Scanner to find .env file and .git repository exposure on multiple hosts
Because of the response code from some hosts, it may have some false positives.
requests and argparse
pip3 install -r requirements.txt
Be careful with the output filename as it can be deleted if duplicated
python3 git_scan.py -t hosts.txt -o results.txt -f git or env
Subdah 🔎 another subdomains scanner. Installation ⚠️ Python 3.10 required ⚠️ $ git clone https://github.com/traumatism/subdah $ cd subdah $ pip3 inst
██╗██████╗ ██████╗ █████╗ █████╗ ███╗ ██╗███╗ ██╗███████╗██████╗ ██║██╔══██╗ ██╔════╝██╔══██╗██╔══██╗████╗ ██║████╗ ██║██╔════╝██╔══██
CVE-2021-44077 Proof of Concept Exploit for CVE-2021-44077: PreAuth RCE in ManageEngine ServiceDesk Plus 11306 Based on: https://xz.aliyun.com/t/106
This repository detects a system vulnerable to CVE-2022-21907 and protects against this vulnerability if desired
CVE-2021-45897 PoC for CVE-2021-45897 aka SCRMBT-#180 - RCE via Email-Templates (Authenticated only) in SuiteCRM = 8.0.1 This vulnerability was repor
A python tool capable of creating HUGE wordlists. Has the ability to add custom words for concatenation in any way you see fit.
AutoScanner AutoScanner是什么 AutoScanner是一款自动化扫描器,其功能主要是遍历所有子域名、及遍历主机所有端口寻找出所有http服务,并使用集成的工具进行扫描,最后集成扫描报告; 工具目前有:oneforall、masscan、nmap、crawlergo、dirse
Malware Arcane Repository of notes and scripts I use when doing malware analysis
tools下有几个工具,所以项目文件比较大,如果下载总是中断的话建议拆开下载各个项目然后直接拷贝dockefile和recon.py即可 0x01 hscan介绍 hscan是什么 hscan是一款旨在使用一条命令替代渗透前的多条扫描命令,通过集成crawlergo扫描和xray扫描、dirsear
Provides script to download and format public IP lists related to the Log4j exploit. Current format includes: plain list, Cisco ASA Network Group.
RedTeam Toolkit Note: Only legal activities should be conducted with this project. Red Team Toolkit is an Open-Source Django Offensive Web-App contain
Yara Manager A simple program to manage your yara ruleset in a (sqlite) database. Todos Search rules and descriptions Cluster rules in rulesets Enforc
Encrypted messaging application with the use of MIFARE DESfire chip to store the private/public keys needed for the application authentication
AutoSRC Use FOFA automatic vulnerability scanning tool Usage python3 autosrc.py -e FOFA EMAIL -k TOKEN Screenshots License MIT Dev 6613GitHub6613
🐍 malware_checker.py Detection tool of malware(s) by checksum (useful for forensic) 📦 Dependencies installation $ pip3 install -r requirements.txt
getlevels A small Python Script To get all levels of subdomains Easily get 1st level, 2nd level, 3rd level, 4th level .... nth level subdomains Usag
log4jscanner log4j burp插件 特点如下: 0x01 基于Cookie字段、XFF头字段、UA头字段发送payload 0x02 基于域名的唯一性,将host带入dnslog中 插件主要识别五种形式: 1.get请求,a=1&b=2&c=3 2.post请求,a=1&b=2&c=
Hackerone Passive Recon Tool A passive-recon tool that parses through found assets and interacts with the Hackerone API. Setup Simply run setup.sh to
SimplePasswordManager A simple way to store your passwords without requiring third party applications Simple To Use. Store Your Passwords For Each Web
StarUML_cracker Usage On Linux Clone the repo. git clone https://github.com/mana
14 Oct 18, 2022
2 Dec 18, 2021
25 Nov 09, 2022
26 Dec 26, 2022
17 Nov 09, 2022
9 Oct 05, 2022
633 Dec 30, 2022
9 Jun 01, 2022
1 Jan 02, 2022
382 Jan 01, 2023
65 Nov 17, 2022
4 Nov 06, 2021
48 Oct 25, 2022
1 Jan 30, 2022
9 Feb 15, 2022
1 Jun 30, 2022
4 Jan 13, 2022
1 Dec 23, 2021
9 Jun 20, 2022