针对 Acunetix AWVS扫描器开发的批量扫描脚本,支持log4j漏洞、SpringShell、SQL注入、XSS、弱口令等专项,支持联动xray、burp、w13scan等被动批量
一个攻防知识仓库 Red Teaming and Offensive Security
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
python3写的综合扫描工具,主要用来存活验证,敏感文件探测(目录扫描/js泄露接口/html注释泄露),WAF/CDN识别,端口扫描,指纹/服务识别,操作系统识别,POC扫描,SQL注入,绕...
bayonet是一款src资产管理系统,从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统
This is a webshell open source project
A fast vulnerability scanner helps pentesters pinpoint possibly vulnerable targets from a large n...
w3af: web application attack and audit framework, the open source web vulnerability scanner.
这是作者的系列网络安全自学教程,主要是关于网安工具和实践操作的在线笔记,希望对大家有所帮助,学无止境,加油。
A Python based web application scanner to gather OSINT and fuzz for OWASP vulnerabilities on a ta...
vulnx 🕷️ an intelligent Bot, Shell can achieve automatic injection, and help researchers detect s...
Plug-in type web vulnerability scanner
红队综合渗透框架
Cross Site "Scripter" (aka XSSer) is an automatic -framework- to detect, exploit and report XSS v...
An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsear...
Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能