicaltom/dsniff dsniff is a collection of tools for network auditing and penetration testing.
[99星][2y] [PS] testingpens/malwarepersistencescripts A collection of scripts I've written to help red and blue teams with malware persistence techniques.
[98星][3m] byt3bl33d3r/slides Slides from various talks that I've given over the years
[98星][2y] [Py] leesoh/yams A collectionof Ansible roles for automating infosec builds.
[97星][2y] [Shell] chorankates/h4ck a collection of writeups and tools related to ~embedded device ~hacking
[97星][1y] [Py] njcx/pocsuite_poc_collect 收集一些 poc with pocsuite框架
[97星][3y] [C] s4n7h0/practical-reverse-engineering-using-radare2 Training Materials of Practical Reverse Engineering using Radare2
[97星][4y] [Java] zencodex/hack-android Collection tools for hack android, java
[96星][3m] geeksonsecurity/vuln-web-apps A curated list of vulnerable web applications.
[96星][2y] [Java] jgillam/burp-co2 A collection of enhancements for Portswigger's popular Burp Suite web penetration testing tool.
[95星][2y] [C] cetfor/antidbg A bunch of Windows anti-debugging tricks.
[95星][3m] [PHP] commixproject/commix-testbed A collection of web pages, vulnerable to command injection flaws.
[95星][5y] [Py] nihilus/ida-idc-scripts 多个IDC脚本收集
[94星][14d] [Py] alanvivona/pwnshop Exploit Development and Reverse Engineering topics
[94星][10d] [Py] endermanch/malwaredatabase This repository is one of a few malware collections on the GitHub.
[94星][2y] [ObjC] r0ysue/osg-teams 希望大家在合作中学习姿势、提升技术、交流感情。比赛第二,友谊第一。
[93星][5y] [Py] debasishm89/hack_audio_captcha Collection of Scripts written to Solve/Crack Audio reCapcha Challenges
[93星][4y] [Py] groundworkstech/pybfd A Python interface to the GNU Binary File Descriptor (BFD) library.
[93星][23d] [Py] log2timeline/dftimewolf A framework for orchestrating forensic collection, processing and data export
[92星][2m] [PS] dbheise/vm_setup A collection of scripts to initialize a windows VM to run all the malwares!
[92星][1y] [PS] rasta-mouse/aggressor-script Collection of Aggressor Scripts for Cobalt Strike
[92星][2y] [PS] sadprocessor/empiredog A collection of PowerShell Modules for BloodHound/Empire Orchestration
[92星][2y] [C] secwiki/android-kernel-exploits android kernel exploits漏洞集合
[91星][1y] 001spartan/aggressor_scripts A collection of useful scripts for Cobalt Strike
[91星][2y] grrrdog/tls-redirection raise awareness of a little-known group of attacks, TLS redirection / Virtual Host Confusion, and to bring all the information related to this topic together.
[91星][6m] [C++] niklasb/sploits
[91星][2y] [PS] russelltomkins/active-directory Collection of scripts for Querying and Managing Active Directory and Domain Controllers
[90星][10m] pandazheng/securitysite 收集了一些安全公司的博客
[90星][3m] [Py] radareorg/r2con2019 slides and materials
[90星][1m] payloadbox/sql-injection-payload-list SQL Injection Payload List
[89星][8m] [Shell] hannob/tlshelpers A collection of shell scripts that help handling X.509 certificate and TLS issues
[89星][12m] paralax/awesome-internet-scanning A curated list of awesome Internet port and host scanners, plus related components and much more, with a focus on free and open source projects.
[89星][19d] [C++] sinakarvandi/process-magics This is a collection of interesting codes about Windows Process creation.
[88星][19d] claucece/useful-crypto-resources A place for useful crypto-related resources plus some of my fav stuff
[88星][4y] dantaler/detectionstring list of sql-injection and XSS strings
[88星][6m] v-p-b/avpwn List of real-world threats against endpoint protection software
[88星][1y] [TeX] zxgio/r2-cheatsheet Radare2 cheat-sheet
[87星][9m] [Py] laconicwolf/burp-extensions A collection of scripts to extend Burp Suite
[86星][3y] aidanharris/free-security-ebooks-from-packtpub Collection of free Security eBooks from Packt Publishing [Regularly Updated]
[86星][5m] chrisdiana/awesome-odroid-go A collection of awesome ODROID-GO emulators, games and resources
[86星][9m] nongiach/awesome-cryptocurrency-security Awesome cryptocurrency security
[86星][1y] [HTML] radareorg/r2con2018
[85星][10d] caledoniaproject/awesome-opensource-security A list of interesting stuffs that I have no time to test/review
[85星][1y] ckjbug/kali-linux-learning
[85星][2y] palmercluff/qemu-images A collection of disk images and virtual machines that can be used by the QEMU emulator
[85星][1y] santosomar/who_and_what_to_follow Who and what to follow in the world of cyber security
[83星][9m] kai5263499/awesome-container-security Awesome list of resources related to container security
[83星][2y] [Py] am0nsec/exploit Collection of different exploits
[83星][17d] allsafecybersecurity/awesome-ghidra A curated list of awesome Ghidra materials
[82星][4m] blockchainlabsnz/awesome-solidity A curated list of awesome Solidity resources
[82星][9m] [Py] ciscodevnet/virlutils
[82星][11m] sderosiaux/guidelines-to-create-a-strong-website A list of all things to consider when making a website or webapp of quality.
[82星][14d] yingtongdou/graph-adversarial-learning-literature A curated list of adversarial attacks and defenses papers on graph-structured data.
[82星][21d] alphaseclab/sec-tool-list Almost 18K security related open source tools, sorted by star count. Both in markdown and json format.
[81星][4y] fabiobaroni/awesome-chinese-infosec-websites A curated list of Chinese websites and personal blogs about ethical hacking and pentesting
[81星][3y] [Py] januzellij/hopperscripts Collection of scripts I use in the Hopper disassembler
[81星][1m] [ObjC] poomsmart/idaobjctypes A collection of types & functions definitions useful for Objective-C binaries analysis.
[79星][2y] iamhdt/ecommerce-website-security-checklist List of considerations for commerce site auditing and security teams. This is summary of action points and areas that need to be built into the Techinical Specific Document, or will be checked in the Security testing phases.
[79星][2y] [Py] imiyoo2010/teye_scanner_for_book 《白帽子讲Web扫描》书籍参考代码
[79星][3y] yeyintminthuhtut/awesome-study-resources-for-kernel-hacking Kernel Hacking study materials collection
[78星][6y] [CSS] gajus/bugger Bugger is a collection of functions for debugging PHP code.
[78星][3y] [HTML] malqr/malqr.github.io MalQR is a collection of malicious QR Codes and Barcodes you can use to test the security of your scanners.
[78星][3y] [Py] securitystreak/security-scripts A collection of public offensive and defensive security related scripts for InfoSec students.
[77星][4y] [HTML] f47h3r/hackingteam_exploits Initial Collection of HackingTeam Exploits
[76星][4y] hardhatdigital/rails-security-audit A checklist of Rails security audit
[76星][4m] ivbeg/awesome-forensicstools Awesome list of digital forensic tools
[76星][10m] misterch0c/crimeboards A list of private and public (more or less) blackhat boards
[76星][4m] ivbeg/awesome-forensicstools Awesome list of digital forensic tools
[75星][2y] [HTML] cyberheartmi9/payloadsallthethings
[75星][9m] edelahozuah/awesome-wifi-security A collection of awesome resources related to 802.11 security, tools and other things
[75星][4m] gouveaheitor/awesome-biohacking a awesome collection about Biohacking.
[75星][3m] [C++] shellvm/shellvm A collection of LLVM transform and analysis passes to write shellcode in regular C
[75星][1y] tianjifou/ios-security-attack-and-prevent iOS安全攻与防,详细的列出了,在iOS开发中,项目会存在的安全漏洞以及解决办法。
[74星][6m] [HTML] ph0en1x-xmu/awesome-ctf-book Study CTF, study security
[74星][3y] wtsxdev/android-security-list Collection of Android security related resources
[73星][3y] lcatro/hacker_document 收集一些以前看过对于入门和进阶很有用的攻击原理文档..
[73星][3y] [Py] programa-stic/hexag00n Hexag00n: A collection of reverse engineering tools for the Qualcomm Digital Signal Proccesor (QDSP6)
[72星][5y] [C#] khr0x40sh/whitelistevasion Collection of scripts, binaries and the like to aid in WhiteList Evasion on a Microsoft Windows Network.
[72星][3y] [Py] roothaxor/ransom Various codes related to Ransomware Developement
[72星][9m] wufengxue/android-reverse 安卓逆向工具汇总
[72星][2y] zntfdr/awesome-twitter-bots A Curated Collection of the Best Twitter Bots
[71星][8y] [Py] hellais/buckle-up Script for running Mac OS X applications in a sandbox and a collection of seatbelt profiles
[70星][5m] ascotbe/osmographic-brain-mapping 渗透脑图(渗透步骤)
[70星][2y] hacker0x01/h1-212-ctf-solutions A collection of the solutions people wrote for the H1-212 Capture The Flag event
[70星][3y] [Ruby] melvinsh/subresolve Resolve and quickly portscan a list of (sub)domains.
[70星][4y] [C++] nccgroup/windowsdaclenumproject A collection of tools to enumerate and analyse Windows DACLs
[70星][3y] [HTML] skylined/bugs Collection of software bugs found by SkyLined
[70星][7m] [C++] thomasthelen/antidebugging A collection of c++ programs that demonstrate common ways to detect the presence of an attached debugger.
[70星][4y] [C++] waleedassar/antidebug Collection Of Anti-Debugging Tricks
[70星][6m] wbierbower/awesome-physics A collaborative list of awesome software for exploring Physics concepts
[70星][16d] [Shell] sclorg/s2i-php-container PHP container images based on Red Hat Software Collections and intended for OpenShift and general usage, that provide a platform for building and running PHP applications. Users can choose between Red Hat Enterprise Linux, Fedora, and CentOS based images.
[70星][3m] opentoallctf/tips
[69星][3m] [C] aerosoul94/ida_gel A collection of IDA loaders for various game console ELF's. (PS3, PSVita, WiiU)
[67星][11d] [TSQL] mitchellkrogza/the-big-list-of-hacked-malware-web-sites This repository contains a list of all web sites I come across that are either hacked with or purposefully hosting malware, ransomware, viruses or trojans.
[67星][2y] shmilylty/awesome-malware-analysis A curated list of awesome malware analysis tools and resources
[66星][3y] [Py] jgamblin/badactors Create a list of bad actors from public IP blacklist.
[66星][2y] tkmru/awesome-linux-rootkits Awesome Linux Rootkits
[66星][10m] [Py] phxbandit/scripts-and-tools Scripts and utilities to help your hacking needs
[66星][10m] security-cheatsheet/wireshark-cheatsheet Wireshark Cheat Sheet
[65星][5m] [JS] exposejs/expose A Dynamic Symbolic Execution (DSE) engine for JavaScript
[65星][1y] [Py] immunit/xip XIP generates a list of IP addresses by applying a set of transformations used to bypass security measures e.g. blacklist filtering, WAF, etc.
[65星][5m] [Py] integeruser/on-pwning My solutions to some CTF challenges and a list of interesting resources about pwning stuff
[65星][12m] [HTML] mtesauro/owasp-wte Home of the developement for OWASP WTE - the Web Testing Environment, a collection of pre-packaged Linux AppSec tools, apps and documentation used to create pre-configured VMs or installed ala carte in the Linux of your choice..
[65星][1y] [Py] naivenom/reversing-list Reversing list
[65星][2y] [HTML] secwiki/ipot 蜜罐技术研究小组
[64星][2y] opsxcq/proxy-list A curated list of free public proxy servers
[64星][1y] [Lua] pr4jwal/quick-scripts A collection of my quick and dirty scripts for vulnerability POC and detections
[64星][3y] secdr/sec-ml 与安全相关的机器学习资料
[63星][9m] [Shell] ernw/static-toolbox A collection of statically compiled tools like Nmap and Socat.
[63星][3y] funkmyster/awesome-cloud-security Curated list of awesome cloud security blogs, podcasts, standards, projects, and examples.
[63星][28d] tiaotiaolong/sec_interview_know_list 信息安全方面面试清单
[62星][9m] [Py] 3lackrush/poc-bank Focus on cybersecurity | collection of PoC and Exploits
[62星][1y] pfalcon/awesome-linux-android-hacking List of hints and Q&As to get most of your Linux/Android device
[62星][3y] shmilylty/sec-box information security Tools Box (信息安全工具集合)
[62星][30d] ga1ois/bluehat-2019-seattle All the materials in BlueHat 2019 Seattle will be realeased here.
[61星][2y] im-bug/blockchain-security-list
[61星][3y] [Py] samyk/awesome-vehicle-security A curated list of awesome resources, books, hardware, software, applications, people to follow, and more cool stuff about vehicle security, car hacking, and tinkering with the functionality of your car.
[61星][7y] [JS] enablesecurity/webapp-exploit-payloads a collection of payloads for common webapps
[60星][2m] infosec-community/apac-conferences A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.
[60星][5y] [Go] jgrahamc/torhoney Gets the list of TOR exit nodes and matches them with Project Honeypot data
[60星][2y] [Shell] kevthehermit/pentest Just a collection of pentest stuffs
[59星][1y] [Roff] cloudsriseup/hacker_ezines A collection of electronic hacker magazines carefully curated over the years from multiple sources
[59星][1y] latestalexey/awesome-web-hacking A list of web application security
[59星][3m] lgg/awesome-keepass Curated list of KeePass-related projects
[59星][3m] [Py] williballenthin/idawilli IDA Pro 资源、脚本和配置文件等
hint_calls 以Hint的形式战士函数引用的call和字符串
dynamic_hints 演示如何为动态数据提供自定义hint的示例插件
add_segment 将已存在文件的内容添加为新的segment
color 对指令进行着色
find_ptrs 扫描.text区段查找可能为指针的值,并进行标记
yara_fn 创建yara规则,匹配当前函数的basic block
idawilli a python module that contains utilities for working with the idapython scripting interface.
themes colors and skins
[58星][4y] [C] dev-zzo/exploits-nt-privesc Exploit collection for NT privilege escalation
[58星][22d] [Py] lich4/personal_script 010Editor/BurpSuite/Frida/IDA等多个工具的多个脚本
010Editor 010Editor的多个脚本
ParamChecker Burp插件
Frida Frida多个脚本
IDA IDA Scripts
IDA-read_unicode.py IDA插件,识别程序中的中文字符
IDA-add_xref_for_macho 辅助识别Objective-C成员函数的caller和callee
IDA-add_info_for_androidgdb 使用gdbserver和IDA调试Android时,读取module列表和segment
IDA-trace_instruction 追踪指令流
IDA-detect_ollvm 检测OLLVM,在某些情况下修复(Android/iOS)
IDA-add_block_for_macho 分析macho文件中的block结构
[57星][3m] [PS] eclypsium/screwed-drivers a centralized source of knowledge which contains a list of drivers determined to be vulnerable as well as example code for how to use this kind of functionality.
[57星][2y] [PS] invokethreatguy/csasc Cobalt Strike Aggressor Script Collection
[57星][2y] mrash/afl-cve A collection of vulnerabilities discovered by the AFL fuzzer (afl-fuzz)
[57星][2y] wangyihang/awesome-web-security Awesome Web Security
[57星][3y] shmilylty/awesome-application-security awesome application security chinese version
[56星][2m] [Py] dedsecinside/awesome-scripts A collection of awesome scripts from developers around the globe.
[56星][13d] [PS] jaapbrasser/sharedscripts This is a collection of scripts that I have shared online
[56星][2y] myndtt/ctf-site 介绍一些CTF训练的站点
[55星][26d] guyanqi/awesome-privacy Repository for collection of research papers on privacy.
[55星][10m] muhammd/awesome-pentest Awesome Penetration Testing A collection of awesome penetration testing resources
[55星][23d] [C] outscale/packetgraph Packetgraph library is a collection of network bricks you can connect to form a network graph.
[55星][2y] yrzx404/free-security-resources 安全总是无处不在...
[54星][3y] annsec/awesome-cybersecurity Curated list of awesome cybersecurity companies and solutions.
[54星][1y] cujanovic/subdomain-bruteforce-list subdomain bruteforce list
[54星][4m] mikerah/awesome-privacy-on-blockchains A curated list of privacy on blockchains resources
[54星][2y] [Py] nezza/scada-stuff A collection of scripts & tools for reverse-engineering & hacking SCADA/ICS devices.
[54星][5y] [Py] nnewsom/webbies Collection of tools for web recon and enumeration.
[54星][2m] b-mueller/awesome-mythx-smart-contract-security-tools A curated list of resources and tools for the MythX smart contract security API
[53星][2y] 1522402210/blockchain-security-list BlockChain-Security-List
[53星][2m] [HTML] brampat/security Collection of links to Security stuff
[53星][2m] [C++] cirosantilli/algorithm-cheat MOVING TO:
[53星][6m] [Py] deadbits/malware-analysis-scripts Collection of scripts for different malware analysis tasks
[53星][2y] [Py] h-j-13/malicious_domain_whois
[53星][3y] hack-with-github/awesome-hacking-tools A collection of various hacking and exploitation tools for hackers and pentesters.
[52星][2y] [Py] 0xd34db33f/gfyp Unification of dnstwist + SQLite + Email reporting. Set it as a cron job that runs every hour, give it a list of domains and email addresses for reporting, then watch it go find stuff.
[52星][2y] harshilpatel007/hackinglabs A List Of Labs For People (Students) Who Want Learn OR Practice IT Security / Hacking / Penetration Testing In Ethical Way.
[52星][6m] hitripod/awesome-blockchain Curated list of blockchain, Awesome Awesomeness
[51星][2y] [JS] gnijuohz/awesome-developers A list of awesome developers
[51星][3m] jcesarstef/ghhdb-github-hacking-database Github Hacking Database - My personal collection of Github Dorks to search for Confidential Information (Yes, it's a Github version of Google Dorks)
[50星][12d] [Py] command-tab/awesome-n64-development A curated list of Nintendo 64 development resources including toolchains, documentation, emulators, and more
[50星][2y] [PHP] daudmalik06/reconcat A small Php application to fetch archive url snapshots from archive.org. using it you can fetch complete list of snapshot urls of any year or complete list of all years possible. Made Specially for penetration testing purpose.
[50星][1y] [PS] dgg-it/match-adhashes Builds a hashmap of AD NTLM hashes/usernames and iterates through a second list of hashes checking for the existence of each entry in the AD NTLM hashmap
[50星][9m] [Swift] joncardasis/to-the-apples-core A collection of non-jailbroken code snippets on reverse-engineered iOS private apis
[50星][30d] [PHP] tsug0d/myawesomewebchallenge Collection of my capture-the-flag web challenge in any levels
[49星][3y] maldevel/rootkits-list-download A curated list of rootkits found on Github and other sites.
[49星][1y] opensourcepentest/tools Tools used for Penetration testing / Red Teaming
[49星][2y] [JS] sola-da/redos-vulnerabilities A list of ReDoS vulnerabilities in npm modules found by the Software Lab at TU Darmstadt. For each vulnerability, there is a proof-of-concept exploit, showing how the slowdown may occur. The resources in this repository are provided for research purpose only. Please read below for more details.
[49星][6m] [Shell] t3chnocat/oscp-ctf oscp-ctf is a small collection of basic Bash scripts that make life easier and save time whether you are in the OSCP labs, HackThebox or playing around with CTFs.
[48星][4m] blackint3/awesome-debugging Why Debugging?(为什么要调试?)
[48星][1y] pbnj/infosec-interview-questions
[48星][3m] [C] spacial/csirt CSIRT is an awesome curated list of links and resources in security and csirt daily activities.
[47星][9m] anhkgg/awesome-windbg-extensions awesome windbg extensions
[47星][5m] [C] ihack4falafel/osee Collection of things made during my preparation to take on OSEE
[47星][5y] [Py] neohapsis/mptcp-abuse A collection of tools and resources to explore MPTCP on your network. Initially released at Black Hat USA 2014.
[47星][22d] radareorg/cutter-plugins A curated list of Community Plugins and Scripts written for Cutter
[47星][9m] turing-chain/honeypots-on-blockchain This repo collects almost all the smart contract honeypots that you could find in the first three pages of Google search.
[47星][2m] mohitkhemchandani/oscp_bible This is a collection of resources, scripts, bookmarks, writeups, notes, cheatsheets that will help you in OSCP Preparation as well as for general pentesting and learning. If you feel like you can contribute in it. Please do that, I'll appreciate you.
[46星][9m] syst3ma/awesome-baseband-research A curated list of awesome baseband research resources
[46星][2y] gdssecurity/whitepapers A collection of publicly released whitepapers
[46星][9m] syst3ma/awesome-baseband-research A curated list of awesome baseband research resources
[45星][2y] [Pascal] 0x48piraj/malwarex Collection of killers !
[44星][3y] shmilylty/nmap-reference-guide Nmap Reference Guide(Nmap参考指南)
[43星][4m] [TSQL] abrignoni/dfir-sql-query-repo Collection of SQL query templates for digital forensics use by platform and application.
[43星][1y] [Py] ambionics/prestashop-exploits Collection of exploits/POC for PrestaShop cookie vulnerabilities (CVE-2018-13784)
[43星][1y] bulentrahimkazanci/windbg-cheat-sheet A practical guide to analyze memory dumps of .Net applications by using Windbg
[43星][2y] [C] rbaron/fitless A collection of toy firmwares for the ID115 fitness tracker
[43星][2y] [Py] robertbaruch/polychip Python app to extract a netlist of NMOS transistors from an Inkscape diagram.
[43星][8m] [C] sensepost/frida-windows-playground A collection of Frida hooks for experimentation on Windows platforms.
[43星][2y] [C] shipcod3/irc-bot-hunters a collection of Metasploit PoC exploits for IRC Botnets that allows RCE
[43星][2y] [Shell] wh1t3rh1n0/pentest-scripts Miscellaneous scripts for pentesting
[42星][1y] [Py] daddycocoaman/ironpentest Collection of IronPython scripts and executables for penetration testing
[42星][3m] [Py] dhn/osee Collection of resources for my preparation to take the OSEE certification.
[42星][2m] mikalv/awesome-i2p A curated list of awesome I2P implementations, libraries, resources, projects, and shiny things. I2P is an anonymous overlay network - a network within a network. It is intended to protect communication from dragnet surveillance and monitoring by third parties such as ISPs.
[42星][2y] [C] nixawk/awesome-windows-debug Debug Windows Application / Kernel
[41星][3y] [C++] avdbg/saber 《macOS软件安全与逆向分析》随书的调试器代码
[41星][3y] [Assembly] ilovepp/firminsight Automatic collect firmwares from internet,decompress,find binary code,extract info,file relation and function relation
[40星][10m] 54yimeng/sia-websites 这里是我在youtube等上收集的一些科学上网网站的集合,以各自的网站名命名文件夹。
[40星][2y] milkdevil/ultimateapplockerbypasslist
[40星][2y] [Py] mxmssh/idametrics 收集x86体系结构的二进制可执行文件的静态软件复杂性度量
[39星][3y] [JS] auth0-blog/nodejs-awesome-polls
[39星][4y] [C++] corelan/pin Collection of pin tools
[39星][2m] d1nfinite/sec-interview 信息安全面试题汇总
[39星][29d] [Shell] userlandkernel/plataoplomo Collection of (at time of release) iOS bugs I found
[38星][3y] certtools/intelmq-feeds-documentation Cyber Threat Intelligence Feeds
[38星][7y] [Py] evilcry/pythonscripts Collection of my Python Scripts
[38星][2y] [HTML] keenrivals/bugsite-index Index of websites publishing bugs along the lines of heartbleed.com
[38星][1y] [Py] lnxg33k/misc Collection of useful scripts.
[38星][1y] [Jupyter Notebook] nfrumkin/forecast-prometheus A collection of analysis, and machine learning techniques for time series forecasting w/ Prometheus metrics
[38星][16d] [HTML] q1271964185/cyberspace_security_learning 在学习CTF、网络安全路上整合自己博客和一些资料,持续更新~
[38星][2y] [Py] saelo/ida_scripts 多脚本
kernelcache 识别并重命名iOS kernelcache函数stub。ARM64 Only
ssdt 解析Windows内核中的syscall表
[38星][1y] [Py] tanc7/arms-commander Malware Suite/Menu designed for "Speedy and No-Mistakes Penetration Testing", written in Python 2.7.13 and tested on Kali Linux 4.6 & 4.9, originally intended to only perform the Reconnaissance and Enumeration Stages (it's role is dramatically expanded now). Requires Python 2.7 + Pip + Termcolor Module. All code is entirely free to be used in yo…
[38星][3y] wtsxdev/exploit-development Resources for learning about Exploit Development
[37星][2m] [Py] michaelstott/crlf-injection-scanner Command line tool for testing CRLF injection on list of domains.
[37星][2y] [C] mlafeldt/ps2rd Collection of tools to remotely debug PS2 games
[37星][2m] [Lua] r00t-3xp10it/nmap-nse-modules My collection of nmap nse modules
[37星][3y] vduddu/pentestresources A list of resources for Pentesting from various sources
[37星][2y] rivaill/blockchain-security-awesome A curated list of awesome things related to blockchain security
[36星][17d] [Perl] gouveaheitor/security-spellbook My collection of custom scripts, plugins, exploits and others small things
[36星][10m] [Py] phage-nz/malware-hunting 与 Malware Hunting 相关的脚本/信息收集
[36星][1y] [JS] threatexpress/aggressor-scripts Cobalt Strike Aggressor Scripts
[35星][3y] [Shell] diekmann/net-network Public collection of firewall dumps.
[35星][5y] [Py] kitctf/ctfcode Collection of somewhat useful stuff for CTF events
[35星][7m] [Shell] kitsun3sec/pentest-cheat-sheets A collection of snippets of codes and commands to make your life easier!
[35星][16d] [C] atrosinenko/kbdysch A collection of user-space Linux kernel specific guided fuzzers based on LKL
[34星][2m] [HTML] adulau/misp-osint-collection Collection of best practices to add OSINT into MISP and/or MISP communities
[34星][2y] [Py] anbai-inc/secrss RSS安全订阅 每日安全信息推送
[34星][4y] [Py] madsc13ntist/idapython IDAPython脚本收集(无文档)
[33星][3y] cert-w/hadoop-attack-library A collection of pentest tools and resources targeting Hadoop environments
[33星][4y] [HTML] gosecure/security-cheat-sheet Minimalist cheat sheet for developpers to write secure code
[33星][10m] kiyadesu/android-reversing-challenges there are some CTF challenges or some other things helping improving android reversing skills.
[33星][10m] kiyadesu/android-reversing-challenges there are some CTF challenges or some other things helping improving android reversing skills.
[33星][16d] [Py] angr/angr-platforms A collection of extensions to angr to handle new platforms
[33星][2m] [Py] landgrey/toolsparty A collection of script tools for pentesting
[32星][1y] lylemi/dom-vuln-db A collection of Browser DOM Vulnerabilities with PoCs
[32星][3y] nextco/android-decompiler A hight quality list of tools to reverse engineering code from android.
[32星][19d] [Java] retarded-skid/skidsuite-3 A collection of java reverse engineering tools and informational links
[32星][6y] [PS] roo7break/powershell-scripts List of PowerShell scripts conjured up for my consumption (you are welcome to use)
[31星][10m] [JS] codebox/monkeyshine A collection of slightly evil JavaScript
[31星][5m] [C] csandker/inmemoryshellcode A Collection of In-Memory Shellcode Execution Techniques for Windows
[31星][4y] danielmiessler/ctfsolutiontypes A collection of CTF solution types, i.e. not solutions to specific CTF challenges, but the general categories that those solutions fall under. Includes CTF solution categories for web, binary, network, crypto, and others. Please contribute!
[31星][10m] mmarfil/tinfoilhat A list of privacy-respecting alternatives to apps and services that track you around.
[31星][6y] [Ruby] zeknox/scripts a collection of useful scripts that for penetration testers
[31星][2m] zoranpandovski/awesome-testing-tools
[30星][2y] biprodeep/awesome-ml-for-cybersecurity
[30星][3y] [Py] deadbits/shells collection of useful shells for penetration tests
[30星][5m] [PS] kendalvandyke/sqlpowerdoc SQL Power Doc is a collection of Windows PowerShell scripts and modules that discover, document, and diagnose SQL Server instances and their underlying Windows OS & machine configurations.
[30星][1y] [Tcl] mohemiv/tcltools Сollection of TCL scripts for Cisco IOS penetration testing
[30星][4y] neu5ron/malware-traffic-analysis-pcaps 网站malware-traffic-analysis.net的pcap文件托管
[29星][2y] syst3ma/awesome_cisco_exploitation A curated list of awesome Cisco exploitation resources
[29星][2y] [Lua] foxmole/pwnadventure3 Blog series about Pwn Adventure 3
[29星][3y] [Py] scubsrgroup/lectures-a-weekly-information-security-knowledge-lecture-hall “每周一讲,信息安全基础知识讲堂”由四川大学信息安全研究所漏洞挖掘和利用组同学共同创建,通过每组员每周一讲的形式展开,主要涉及信息安全的基础知识,包括windows安全、移动安全等,此外还对通过该平台对外发布一些小组的研究成果!通过知识讲座一方面对新同学起到引导作用,另一方面则是漏洞挖掘与利用研究组同学信息安全研究经验和知识的积累!
[29星][2m] hrt/anticheatjs Javascript Anti Cheats 101
[29星][3m] [C] iaik/transientfail Website and PoC collection for transient execution attacks
[29星][2y] syst3ma/awesome_cisco_exploitation A curated list of awesome Cisco exploitation resources
[28星][6y] [Ruby] andrewsmhay/brisket Brisket is a collection of frontend scripts for masscan, zmap, and nmap, in addition data manipulation scripts
[28星][1y] [C] mrmacete/r2scripts Collection of scripts for radare2
[28星][6y] [Shell] packetforger/localroot Collection of tools for privesc on Linux
[28星][3y] [Shell] rccoder/awesome-shadowsocks-qt5-installation-on-debian Installation Script For shadowsocks-Qt5 on Debian
[28星][2y] secarmalabs/iotchecklist Baseline IoT security checklist. Consider security as early in development as possible and reap the rewards.
[28星][2y] [HTML] shikarisenpai/leak-ntlm-hash-via-html List of HTML tags for leaking NTLM-hashes
[28星][2m] [JS] benoitsevens/applying-ttd-to-malware-analysis Resources for the workshop titled "Repacking the unpacker: Applying Time Travel Debugging to malware analysis", given at HackLu 2019
[27星][1y] alonemonkey/iosrebook-issues 《iOS应用逆向与安全》 勘误
[27星][2y] [PHP] blackfan/web-inf-dict List of configuration files from WEB-INF and META-INF for use in Unvalidated Forwards and JSP Include vulnerabilities.
[27星][9m] [Py] nullarray/amplispy Check local or remote list of DNS servers for suitability in DNS Amplification DoS.
[27星][3y] stayliv3/iotsec 收集物联网安全相关资料
[27星][23d] security-prince/resources-for-application-security Some good resources for getting started with application security
[26星][2m] infosec-community/apac-meetups A community contributed consolidated list of InfoSec meetups in the Asia Pacific region.
[26星][2y] [Shell] jchrisfarris/aws-service-control-policies Collection of semi-useful Service Control Policies and scripts to manage them
[26星][3y] lucifer1993/awesome-hacking awesome hacking chinese version
[26星][1m] meitar/awesome-pentest
[26星][5m] pushinginertia/ip-blacklist An Apache httpd configuration file that rejects access to a server from a list of blacklisted IPs
[26星][20d] thehive-project/awesome A curated list of awesome things related to TheHive & Cortex
[25星][1y] [Go] opennota/hydra Penetration testing tool. This repository has migrated to
[25星][3y] unexpectedby/awesome-pentest-tools List of Security Archives Tools and software, generally for facilitate security & penetration research. Opening it up to everyone will facilitate a knowledge transfer. Hopefully the initial set will grow and expand.
[25星][5y] wirelesscollege/securitytools android安全工具大全
[25星][3y] wtsxdev/application-security Resources for learning about application security
[24星][1y] bountymachine/about A central place to keep track of relevant BountyMachine talks, blogs, and interesting things!
[24星][2y] evilmog/hashcat-hcstat A collection of hashcat-hcstat files
[24星][3m] jmscory/security-tool-chest A list of useful security and obvescation tools useful for red and blue teaming activities. A list made possible by the provided references.
[24星][6m] meitar/awesome-malware
[24星][6m] redshiftzero/awesome-threat-modeling a curated list of useful threat modeling resources
[23星][3y] [PHP] 3xp10it/xwebshell 免杀webshell集合
[23星][3y] johnnydep/cobaltstrike cobalt strike stuff I have gathered from around github
[23星][29d] [Shell] meisterp/torbrowser-overlay Gentoo overlay for Tor Browser related ebuilds
[23星][2y] [Py] simonuvarov/expdev
[23星][6m] [HTML] tarafans/collections A medley of PoCs and exploits
[23星][2m] [Py] torpyorg/torpy Pure python Tor client implementation of the Tor protocol
[22星][4y] [Java] ernw/burpsuite-extensions A collection of Burp Suite extensions
[22星][3y] [PHP] gr33ntii/malware-collection
[22星][2y] [JS] jamesacampbell/elector TOR BROWSER IN ELECTRON
[22星][4m] [Py] nlitsme/idascripts 枚举多种类型数据:Texts/NonFuncs/...
enumerators Enumeration utilities for idapython
[22星][4y] [Py] onethawt/idapyscripts IDAPython脚本
DataXrefCounter 枚举指定区段的所有交叉引用,计算使用频率
[21星][3y] aozhimin/ios-monitor-resources 对各厂商的 iOS SDK 性能监控方案的整理和收集后的资源
[21星][6y] [Py] carlpulley/volatility A collection of Volatility Framework plugins.
[21星][2y] [TeX] citp/anomalous-tor-keys Analysis of archived Tor relay RSA public keys
[21星][5m] [C] cyclaero/void-zones-tools Prepare a list of void zones that can be readily feed into Unbound on FreeBSD
[21星][1m] extremecoders-re/re-list A list of open source reverse engineering tools with a focus on binary analysis
[21星][4y] fabiobaroni/awesome-pentest A collection of awesome penetration testing resources, tools and other shiny things
[21星][5y] shieldfy/awesome-pentest A collection of awesome penetration testing resources, tools and other shiny things
[21星][10m] slowmist/awesome-blockchain-bug-bounty A comprehensive curated list of available Blockchain Bug Bounty Programs.
[21星][2m] status-im/awesome-secure-messaging A curated collection of links for secure messaging.
[21星][2y] 0x90/firmware-arsenal Tools and scripts for firmware reverse engeneering
[21星][3m] alexanderstonec/top-100-hacking-security-e-books-free-download-2019 Hacking and Cyber Security Ebooks | For More Visit -
[20星][3y] [TeX] edelahozuah/awesome-tls-security A collection of (not-so, yet) awesome resources related to TLS, PKI and related stuff
[20星][2m] edwardqiu/awesome-infosec A curated list of awesome infosec blog posts, courses, books and more!
[20星][1y] seifreed/awesome-sandbox-evasion A summary about different projects/presentations/tools to test how to evade malware sandbox systems
[19星][1y] annalorimer/security-resources A list of stuff to learn more about security!
[19星][1y] exaybachay-ak/securityadvice Collection of advice to new IT security folks
[19星][3y] [Shell] operatorequals/oneliner-sh oneliner is a tool that gives a list of compatible reverse-shell-string oneliners
[19星][2y] voidhack/toolset Useful tools for CTF competitions
[19星][2y] hunter-github/evil-and-not-wholly-awesome-firefox [deprecated since Mozilla turned evil] A list of resources for and about Mozilla Firefox
[19星][7m] [C#] rainkin1993/remote-access-trojan-database A database of RAT collected from Internet
[18星][3y] [Shell] mitchellkrogza/linux-server-administration-scripts Simple bash administration scripts for Linux to make your life easier.
[18星][3y] shakenetwork/malwareanalysis 恶意软件分析工具和资源列表
[17星][2y] cherishao/security-box 安全盒子,这里主要指的是自己备份的安全行业相关小工具项目集。
[17星][4y] fabiobaroni/awesome-web-hacking A list of web application security
[17星][7m] imfht/websecurityscannerwhitepaper 收集网络上公开的漏洞扫描器的白皮书。
[16星][3y] 0xc1r3ng/malware-sandboxes-malware-source Malware Sandboxes & Malware Source
[16星][2y] [Py] b4zinga/explib Explib: Collections of poc and exp.
[16星][4y] demonsec666/pentest_study 从零开始内网渗透学习
[16星][1y] [Py] portswigger/additional-scanner-checks Collection of scanner checks missing in Burp
[15星][10m] anyeduke/at-p-list 攻防清单:用于整理当前收集的所有攻防相关资源
[15星][2y] [Py] ecbftw/poc A collection of published exploits and proof-of-concept code.
[15星][1y] ilovecode2018/awesome-osint A curated list of amazingly awesome open source intelligence tools and resources
[15星][1y] nytrorst/presentations My presentations from different conferences
[15星][7m] [C] yuawn/ais3-2019-pre-exam My pwn challeges for AIS3 2019 Pre-exam.
[15星][2y] shmilylty/malware-analysis-tools 恶意软件分析套件
[15星][1y] adhdproject/awesome-active-defense an awesome list of active defense resources
[14星][2y] 3xp10it/xlearn 记录安全界大牛分享经验
[14星][3y] [Py] ernw/ctf-writeups Collection of CTF writeups
[14星][1y] [JS] osrdrivers/windbg-exts Various WinDbg extensions and scripts
[14星][1y] probely/security_checklist Web Application Security Checklist
[14星][30d] [Py] ricardojoserf/wifi-pentesting-guide WiFi Penetration Testing Guide
[14星][1y] vagnes/infosecguide infosec.guide is a collection of resources for anyone in the infosec field
[14星][3y] xeushack/awesome-hacking-practice A curated list of websites and apps to help you practice hacking
[13星][4y] djadmin/awesome-security A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
[13星][4y] joesecurity/awesome-malware-analysis A curated list of awesome malware analysis tools and resources
[12星][2y] alchu4n/sec_chart 有关信息安全的一些截图及流程图分享
[12星][3y] paralax/awesome-pentest-1 Awesome Penetration Testing A collection of awesome penetration testing resources
[12星][5m] wuseman/wnmap This is a cheatsheet for mastering nmap
[12星][30d] gaurav-gogia/dftools A curated list of digital forensic tools.
[12星][1m] albertzsigovits/mal-analysis-tools A curated list of malware repositories, trackers and malware analysis tools
[11星][28d] [YARA] deadbits/yara-rules Collection of YARA signatures from individual research
[11星][2y] dictionaryhouse/sql-injection-fuzzpayload-collection Sql-injection FuzzPayload 集合
[11星][7m] [HTML] lambdacasserole/hack-this A collection of common web programming security mistakes.
[11星][4y] [PHP] yunkaiyueming/php_back_door_code PHP后门代码汇总
[11星][2y] [Py] redteamwing/pentest-wiki PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
[11星][1y] hackinfinity/honey-pots- My collection of Honeypot resources
[10星][1y] [Py] ecx86/ida-scripts IDA Pro/Hex-Rays configs, scripts, and plugins收集
[10星][2y] hxy9243/whotofollow Who to follow on Twitter/Telegram
[10星][4y] [Py] randomsctf/ctf-scripts A collection of short scripts for analysis, encryption and forensics, that can be used for CTF and/or security assessments
[10星][9m] [JS] twlinux/lets-talk Intentionally vulnerable website that demonstrates beginner-level injection vulnerabilities
[9星][4y] gavz/awesome-windows-exploitation A curated list of awesome Windows Exploitation resources, and shiny things.
[8星][28d] [Shell] kbnlresearch/forensicimagingresources resources and documentation related to an effort at setting up an experimental small-scale forensic imaging facility.
[8星][1y] newcon/securitytools A list of security tools that includes free, opensourse and paid ones too.
[8星][1y] testrockytesting/awesome-cloud-osint This repository will host resources for collecting information about cloud providers - SaaS, IaaS, PaaS, DaaS etc.
[7星][1y] [Py] aye-whitehat/ctf-collection
[7星][2y] cuccs/ns 网络安全课程作业收集
[7星][2y] dictionaryhouse/the-security-handbook-kali-linux A useful reference guide and a handbook of security basics for those starting out.
[7星][1m] mitchellkrogza/badd-boyz-bitcoin-scammers A list of bitcoin addresses being used in Ransomware and Sextortion Scams
[7星][2m] [Shell] oldbonhart/cheat_sheets cheat-sheets for network security
[7星][28d] [HTML] arch3rpro/pentesttools Awesome Pentest Tools Collection
[6星][2y] [Py] benderpan/pocs 整理收集的一些漏洞利用POC+一些扫描类的实现。
[6星][3y] [C] degrigis/exploitation Repo for various exploitation utilities/PoC/Shellcodes/CTF solutions
[6星][3y] jasonmiacono/iocs Indicators of compromise for threat intelligence
[6星][4y] mattulm/sfiles_yara A collection of YARA signatures that I have found around the web.
[6星][4y] [Shell] thoqbk/code-collection A shell script tool for decompiling multiple jar files and re-arranging source code
[6星][8m] stendarr/funny-tech-talks A list of funny talks about Technology and Computer Science
[5星][3y] agnosticlines/binaryninja-plugins A repo with a listing of binary ninja scripts + plugins (massively inspired by
[5星][2m] repnz/windbg-cheat-sheet My personal cheat sheet for using WinDbg for kernel debugging
[4星][1m] arkecosystem/security-vulnerabilities List of known and closed security vulnerabilities related to our products.
[4星][4y] [PHP] blackhalt/webshells An list of webshell vulnerability injection.
[4星][7m] gexos/malrepo A collection of malware samples caught by DIONAEA Honeypot
[4星][2y] netseclab/paper_for_digital_forensics This is a collection of papers, codes, issues for digital forensics.
[3星][5y] api0cradle/shmoocon-2015 ShmooCon Slides/ Proceedings Draft
[3星][5m] [Java] hktalent/myhktools
[2星][2y] androidtamer/awesome_android_pentest Awesome android Pentest tools collection
[2星][4y] [C] geekben/cve-collections collect the POC and EXP for recent CVEs
[2星][2y] kanglib/edu_for A cheat sheet for digital forensics
[2星][2y] [PS] truekonrads/powerspells Small collection of powershell scripts useful during lateral movement
[1星][2y] [PHP] 12345bt/webshell webshell收集项目
[1星][1y] iamprbkr/awesomebugbounty4noob Awesome Resources for beginners on how to find websites/Domains/Targets for Bugbounty/Pentesting/Responsible Disclosure
[1星][2y] [Py] monkeyman79/janitor Collection of GDB commands for low-level debugging, aimed at bringing debug.exe flavor into GDB command line interface.
[1星][3y] sunu11/sec-box information security Tools Box (信息安全工具集合)
[1星][6m] sv4us/ebook ebook programing reverse pentest
[1星][3m] kingsabri/aggressorscripts A collection of Cobalt Strike aggressor scripts
[0星][2y] goel42/meltdown-spectre-bug-poc-collection Aggregating the Proof of Concept published so far.
[0星][2y] goel42/meltdown-spectre-poc-collection Aggregating the Proof of Concept published so far.
[0星][10m] [Py] ponusjang/poc-exp-collection Poc&Exp Collection
[0星][11m] s3curityb3ast/s3curityb3ast.github.io Kaustubh's security advisories
[0星][5y] andrewsmhay/research Collection of my research and studies
[24956星][10d] xitu/gold-miner 翻译优质互联网技术文章的社区
[15776星][10m] micropoor/micro8 从业10年渗透笔记
[5513星][9m] carpedm20/awesome-hacking Hacking教程、工具和资源
[4174星][2y] forter/security-101-for-saas-startups 初学者安全小窍门
[2918星][10d] secfigo/awesome-fuzzing A curated list of fuzzing resources ( Books, courses - free and paid, videos, tools, tutorials and vulnerable applications to practice on ) for learning Fuzzing and initial phases of Exploit Development like root cause analysis.
[2529星][4m] kbandla/aptnotes Various public documents, whitepapers and articles about APT campaigns
[1871星][5m] bypass007/emergency-response-notes 应急响应实战笔记,一个安全工程师的自我修养。
[1679星][7m] dsasmblr/game-hacking Tutorials, tools, and more as related to reverse engineering video games.
[1457星][3y] tiancode/learn-hacking 开始学习Kali Linux 各种破解教程 渗透测试 逆向工程 HackThisSite挑战问题解答
[1229星][6m] chalker/notes Some public notes
[893星][1m] aptnotes/data APTnotes data
[883星][4m] escapingbug/awesome-browser-exploit awesome list of browser exploitation tutorials
[773星][1y] pfarb/awesome-crypto-papers A curated list of cryptography papers, articles, tutorials and howtos.
[750星][4y] fabiobaroni/awesome-exploit-development A curated list of resources (books, tutorials, courses, tools and vulnerable applications) for learning about Exploit Development
[723星][4m] uknowsec/active-directory-pentest-notes 个人域渗透学习笔记
[683星][1y] [HTML] zhengmin1989/myarticles 蒸米的文章(iOS冰与火之歌系列,一步一步学ROP系列,安卓动态调试七种武器系列等)
[671星][1y] dsasmblr/hacking-online-games A curated list of tutorials/resources for hacking online games.
[607星][2y] [HTML] jiji262/wooyun_articles drops.wooyun.org 乌云Drops文章备份
[558星][3y] advanced-threat-research/firmware-security-training 固件安全教程:从攻击者和防卫者的角度看BIOS / UEFI系统固件的安全
[478星][2m] xiangpasama/jdsrc-small-classroom 京东SRC小课堂系列文章
[448星][8m] jnusimba/miscsecnotes some learning notes about Web/Cloud/Docker Security、 Penetration Test、 Security Building
[425星][10m] [C] hardenedlinux/linux-exploit-development-tutorial a series tutorial for linux exploit development to newbie.
[383星][7m] jnusimba/androidsecnotes some learning notes about Android Security
[383星][1y] [HTML] maestron/reverse-engineering-tutorials Reverse Engineering Tutorials
[379星][7m] unprovable/pentesthardware 公开笔记整理
[369星][2y] jaybosamiya/security-notes notes on the security related videos I watch (as a way of quick recall).
[359星][3y] [Py] sangaline/advanced-web-scraping-tutorial The Zipru scraper developed in the Advanced Web Scraping Tutorial.
[299星][1y] [Py] anasaboureada/penetration-testing-study-notes Penetration Testing notes, resources and scripts
[269星][2y] sam-b/windows_kernel_resources Papers, blogposts, tutorials etc for learning about Windows kernel exploitation, internals and (r|b)ootkits
[233星][2y] [C] hardenedlinux/grsecurity-101-tutorials 增强 Linux 内核安全的内核补丁集
[222星][1y] [C++] wnagzihxa1n/browsersecurity 我在学习浏览器安全过程中整理的漏洞分析笔记与相关的学习资料
[220星][2y] [Py] wwong99/pentest-notes all my penetration testing study notes, penetration testing tools, scripts, techniques, tricks and also many scripts that I found them useful from all over the internet.
[213星][4m] [Shell] xu-jian/vps 个人笔记汇总
[204星][2y] [C] peperunas/injectopi 一堆Windows 代码注入教程
[176星][1m] microsvuln/awesome-afl A curated list of different AFL forks and AFL inspired fuzzers with detailed equivalent academic papers with AFL-fuzzing tutorials
[174星][2y] [C] geosn0w/reverse-engineering-tutorials Some Reverse Engineering Tutorials for Beginners
[161星][1y] jnusimba/linuxsecnotes some learning notes about Linux Security
[140星][2y] spoock1024/web-security Web安全中比较好的文章
[133星][3y] [PHP] ksanchezcld/hacking_cheat_sheet All my Hacking|Pentesting Notes
[128星][2y] [C] firmianay/life-long-learner Personal Notes About Everything.
[103星][2y] [Py] 1111joe1111/tuts Reverse engineering tutorials
[98星][11d] smi1esec/web-security-note Record some common Web security sites
[74星][2y] [HTML] anquanquantao/pentraining 一个网络安全基础知识的教程。内容比较杂,好在都是实验视频和工具提供,可以自行动手完成实验。
[74星][2y] [Assembly] azeria-labs/arm-assembly-examples Snippets from ARM assembly tutorials
[63星][10m] [C] zigzagsecurity/survival-guide-radare2 Basic tutorials for reverse engineer with radare2
[60星][13d] leipzig/awesome-reproducible-research A curated list of reproducible research case studies, projects, tutorials, and media
[52星][12m] feicong/zsxq_archives 【软件安全与知识星球】精华文章列表
[47星][27d] [Py] ercoppa/symbolic-execution-tutorial Tutorial on Symbolic Execution. Hands-on session is based on the angr framework.
[41星][1m] mykings/security-study-tutorial Summary of online learning materials
[41星][10m] [C++] thebabush/dumb-obfuscator Tutorial on how to write the dumbest obfuscator I could think of.
[28星][1y] [JS] wahengchang/nodejs-security-must-know It is a note about security on nodejs
[20星][28d] [Py] 0x25/useful useful pentest note
[12星][1m] [HTML] gnebbia/nmap_tutorial Some collected notes about nmap
[0星][1y] [C++] linux-sir/arm_reverse_engineer ARM平台逆向工程学习笔记
[6033星][28d] berzerk0/probable-wordlists Version 2 is live! Wordlists sorted by probability originally created for password generation and testing - make sure your passwords aren't popular!
[2314星][2y] [Py] rootphantomer/blasting_dictionary 爆破字典
[917星][15d] [Batchfile] mr-xn/burpsuite-collections BurpSuite收集:包括不限于 Burp 文章、破解版、插件(非BApp Store)、汉化等相关教程
[628星][4y] jeanphorn/wordlist Collection of some common wordlists such as RDP password, user name list, ssh password wordlist for brute force. IP Cameras Default Passwords.
[315星][2y] [Shell] kennyn510/wpa2-wordlists A collection of wordlists dictionaries for password cracking
[314星][8m] [Py] screetsec/brutesploit BruteSploit is a collection of method for automated Generate, Bruteforce and Manipulation wordlist with interactive shell. That can be used during a penetration test to enumerate and maybe can be used in CTF for manipulation,combine,transform and permutation some words or file text :p
[180星][4y] [Shell] nccgroup/cisco-snmp-enumeration Automated Cisco SNMP Enumeration, Brute Force, Configuration Download and Password Cracking
[136星][6m] tarraschk/richelieu List of the most common French passwords
[82星][6y] [Java] schierlm/javapayload JavaPayload is a collection of pure Java payloads to be used for post-exploitation from pure Java exploits or from common misconfigurations (like not password protected Tomcat manager or debugger port).
[77星][2y] [Py] stasinopoulos/jaidam Jaidam is an open source penetration testing tool that would take as input a list of domain names, scan them, determine if wordpress or joomla platform was used and finally check them automatically, for web vulnerabilities using two well‐known open source tools, WPScan and Joomscan.
[70星][3y] screetsec/wordlist-dracos Collection My Wordlist
[58星][7m] [HTML] tgeaus/weak-password 字典大全
[35星][3y] arnaudsoullie/ics-default-passwords List of default passwords for Industrial Control Systems
[27星][8m] [PS] onelogicalmyth/invoke-gppcse Obtains a list of GPOs based on known Client Side Extensions (CSE) that normally contain passwords
[24星][2y] [PHP] skyzyx/bad-passwords A list of the top 10,000 most-used passwords from hacked password lists.
[23星][3y] [Go] hgfischer/domainerator Simple application written in Go that combines two wordlists and a list of TLDs to form domain names and check if they are already registered.
[21星][2y] troydo42/awesome-pen-test Experiment with penetration testing Guides and Tools for WordPress, iOS, MacOS, Wifi and Car
[12星][2y] cujanovic/virtual-host-wordlist Virtual host wordlist
[8星][3y] [Py] nyxxxie/awesome-default-passwords An organized collection of default passwords for various devices and services.
[5星][3y] cujanovic/dirsearch-wordlist Serbian/English wordlist for
[11489星][2m] facert/awesome-spider 爬虫集合
[5807星][3m] [Py] luyishisi/anti-anti-spider 越来越多的网站具有反爬虫特性,有的用图片隐藏关键数据,有的使用反人类的验证码,建立反反爬虫的代码仓库,通过与不同特性的网站做斗争(无恶意)提高技术。
[4407星][2y] [Py] lining0806/pythonspidernotes Python入门网络爬虫之精华版
[3901星][3m] brucedone/awesome-crawler A collection of awesome web crawler,spider in different languages
[3504星][6m] [PHP] hanc00l/wooyun_public This repo is archived. Thanks for wooyun! 乌云公开漏洞、知识库爬虫和搜索 crawl and search for wooyun.org public bug(vulnerability) and drops
[2753星][2m] [Py] kr1s77/python-crawler-tutorial-starts-from-zero python爬虫教程,带你从零到一,包含js逆向,selenium, tesseract OCR识别,mongodb的使用,以及scrapy框架
[2479星][1y] [Py] geekan/scrapy-examples Multifarious Scrapy examples. Spiders for alexa / amazon / douban / douyu / github / linkedin etc.
[2437星][2m] [Py] the0demiurge/shadowsocksshare 从ss(r)共享网站爬虫获取共享ss(r)账号,通过解析并校验账号连通性,重新分发账号并生成订阅链接
[1997星][2m] [Py] wistbean/learn_python3_spider python爬虫教程系列、从0到1学习python爬虫,包括浏览器抓包,手机APP抓包,如 fiddler、mitmproxy,各种爬虫涉及的模块的使用
[1130星][1m] [HTML] ehco1996/python-crawler 从头开始 系统化的 学习如何写Python爬虫。 Python版本 3.6
[509星][12d] [Py] mozillasecurity/funfuzz A collection of fuzzers in a harness for testing the SpiderMonkey JavaScript engine.
[ 384星] [4y] [PHP] spiderlabs / mcir神奇的代码注入Rainbow!MCIR是用于构建可配置漏洞测试平台的框架。MCIR也是可配置漏洞测试平台的集合。
[ 215星] [3y] liinnux / awesome-crawler-cn互联网爬虫,蜘蛛,数据采集器,网页解析器的汇总,因新技术不断发展,新框架层出不穷,此文会不断更新...
[ 51星] [2m] [Py] ahmia / ahmia-crawler ahmia搜索引擎使用的爬虫集合
[ 37星] [1y] chenjiandongx / awesome-spider爬虫集合
内容为系统自动导出,有任何问题请提