J0o1ey/BountyHunterInChina

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/J0o1ey/BountyHunterInChina)

J0o1ey / BountyHunterInChina

重生之我在安全行业讨口子系列，分享在安全行业讨口子过程中，SRC、项目实战的有趣案例

☆1,134

Alternatives and similar repositories for BountyHunterInChina

Users that are interested in BountyHunterInChina are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

safe6Sec / Fastjson
View on GitHub
Fastjson姿势技巧集合
☆1,835Oct 20, 2023Updated 2 years ago
UzJu / Cloud-Bucket-Leak-Detection-Tools
View on GitHub
六大云存储，泄露利用检测工具
☆1,247Mar 28, 2025Updated last year
biggerduck / RedTeamNotes
View on GitHub
红队笔记
☆2,124Mar 16, 2026Updated 2 weeks ago
HackJava / HackJava
View on GitHub
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
☆2,876Aug 4, 2023Updated 2 years ago
bit4woo / domain_hunter_pro
View on GitHub
domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
☆2,119Mar 3, 2026Updated 3 weeks ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
safe6Sec / PentestDB
View on GitHub
各种数据库的利用姿势
☆1,033Jan 3, 2025Updated last year
gh0stkey / Web-Fuzzing-Box
View on GitHub
Web Fuzzing Box - Web 模糊测试字典与一些Payloads
☆2,659Mar 23, 2026Updated last week
rtcatc / Packer-Fuzzer
View on GitHub
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…
☆3,218May 24, 2024Updated last year
Firebasky / Java
View on GitHub
关于学习java安全的一些知识,正在学习中ing,欢迎fork and star
☆792Jul 11, 2023Updated 2 years ago
F6JO / RouteVulScan
View on GitHub
Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
☆1,313Jun 29, 2024Updated last year
shmilylty / netspy
View on GitHub
netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
☆2,203Jul 25, 2023Updated 2 years ago
SummerSec / ShiroAttack2
View on GitHub
shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
☆2,396Apr 10, 2024Updated last year
LandGrey / SpringBootVulExploit
View on GitHub
SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list
☆6,127Mar 10, 2021Updated 5 years ago
Maskhe / javasec
View on GitHub
自己学习java安全的一些总结，主要是安全审计相关
☆1,697Jan 5, 2022Updated 4 years ago
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
phith0n / JavaThings
View on GitHub
Share Things Related to Java - Java安全漫谈笔记相关内容
☆1,999Apr 9, 2025Updated 11 months ago
JDArmy / DCSec
View on GitHub
域控安全one for all
☆736Sep 9, 2024Updated last year
SummerSec / JavaLearnVulnerability
View on GitHub
Java漏洞学习笔记 Deserialization Vulnerability
☆946Jun 14, 2023Updated 2 years ago
kelvinBen / AppInfoScanner
View on GitHub
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN…
☆3,518Dec 18, 2022Updated 3 years ago
gh0stkey / HaE
View on GitHub
HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
☆4,116Mar 19, 2026Updated last week
r0eXpeR / redteam_vul
View on GitHub
红队作战中比较常遇到的一些重点系统漏洞整理。
☆2,519Jul 17, 2021Updated 4 years ago
0x727 / BypassPro
View on GitHub
对Auth/Waf 自动化bypass的burpsuite插件
☆1,115Feb 28, 2026Updated last month
gh0stkey / CaA
View on GitHub
CaA - Collector and Analyzer, Insight into information, exploring with intelligence in a thousand ways.
☆1,443Mar 19, 2026Updated last week
EdgeSecurityTeam / EHole
View on GitHub
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
☆3,448Apr 2, 2024Updated last year
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
woodpecker-framework / woodpecker-framework-release
View on GitHub
高危漏洞精准检测与深度利用框架
☆1,459Jan 8, 2023Updated 3 years ago
whwlsfb / JDumpSpider
View on GitHub
HeapDump敏感信息提取工具
☆1,641Dec 15, 2025Updated 3 months ago
jayus0821 / swagger-hack
View on GitHub
自动化爬取并自动测试所有swagger接口
☆1,171Dec 1, 2025Updated 3 months ago
safe6Sec / command
View on GitHub
红队常用命令速查
☆1,017Mar 17, 2026Updated last week
lijiejie / swagger-exp
View on GitHub
A Swagger API Exploit
☆1,370Jun 7, 2024Updated last year
smxiazi / xia_sql
View on GitHub
xia SQL (瞎注) burp 插件，在每个参数后面填加一个单引号，两个单引号，一个简单的判断注入小插件。
☆1,242May 18, 2023Updated 2 years ago
j3ers3 / Hello-Java-Sec
View on GitHub
☕️ Java Security，安全编码和代码审计
☆1,735Mar 7, 2025Updated last year
pmiaowu / BurpFastJsonScan
View on GitHub
一款基于BurpSuite的被动式FastJson检测插件
☆1,238Oct 1, 2022Updated 3 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,015May 21, 2024Updated last year
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
0x727 / ShuiZe_0x727
View on GitHub
信息收集自动化工具
☆3,992Jun 13, 2024Updated last year
achuna33 / MYExploit
View on GitHub
OAExploit一款基于产品的一键扫描工具。
☆1,480Sep 20, 2022Updated 3 years ago
a1phaboy / FastjsonScan
View on GitHub
Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
☆1,051Oct 7, 2022Updated 3 years ago
SafeGroceryStore / MDUT
View on GitHub
MDUT - Multiple Database Utilization Tools
☆2,204Sep 22, 2023Updated 2 years ago
0x727 / FingerprintHub
View on GitHub
侦查守卫(ObserverWard)的指纹库
☆1,341Mar 23, 2026Updated last week
pmiaowu / HostCollision
View on GitHub
用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统
☆662Jun 13, 2024Updated last year
f0ng / autoDecoder
View on GitHub
Burp插件，根据自定义来达到对数据包的处理（适用于加解密、爆破等），类似mitmproxy，不同点在于经过了burp中转，在自动加解密的基础上，不影响APP、网站加解密正常逻辑等。
☆1,350Mar 20, 2026Updated last week