xray多线程批量扫描工具
选项1:oneforall+xray 输入一个主域名,自动采集子域名然后添加到xray任务列表里。
选项2:导入一个txt,直接用xray批量扫
选项3:输入主域名,只采集子域名,不扫
扫描结果会在.\result文件夹里,文件名就是目标站点域名。
oneforall结果在其.\oneforall\result根目录下
\log\vuluns.txt中存储上次漏洞记录
漏洞扫描结果会实时显示在监控终端中。
What is Spray365? Spray365 is a password spraying tool that identifies valid credentials for Microsoft accounts (Office 365 / Azure AD). How is Spray3
Get Out My Room v0.1 I hate people coming in my room when i'm not there. Get Out My Room is a simple security system that sends notifications with vid
reapoc OpenSource Poc && Vulnerable-Target Storage Box. We are aming to collect different normalized poc and the vulerable target to verify it. Now re
GitLab-Wiki-RCE RCE Exploit for Gitlab 13.9.4 RCE via unsafe inline Kramdown options when rendering certain Wiki pages Allows any user with push acc
CVE-2019-15514 Type: Information Disclosure Affected Users, Versions, Devices: All Telegram Users Still not fixed/unpatched. brute.py is available exp
Tracey-Backdoor A Reverse Shell Backdoor made in python OOP. It supposed to work in Windows and Linux OS Functions: Reverse Connection Send Reverse TC
ThePhish ThePhish is an automated phishing email analysis tool based on TheHive, Cortex and MISP. It is a web application written in Python 3 and base
Docker-Vulnerability-Check Docker is an open platform for developing, shipping, and running applications OS-level virtualization to deliver software i
Generate your own NFTs and their metadata based on your desired probabilities. Use your own art assets too! Perfect for use with Candy Machine.
Log4j command generator Generate commands for CVE-2021-44228. Description The vulnerability exists due to the Log4j processor's handling of log messag
Embark is being developed to provide the firmware security analyzer emba as a containerized service and to ease accessibility to emba regardless of system and operating system.
ClusterFuzz ClusterFuzz is a scalable fuzzing infrastructure that finds security and stability issues in software. Google uses ClusterFuzz to fuzz all
介绍 工具介绍 这是一款致力于将各类优秀脚本集合在一起调用、联动,最终可形成超级渗透脚本的工具。目的是扫描到更全的资产信息,发现更多的漏洞利用。但是这是通过牺牲扫描速度来提升扫描广度的。所以不太适合要进行紧急信息收集和漏洞利用的情况。
RCE-0-day-for-GhostScript-9.50 PoC for RCE 0-day for GhostScript 9.50 - Payload generator The PoC in python generates payload when exploited for a 0-d
CloudFlare reconnaissance, tries to uncover the IP behind CF.
Information Science 3350/6350 Text mining for history and literature Staff and sections Instructor: Matthew Wilkens Graduate TAs: Federica Bologna, Ro
IPscan This Script is Framework To automate IP process large scope For Bug Hunti
CryptoPunk Stealer The sole purpose of this script is to download the entire CryptoPunk NFT collection. How does it work? Basically, the website where
MayorSecDNSScan MSDNSScan is used to identify DNS records for target domains and check for zone transfers. There really isn't much special about it, a
Multi-Process Vulnerability Tool
246 Dec 28, 2022
1 Jan 11, 2022
560 Dec 23, 2022
52 Nov 09, 2022
66 Dec 08, 2022
13 Oct 15, 2022
675 Jan 03, 2023
103 Aug 20, 2022
7 Sep 16, 2022
1 Jan 03, 2022
175 Dec 14, 2022
4.9k Jan 08, 2023
23 Jul 05, 2022
534 Dec 14, 2022
8 Dec 03, 2021
6 Feb 21, 2022
8 Mar 12, 2022
7 Oct 22, 2022
68 Dec 12, 2022
1 Dec 22, 2021