收集整理渗透测试、漏洞扫描、代码审计、CTF、逆向、安全研究 等网络安全相关的 Skills和MCP
☆704Jul 6, 2026Updated last week
Alternatives and similar repositories for SecSkills
Users that are interested in SecSkills are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 专注于代码审计skill,最小化轻量化skill,只负责安全边界。☆963Jun 16, 2026Updated 3 weeks ago
- 💬 🚀 告别繁琐命令行,用自然语言驱动专业级渗透测试。 ⚡ 让安全测试从未如此简单、高效。Forget complex command lines. 🛡️ Professional penetration testing, powered by natural lan…☆249Jun 4, 2026Updated last month
- SecKnowledge - Web与AI安全测试知识技能☆314Jun 17, 2026Updated 3 weeks ago
- Helping AI Agent become an awesome practical hacker!☆1,362Jun 16, 2026Updated 3 weeks ago
- PHP-Code-Audit-Skill是一个专注于PHP代码审计的Skill☆370Mar 25, 2026Updated 3 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- 实战 SRC / 众测 / Bug bounty 漏洞挖掘 Claude Code skill — 19 个攻击类 playbook、305 个结构化 payload、263 个 WAF/EDR 绕过、2887 份 HackerOne 真实案例、88,636 WooYun …☆552May 24, 2026Updated last month
- Agent skills for solving CTF challenges - web exploitation, binary pwn, crypto, reverse engineering, forensics, OSINT, and more☆2,713Updated this week
- 微信小程序全自动安全审计 Skill,基于 Claude Code Agent Teams。7 Agent 协作,覆盖敏感信息、API接口、加密分析、漏洞分析四大维度。采用脚本+LLM双层架构,脚本保证覆盖率,LLM保证准确率。☆357Apr 3, 2026Updated 3 months ago
- 面向 Claude Code 的专业渗透测试技能模块。严格遵循 PTES 标准,覆盖信息收集、漏洞利用、后渗透与免杀规避全阶段。不定期更新skill,以达到优化skill。☆185Jun 5, 2026Updated last month
- A AI general-purpose state-space search engine, validated first on autonomous penetration testing.☆1,974Jun 30, 2026Updated 2 weeks ago
- 🛡️ 网络安全/AI Agent Skills 集合 | Cybersecurity Security Skills Collection☆243Jun 25, 2026Updated 2 weeks ago
- 网站渗透测试 Skill — 目标识别、CDN/WAF检测、指纹架构、API发现、端口扫描、未授权与漏洞验证☆25Jun 8, 2026Updated last month
- 网络安全相关的大模型skill☆39Jul 2, 2026Updated last week
- FLUX 是一款专业的Web安全扫描工具,JS敏感信息收集、API端点提取、API文档解析、页面爬取、子域名发现、漏洞测试、WAF检测与绕过、JS代码分析等功能。☆216May 6, 2026Updated 2 months ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- 一个用于测试文件上传功能安全性的 Burp Suite 插件。通过 Intruder 模块自动生成各类绕过 payload,覆盖常见的文件上传限制场景。共1000+条payload☆621Dec 24, 2025Updated 6 months ago
- 备份的漏洞库,3月开始我们来维护☆2,080Updated this week
- 一款综合性网络安全检测和运维工具,旨在快速资产发现、识别、检测,构建基础资产信息库,协助甲方安全团队或者安全运维人员有效侦察和检索资产,发现存在的薄弱点和攻击面。☆3,936Updated this week
- 智能渗透Agent Manager/Observer/Solver 多角色架构,基于 pi-mono SDK。☆422May 6, 2026Updated 2 months ago
- Java Vulnerability Exploitation Platform☆2,120Apr 29, 2026Updated 2 months ago
- 攻防演练过程中,我们通常会用浏览器访问一些资产,但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等,该插件能让我们发现未授权/敏感信息/越权/登陆接口等。☆1,459Oct 3, 2024Updated last year
- Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。☆1,420Apr 14, 2026Updated 3 months ago
- 一个想让你测试加密流量像测试明文一样简单高效的 Burp 插件。 A Burp plugin that makes testing encrypted traffic as simple and efficient as testing plaintext.☆1,094Mar 27, 2026Updated 3 months ago
- Professional file upload vulnerability testing tool with 263+ bypass techniques, proxy capture, dynamic scanning(专业的文件上传漏洞检测工具,支持263+绕过技术…☆208Apr 11, 2026Updated 3 months ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- 网络空间资产测绘、ICP备案、天眼查股权结构图、端口扫描、指纹识别、小程序敏感信息提取。☆1,359May 19, 2026Updated last month
- 综合漏洞后渗透利用工具☆1,765Dec 11, 2025Updated 7 months ago
- MPScan 是一款为安全研究人员与开发者设计的 Windows GUI 一体化工具,专用于对微信小程序进行自动化安全审计。☆260May 25, 2026Updated last month
- 一个漏洞 PoC 知识库。A knowledge base for vulnerability PoCs(Proof of Concept), with 1k+ vulnerabilities.☆5,084May 11, 2026Updated 2 months ago
- An integrated BurpSuite vulnerability detection plug-in.☆1,533Jan 29, 2026Updated 5 months ago
- 本项目集成了全网优秀的攻防武器工具项目,包含自动化利用,子域名、目录扫描、端口扫描等信息收集工具,各大中间件、cms、OA漏洞利用工具,爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。☆7,735Updated this week
- OneScan 是一款用于递归目录扫描的 BurpSuite 插件☆1,252Jun 24, 2025Updated last year
- 一款专注于 Java 主流 Web 中间件的内存马快速生成工具,致力于简化安全研究人员和红队成员的工作流程,提升攻防效率☆1,550Updated this week
- 🔍 CodeAuditAssistant - JetBrains Code Audit Plugin (Beta) ⚡ Deep Call-Chain Tracking | 🚀 Method/Class Search | 🔥 Prebuilt Vuln Sink…☆787Mar 14, 2026Updated 4 months ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- ☆113Jun 17, 2026Updated 3 weeks ago
- HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations. 赋能白帽,高效作战!☆4,334Updated this week
- 一款强大的 burp 安全测试插件,集成多种安全测试功能,支持自动化扫描和手动测试。☆677Mar 20, 2026Updated 3 months ago
- LeakDetector 是一款专为红队渗透测试人员和安全研究员设计的自动化信息泄露侦察工具。☆119Jun 9, 2026Updated last month
- 云资产管理工具 目前工具定位是云安全相关工具,目前是两个模块 云存储工具、云服务工具, 云存储工具主要是针对oss存储、查看、删除、上传、下载、预览等等 云服务工具主要是针对rds、服务器的管理,查看、执行命令、接管等等☆1,162Feb 26, 2026Updated 4 months ago
- 实战沉淀字典☆1,573Mar 17, 2026Updated 3 months ago
- 一个基于 docsify 快速部署 Awesome-POC 漏洞文档的项目。Deploying the Awesome-POC repository via docsify.☆2,141May 11, 2026Updated 2 months ago