python3写的综合扫描工具,主要用来存活验证,敏感文件探测(目录扫描/js泄露接口/html注释泄露),WAF/CDN识别,端口扫描,指纹/服务识别,操作系统识别,POC扫描,SQL注入,绕过CDN,查询旁站等功能,主要用来甲方自测或乙方授权测试,请勿用来搞破坏。
APACHE-2.0 License
SpiderFoot automates OSINT for threat intelligence and mapping your attack surface.
一个攻防知识仓库 Red Teaming and Offensive Security
WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting...
A collection of custom security tools for quick needs.
An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsear...
A high performance offensive security tool for reconnaissance and vulnerability scanning
Plug-in type web vulnerability scanner
A fast vulnerability scanner helps pentesters pinpoint possibly vulnerable targets from a large n...
A virtual host scanner that performs reverse lookups, can be used with pivot tools, detect catch-...
A flexible scanner
Powerful mutable web directory fuzzer to bruteforce existing and/or hidden files or directories.
The Offensive Manual Web Application Penetration Testing Framework.
巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
这是作者的系列网络安全自学教程,主要是关于网安工具和实践操作的在线笔记,希望对大家有所帮助,学无止境,加油。