基于 docsify 快速部署 Awesome-POC 中的漏洞文档

计算机自学指南

一个攻防知识仓库 Red Teaming and Offensive Security

面向网络安全从业者的知识文库🍃

程序员在家做饭方法指南。Programmer's guide about how to cook at home (Simplified Chinese only).

w3af: web application attack and audit framework, the open source web vulnerability scanner.

Empire is a PowerShell and Python post-exploitation agent.

超详细的渗透测试思维导图

资产狩猎框架-AssetsHunter，信息收集是一项艺术~

My musings with PowerShell

Guidance for mitigation web shells. #nsacyber

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetN…

PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.

代码生成器

内网穿透(跨平台)

The legacy Exploit Database repository - New repo located at https://gitlab.com/exploit-database/exploitdb

Information Protection & OSINT resources | 一个关于数字隐私搜集、保护、清理集一体的方案,外加开源信息收集(OSINT)对抗

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

A collection of various awesome lists for hackers, pentesters and security researchers

A CVE-2016-5195 exploit example.

“冰蝎”动态二进制加密网站管理客户端

SRC子域名资产监控

Metasploit Framework

A powerful and open-source toolkit for hackers and security automation - 安全行业从业者自研开源扫描器合辑

练手用的

Nishang - Offensive PowerShell for red team, penetration testing and offensive security.

Most advanced XSS scanner.