GitHuber.cn - bit4woo

python_sec 991

python安全和代码审计相关资料收集 resource collection of python security and code review

knife Java 737

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

teemo Python 707

A Domain Name & Email Address Collection Tool

domain_hunter_pro Java 703

domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等

reCAPTCHA Java 648

reCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件

domain_hunter Java 617

A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件

passmaker Python 384

可以自定义规则的密码字典生成器,支持图形界面 A password-generator that base on the rules that you specified

code2sec.com Python 188

xmind\code\articles for my personal blog 个人博客上的资源备份存储，也是个人分享的汇总

u2c Java 103

Unicode To Chinese -- U2C : A burpsuite Extender That Convert Unicode To Chinese 【Unicode编码转中文的burp插件】

Java_deserialize_vuln_lab Java 75

Java 反序列化学习的实验代码 Java_deserialize_vuln_lab

ReSign Java 49

A burp extender that recalculate signature value automatically after you modified request parameter value.

burp_collaborator_http_api Java 45

Burp Suite Collaborator HTTP API

GUI_Burp_Extender_para_encrypter Java 37

Burp_Extender_para_encrypter

Burp_Extender_random_X-Forward-For Java 31

a Burp Extender that add an random X-Forward-For IP address for each request

burp-api-common Java 15

common methods that used by my burp extension projects

2redis Java 6

save burp traffic to redis 将burp的流量保存到redis

theHarvester Python 5

theHarvester that change from https://github.com/laramies/theHarvester. add proxy option to cross GFW

IdentityCardNumberBruter Python 5

To Find Possibe ID Card Number

ip2region * C 4

准确率99.9%的ip地址定位库，0.0x毫秒级查询，数据库文件大小只有1.5M，提供了java,php,c,python,nodejs,golang,c#查询绑定和Binary,B树,内存三种查询算法，妈妈再也不用担心我的ip地址定位！

ysoserial * 3

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

BlueLotus_XSSReceiver * JavaScript 3

XSS平台 CTF工具 Web安全工具

Burp_Extender_sign_recalculater_python Python 3

To Recalculate sign in http request

HTTP_Basic_Auth_Bruter Python 3

HTTP Basic Auth Bruter

drozer * Python 1

The Leading Security Assessment Framework for Android.

processhacker * C 1

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.

DNS-Discovery * Mathematica 1

DNS-Discovery is a multithreaded subdomain bruteforcer.

gadgetinspector * Java 1

A byte code analyzer for finding deserialization gadget chains in Java applications

awvs_script_decode * SourcePawn 1

解密好的AWVS10.5 data/script/目录下的脚本

scan-framework * Python 1

A framework used for Vulnerability scanning

cve-2014-7920-7921 * C++ 1

Exploit code for CVE-2014-7920 and CVE-2014-7921 - code-exec in mediaserver up to Android 5.1

Sublist3r * Python 1

Fast subdomains enumeration tool for penetration testers

sqli-labs * PHP 1

SQLI labs to test error based, Blind boolean based, Time based.

nuclei * 0

Fast and customizable vulnerability scanner based on simple YAML based DSL.

nuclei-templates * 0

Community curated list of templates for the nuclei engine to find security vulnerabilities.

frida-skeleton * 0

基于frida的安卓hook框架，提供了很多frida自身不支持的功能，将hook安卓变成简单便捷，人人都会的事情

hackhttp * Python 0

Hackhttp is an HTTP library, written in Python.

Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests