PC免杀远控winos4.0成品

程序员在家做饭方法指南。Programmer's guide about how to cook at home (Simplified Chinese only).

本项目集成了全网优秀的攻防武器工具项目，包含自动化利用，子域名、目录扫描、端口扫描等信息收集工具，各大中间件、cms、OA漏洞利用工具，爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。

各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新

Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点

Most advanced XSS scanner.

Adversary Emulation Framework

The Havoc Framework

A collaborative, multi-platform, red teaming framework

坤坤CS 基于CobaltStrike cat 4.5二开项目 添加反沙箱、反测绘。集成常用后渗透插件，开箱即用

Find interesting Amazon S3 Buckets by watching certificate transparency logs.

Keyhacks is a repository which shows quick ways in which API keys leaked by a bug bounty program can be checked to see if they're valid.

Top disclosed reports from HackerOne

A powerful obfuscator for JavaScript and Node.js

Cybersecurity oriented awesome list

Complete list of LPE exploits for Windows (starting from 2023)

A collection of PDF/books about the modern web application security and bug bounty.

Just a part of my private notes

Explore effective penetration testing techniques with Metasploit

Bug Bounty Tricks and useful payloads and bypasses for Web Application Security.

Tools and methods that I personally use for Recon and Exploitations

A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.

Dump cookies and credentials directly from Chrome/Edge process memory

An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws

Web应用程序安全性和Pentest / CTF的有用负载和绕过列表

渗透 超全面的渗透资料💯 包含：0day，xss，sql注入，提权……