JDArmy/BREAK

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/JDArmy/BREAK)

JDArmy / BREAK

业务风险枚举与规避知识框架（Business Risk Enumeration & Avoidance Kownledge）

☆344

Alternatives and similar repositories for BREAK

Users that are interested in BREAK are comparing it to the libraries listed below

Sorting:

UzJu / Cloud-Bucket-Leak-Detection-Tools
View on GitHub
六大云存储，泄露利用检测工具
☆1,243Mar 28, 2025Updated 11 months ago
JDArmy / RTASS
View on GitHub
红蓝对抗量化评估系统（Red Team Assessment Scoring System）
☆212Mar 11, 2023Updated 2 years ago
Bywalks / K8s-Mind-Map
View on GitHub
K8S安全攻防思维导图 | Docker安全攻防思维导图
☆417Jun 22, 2022Updated 3 years ago
wyzxxz / aksk_tool
View on GitHub
AK资源管理工具，阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret，利用AK获取资源信息和操作资源，ECS/CVM/E2/UHOST/ECI/BCC执行命令，OSS/COS/S3/BOS…
☆779Feb 13, 2025Updated last year
hudangwei / codemillx
View on GitHub
codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)
☆205Mar 19, 2022Updated 3 years ago
LandGrey / domainNamePredictor
View on GitHub
一个简单的现代化公司域名使用规律预测及生成工具
☆388Feb 24, 2022Updated 4 years ago
JDArmy / DCSec
View on GitHub
域控安全one for all
☆736Sep 9, 2024Updated last year
feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,016Oct 15, 2020Updated 5 years ago
safe6Sec / CodeqlNote
View on GitHub
Codeql学习笔记
☆900Apr 25, 2022Updated 3 years ago
fofapro / Hosts_scan
View on GitHub
这是一个用于IP和域名碰撞匹配访问的小工具，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。
☆1,189Apr 30, 2019Updated 6 years ago
wuba / Antenna
View on GitHub
Antenna是58同城安全团队打造的一款辅助安全从业人员验证网络中多种漏洞是否存在以及可利用性的工具。其基于带外应用安全测试(OAST)通过任务的形式，将不同漏洞场景检测能力通过插件的形式进行集合，通过与目标进行out-bind的数据通信方式进行辅助检测。
☆720Jun 6, 2023Updated 2 years ago
ZhuriLab / Yi
View on GitHub
项目监控工具以及 Codeql 自动运行
☆313Apr 13, 2023Updated 2 years ago
no-one-sec / code-phish
View on GitHub
JetBrains系列产品.idea钓鱼反制红队
☆331Jan 27, 2026Updated last month
LandGrey / ClassHound
View on GitHub
利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
☆711May 10, 2021Updated 4 years ago
ac0d3r / Hyuga
View on GitHub
Hyuga is a tool for monitoring Out-of-Band (OOB) traffic, supporting DNS, HTTP, LDAP, RMI, and DNS-Rebinding。🪤
☆538Dec 27, 2025Updated 2 months ago
phith0n / JavaThings
View on GitHub
Share Things Related to Java - Java安全漫谈笔记相关内容
☆1,991Apr 9, 2025Updated 10 months ago
r0eXpeR / fingerprint
View on GitHub
各种工具指纹收集分享
☆529Nov 3, 2021Updated 4 years ago
SummerSec / learning-codeql
View on GitHub
CodeQL Java 全网最全的中文学习资料
☆799Mar 18, 2022Updated 3 years ago
threedr3am / learnjavabug
View on GitHub
Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
☆2,689Mar 14, 2024Updated last year
LandGrey / spring-boot-upload-file-lead-to-rce-tricks
View on GitHub
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
☆754Apr 14, 2021Updated 4 years ago
LoRexxar / Kunlun-M
View on GitHub
KunLun-M是一个完全开源的静态白盒扫描工具，支持PHP、JavaScript的语义扫描，基础安全、组件安全扫描，Chrome Ext\Solidity的基础扫描。
☆2,379Jan 16, 2026Updated last month
alipay / ant-application-security-testing-benchmark
View on GitHub
xAST评价体系，让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
☆463Jan 15, 2026Updated last month
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,467Apr 25, 2024Updated last year
Aur0ra-m / APIKiller
View on GitHub
API Security DAST & Oprations
☆319Jul 5, 2023Updated 2 years ago
c0ny1 / java-object-searcher
View on GitHub
java内存对象搜索辅助工具
☆823Sep 23, 2022Updated 3 years ago
NyDubh3 / Pentesting-Active-Directory-CN
View on GitHub
域渗透脑图中文翻译版
☆280Sep 18, 2021Updated 4 years ago
kyo-w / router-router
View on GitHub
Java web路由内存分析工具
☆438May 22, 2025Updated 9 months ago
y1nglamore / IDOR_detect_tool
View on GitHub
一款API水平越权漏洞检测工具
☆768Jun 27, 2023Updated 2 years ago
safe6Sec / PentestDB
View on GitHub
各种数据库的利用姿势
☆1,034Jan 3, 2025Updated last year
safe6Sec / Fastjson
View on GitHub
Fastjson姿势技巧集合
☆1,825Oct 20, 2023Updated 2 years ago
neargle / re0-kubernetes-sec-archive
View on GitHub
[WIP] 整理过去我和K8s、容器、虚拟化相关的分享 🧐
☆3,146Nov 6, 2025Updated 3 months ago
zema1 / watchvuln
View on GitHub
一个高价值漏洞采集与推送服务 | Collect valueable vulnerabilities and push them to various services
☆1,778Nov 26, 2025Updated 3 months ago
z2p / sweetPotato
View on GitHub
基于burpsuite的资产分析工具
☆474Apr 29, 2023Updated 2 years ago
r0eXpeR / redteam_vul
View on GitHub
红队作战中比较常遇到的一些重点系统漏洞整理。
☆2,522Jul 17, 2021Updated 4 years ago
seccome / Ehoney
View on GitHub
安全、快捷、高交互、企业级的蜜罐管理系统，护网；支持多种协议蜜罐、蜜签、诱饵等功能。A safe, fast, highly interactive and enterprise level honeypot management system, supports mult…
☆1,273Oct 17, 2023Updated 2 years ago
CTF-MissFeng / GoScan
View on GitHub
GoScan是采用Golang语言编写的一款分布式综合资产管理系统，适合红队、SRC等使用
☆717May 6, 2021Updated 4 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,012May 21, 2024Updated last year
HXSecurity / DongTai-agent-java
View on GitHub
Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynam…
☆697Dec 25, 2023Updated 2 years ago
chriskaliX / AD-Pentest-Notes
View on GitHub
用于记录内网渗透(域渗透)学习 :-)
☆1,236Nov 9, 2020Updated 5 years ago