xray多线程批量扫描工具
选项1:oneforall+xray 输入一个主域名,自动采集子域名然后添加到xray任务列表里。
选项2:导入一个txt,直接用xray批量扫
选项3:输入主域名,只采集子域名,不扫
扫描结果会在.\result文件夹里,文件名就是目标站点域名。
oneforall结果在其.\oneforall\result根目录下
\log\vuluns.txt中存储上次漏洞记录
漏洞扫描结果会实时显示在监控终端中。
Salesforce Recon and Exploitation Toolkit Salesforce Recon and Exploitation Toolkit Usage python3 main.py URL References Announcement Blog - https:/
Mystikal macOS Initial Access Payload Generator Related Blog Post: https://posts.specterops.io/introducing-mystikal-4fbd2f7ae520 Usage: Install Xcode
Webpack-信息收集工具 郑重声明:文中所涉及的技术、思路和工具仅供以安全为目的的学习交流使用,任何人不得将其用于非法用途以及盈利等目的,否则后果自行承担。 0x01 介绍 作者:小洲 团队:横戈安全团队,未来一段时间将陆续开源工具,欢迎关注微信公众号: 定位:协助红队人员快速的信息收集,测绘目
Lots o' Bytes 🔣 Make files with as many random bytes as you want! Use case Can be used to package malware that is normally small by making the downlo
CVE-2022-22963 CVE-2022-22963 PoC Slight modified for English translation and detection of https://github.com/chaosec2021/Spring-cloud-function-SpEL-R
Shodan Quick Recon A Python Tool that uses Shodan API's to perform quick recon for vulnerabilities Configuration You must edit the python code, and in
Blinder Have you found a blind SQL injection? Great! Now you need to export it, but are you too lazy to sort through the values? Most likely,
SPV SecurePasswordVerification Its is python module for doing a secure password verification without sharing the password directly. Features The passw
dcpwn an impacket-dependent script exploiting CVE-2019-1040, with code partly borrowed from those security researchers that I'd like to say thanks to.
Kriecher is a simple Web Scanner which will run it's own checks for the OWASP top 10 https://owasp.org/www-project-top-ten/# as well as run a
About POC of an offline server for IDA Lumina feature.
script de python que permite usar conexiones cebollas para atacar paginas .onion o paginas convencionales via tor. tiene capacidad de ajustar la cantidad de informacion a enviar, el numero de hilos a
VSSTrigger Coerce authentication from Windows hosts via MS-FSRVP (Requires FS-VS
reapoc OpenSource Poc && Vulnerable-Target Storage Box. We are aming to collect different normalized poc and the vulerable target to verify it. Now re
Mad Spammer 👿 Pre-Setup: Open your terminal/console and type: pip install module colorama python MadSpammer.py Setup: After doing that, you should be
Infoga - Email OSINT Infoga is a tool gathering email accounts informations (ip,hostname,country,...) from different public source (search engines, pg
PowerDNS-based proof-of-concept implementation of DNSSEC using the post-quantum FALCON signature scheme.
django-permissions-policy Set the draft security HTTP header Permissions-Policy (previously Feature-Policy) on your Django app. Requirements Python 3.
This is a simple Web-App that demonstrates a method of creating strong passwords that are still easy to remember. It also provides time estimates how long it would take an attacker to crack a passwor
Introduction evtx-hunter helps to quickly spot interesting security-related activity in Windows Event Viewer (EVTX) files. It can process a high numbe
81 Dec 23, 2022
206 Dec 31, 2022
214 Dec 19, 2022
1 Jan 13, 2022
104 Dec 08, 2022
5 Aug 09, 2022
10 Dec 06, 2022
1 Feb 12, 2022
71 Nov 30, 2022
1 Nov 12, 2021
166 Dec 30, 2022
2 Jun 01, 2022
6 Jul 24, 2022
560 Dec 23, 2022
1 Nov 26, 2021
1.8k Jan 04, 2023
4 Feb 03, 2022
76 Nov 30, 2022
2 Jun 04, 2021
116 Dec 29, 2022