sf is an efficient subdomain brute-forcing tool
☆16Oct 13, 2023Updated 2 years ago
Alternatives and similar repositories for sf
Users that are interested in sf are comparing it to the libraries listed below
Sorting:
- 自己零零散散研究以及收集的一些免杀技巧,以便为后续查阅,拓宽思路☆15Dec 11, 2019Updated 6 years ago
- WxappRevealer 是一款跨平台、独立可执行的命令行工具,专注于对 WeChat 小程序(`.wxapkg`)的智能反编译与敏感信息检索☆28Dec 12, 2025Updated 2 months ago
- java实现反序列化建立socket连接☆60Dec 27, 2024Updated last year
- 瞎越是一款 Burp Suite 的安全插件,主要用于测试 Web 越权、未授权的网络安全漏洞。☆11Jun 13, 2024Updated last year
- 一键获取Nacos所有配置文件☆59Jan 18, 2024Updated 2 years ago
- ☆20Feb 27, 2022Updated 4 years ago
- 每日最新的漏洞及投毒情报☆37Jul 2, 2025Updated 8 months ago
- Godzilla4.01 decompile code☆29Feb 15, 2022Updated 4 years ago
- 自己整理的目录扫描字典。☆43Jan 5, 2026Updated last month
- 用友 nc 系列密码解密☆61Apr 7, 2023Updated 2 years ago
- 前端未授权访问检测工具,自动提取JS泄露的接口进行测试。☆35Aug 25, 2023Updated 2 years ago
- MyDict - 自行收集的高频使用字典文件☆80May 8, 2025Updated 9 months ago
- OAscanner是一款综合性的OA扫描利用工具,所有的漏洞都来自互联网曝光的漏洞,采用了python3的Gui界面对新手更友好!☆33Dec 9, 2021Updated 4 years ago
- log4j2 rce漏洞扫描器☆11Mar 2, 2024Updated 2 years ago
- WebGuard是根据 风起师傅的RedGuard 和 mgeeky师傅的RedWarden结合出来的http请求过滤器go包,亦在帮助采用go编写C2 http监听器做流量过滤和规则匹配☆29Jun 26, 2022Updated 3 years ago
- Extract React router info from React based website within browser☆44Mar 29, 2024Updated last year
- 收集网络上公开的漏洞扫描器的白皮书。☆34Jun 15, 2022Updated 3 years ago
- ☆15Jul 21, 2025Updated 7 months ago
- 递归寻找JS泄露的路径。Recursively search for the paths of JS Files.For pentest☆11Sep 30, 2024Updated last year
- Goal Go Red-Team 工具类☆44Jan 15, 2025Updated last year
- 经过优化的渗透测试Payload字典、Fuzz Payload字典。Penetration testing Payload dictionary, Fuzzy Payload dictionary☆40Jul 10, 2024Updated last year
- my nim examples.☆39Jun 11, 2023Updated 2 years ago
- 内网综合扫描工具☆44Apr 16, 2024Updated last year
- Gscan二开版☆12Apr 11, 2024Updated last year
- 支持10万人同时在线Go语言打造高并发web即时聊天(IM)应用☆12Feb 10, 2022Updated 4 years ago
- File helpers - Moved at https://github.com/projectdiscovery/utils☆13Oct 24, 2022Updated 3 years ago
- Credax - Fuzzing Tool with Slack Notifications. Also removes false positive responses.☆10Oct 14, 2021Updated 4 years ago
- CRUSH aims to crawl historical vulnerability data from major platforms and monitor daily updates.☆42Aug 2, 2024Updated last year
- An adaptation of timwhitez's proxycall that uses kernelbase.dll!Beep.☆16Nov 1, 2023Updated 2 years ago
- fofa+xray vul scan golang☆10Sep 19, 2021Updated 4 years ago
- Uses Go net/http library to distinguish alive hosts from a give list of hosts/urls☆12Dec 23, 2019Updated 6 years ago
- 检测邮件发送的可行性,可用来红队作战中对目标邮箱账户测试。The feasibility sent by the detection mail can be used for the target mailbox account test in the Red Team b…☆10May 8, 2023Updated 2 years ago
- zentao Getshell☆10Oct 27, 2020Updated 5 years ago
- Nexus Repository Manager3 - 远程执行代码漏洞回显payload☆13Sep 29, 2020Updated 5 years ago
- Inject scripts into gzipped pages without decompression☆14Feb 4, 2026Updated last month
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。☆11Apr 2, 2021Updated 4 years ago
- SyscallLoader☆11Sep 13, 2021Updated 4 years ago
- go版本机器学习框架☆10May 8, 2025Updated 9 months ago
- burpsuite extension,将unicode字符串显示为中文☆13Aug 29, 2023Updated 2 years ago