bit4woo

个人信息
地址
shenzhen
粉丝
1135
6521
2014-09-16
项目信息
以下项目中名称有"*"标记的是forked项目;右边小圆圈里是星星数。

python_sec 991

python安全和代码审计相关资料收集 resource collection of python security and code review

Summit_PPT Ruby 825

各种安全大会PPT PDF

knife Java 737

A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

teemo Python 707

A Domain Name & Email Address Collection Tool

domain_hunter_pro Java 703

domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等

reCAPTCHA Java 648

reCAPTCHA = REcognize CAPTCHA: A Burp Suite Extender that recognize CAPTCHA and use for intruder payload 自动识别图形验证码并用于burp intruder爆破模块的插件

domain_hunter Java 617

A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或组织的子域名、相似域名、相关域名的burp插件

passmaker Python 384

可以自定义规则的密码字典生成器,支持图形界面 A password-generator that base on the rules that you specified

burp-api-drops Java 211

burp插件开发指南

code2sec.com Python 188

xmind\code\articles for my personal blog 个人博客上的资源备份存储,也是个人分享的汇总

u2c Java 103

Unicode To Chinese -- U2C : A burpsuite Extender That Convert Unicode To Chinese 【Unicode编码转中文的burp插件】

Java_deserialize_vuln_lab Java 75

Java 反序列化学习的实验代码 Java_deserialize_vuln_lab

ReSign Java 49

A burp extender that recalculate signature value automatically after you modified request parameter value.

burp_collaborator_http_api Java 45

Burp Suite Collaborator HTTP API

DNSLog * Python 45

DNSLog 是一款监控 DNS 解析记录和 HTTP 访问记录的工具。

GUI_Burp_Extender_para_encrypter Java 37

Burp_Extender_para_encrypter

Burp_Extender_random_X-Forward-For Java 31

a Burp Extender that add an random X-Forward-For IP address for each request

burp-api-common Java 15

common methods that used by my burp extension projects

CVE-2020-13925 15

secqa 14

解答开发关于安全漏洞的常见问题

ShowMeData Java 7

数据提取和处理工具

2redis Java 6

save burp traffic to redis 将burp的流量保存到redis

Ashe Python 6

Add Scan Task To WVS

theHarvester Python 5

theHarvester that change from https://github.com/laramies/theHarvester. add proxy option to cross GFW

IdentityCardNumberBruter Python 5

To Find Possibe ID Card Number

ip2region * C 4

准确率99.9%的ip地址定位库,0.0x毫秒级查询,数据库文件大小只有1.5M,提供了java,php,c,python,nodejs,golang,c#查询绑定和Binary,B树,内存三种查询算法,妈妈再也不用担心我的ip地址定位!

Wsdler * Java 4

WSDL Parser extension for Burp

ysoserial * 3

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

BlueLotus_XSSReceiver * JavaScript 3

XSS平台 CTF工具 Web安全工具

Burp_Extender_sign_recalculater_python Python 3

To Recalculate sign in http request

upload-labs * PHP 3

一个帮你总结所有类型的上传漏洞的靶场

HTTP_Basic_Auth_Bruter Python 3

HTTP Basic Auth Bruter

AZScanner * 3

Struts-S2-xxx * 2

整理收集Struts2漏洞环境

Cknife * Java 2

Cknife

drozer * Python 1

The Leading Security Assessment Framework for Android.

bit4woo 1

xunfeng * Python 1

巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。

c-jwt-cracker * C 1

JWT brute force cracker written in C

processhacker * C 1

A free, powerful, multi-purpose tool that helps you monitor system resources, debug software and detect malware.

poc * Python 1

poc from bugscan beebeeto

LoadFromXmind Python 1

To Load Github Scripts From Xmind Index

java-sec-code * Java 1

Java常见通用漏洞和修复的代码以及利用payload

DNS-Discovery * Mathematica 1

DNS-Discovery is a multithreaded subdomain bruteforcer.

wooyunallbugs * 1

wooyun_all_bugs

gadgetinspector * Java 1

A byte code analyzer for finding deserialization gadget chains in Java applications

xxe-lab * Python 1

一个包含php,java,python,C#等各种语言版本的XXE漏洞Demo

icmpsh * C 1

Simple reverse ICMP shell

Hawkeye * Vue 1

GitHub 泄露监控系统

awvs_script_decode * SourcePawn 1

解密好的AWVS10.5 data/script/目录下的脚本

fuzzbunch * Python 1

NSA finest tool

scan-framework * Python 1

A framework used for Vulnerability scanning

cve-2014-7920-7921 * C++ 1

Exploit code for CVE-2014-7920 and CVE-2014-7921 - code-exec in mediaserver up to Android 5.1

Sublist3r * Python 1

Fast subdomains enumeration tool for penetration testers

GourdScanV2 * JavaScript 1

被动式漏洞扫描系统

Webshell-Sniper * Python 1

Manage your website via terminal

sqli-labs * PHP 1

SQLI labs to test error based, Blind boolean based, Time based.

nuclei * 0

Fast and customizable vulnerability scanner based on simple YAML based DSL.

nuclei-templates * 0

Community curated list of templates for the nuclei engine to find security vulnerabilities.

frida-skeleton * 0

基于frida的安卓hook框架,提供了很多frida自身不支持的功能,将hook安卓变成简单便捷,人人都会的事情

hackhttp * Python 0

Hackhttp is an HTTP library, written in Python.

Autorize * Python 0

Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease application security people work and allow them perform an automatic authorization tests

ShiroExploit-Deprecated * 0

Shiro550/Shiro721 一键化利用工具,支持多种回显方式

Fortify_Rule * Java 0

Decode Fortify Rule Bin File Get XML File

ksubdomain * 0

无状态子域名爆破工具

Behinder * 0

Behinder source code

FuzzDomain * 0

FuzzDomain

LCX * 0

My LCX, PortMaper. used in Windows,Linux,Android,Mac

Micro8 * 0

xiaogongju * 0

EW重构计划

Binary-files * 0

EarthWorm/Termite 停止更新

seeyon_v3x * Java 0

LinkFinder * Python 0

A python script that finds endpoints in JavaScript files

HookMe * C# 0

Exported from https://code.google.com/archive/p/hookme/

sstap * 0

gh0st * C++ 0

a open source remote administrator tool

JavaID * Python 0

java source code static code analysis and danger function identify prog

gh0st3.6_src * C++ 0

shadowsocks-rss * 0

ShadowsocksR update rss, SSR organization

Cobaltstrike-Trial * 0

java-stager * Java 0

A PoC Java Stager which can download, compile, and execute a Java file in memory.

serianalyzer * Java 0

A static byte code analyzer for Java deserialization gadget research

soapui-pro-crack * Java 0

SoapUI pro 破解 你懂的

shadowbroker * Python 0

The Shadow Brokers "Lost In Translation" leak

burp-collab-gw * Java 0

Simple socket-based gateway to the Burp Collaborator

Reverse_DNS_Shell * Python 0

A python reverse shell that uses DNS as the c2 channel

python-webshell * Python 0

webshell writen in python

EquationGroupLeak * Python 0

Archive of leaked Equation Group materials

SignEveryDay Python 0

SignEveryDay

passive_scan * Python 0

基于http代理的web漏洞扫描器的实现

EQGRP_Lost_in_Translation * Python 0

Decrypted content of odd.tar.xz.gpg, swift.tar.xz.gpg and windows.tar.xz.gpg

SRCMS * JavaScript 0

SRCMS企业应急响应与缺陷管理系统

GitHack * Python 0

A `.git` folder disclosure exploit

SwitchHosts * Python 0

Switch hosts quickly!

exploit-database * C 0

The official Exploit Database repository

星排名
编程语言 排名 好于 星星数
Ruby 14 99.92% 825
Java 213 99.77% 3292
Python 242 99.73% 1355
PHP 2878 88.49% 4
C 3344 93.23% 7
更新于2021-09-27 19:00:34