Alternatives and similar repositories for handbook

Users that are interested in handbook are comparing it to the libraries listed below

• 7estUser / PenetrateNotes

  View on GitHub
  渗透测试、攻防姿势笔记
  ☆20Jun 13, 2025Updated 8 months ago
• h0ny / jshERP-exploit

  View on GitHub
  jshERP Exploit GUI
  ☆23Aug 26, 2024Updated last year
• hackerxj007 / Bypass_Webshell

  View on GitHub
  webshell编码工具 支持 jsp net php asp编码免杀
  ☆26Dec 16, 2025Updated last month
• nex121 / RuoyiGui

  View on GitHub
  ☆25Dec 13, 2024Updated last year
• bmth666 / GeoServer-Tools-CVE-2024-36401

  View on GitHub
  CVE-2024-36401 图形化利用工具，支持各个JDK版本利用以及回显、内存马实现
  ☆37Jul 16, 2025Updated 6 months ago
• ahisec / Lots-of-POC

  View on GitHub
  Vulnerability POC/EXP Collection and Classification
  ☆23Sep 18, 2024Updated last year
• wqreytuk / Kaspersky_Lsass_Memory_Protection_study

  View on GitHub
  ☆10Nov 2, 2023Updated 2 years ago
• Just-Hack-For-Fun / IP-Recorder

  View on GitHub
  一个记录本机IP的小程序
  ☆35Jan 8, 2025Updated last year
• defensahacker / viewstate-decoder

  View on GitHub
  Small tool to decode ASP.NET __VIEWSTATE variable when doing webpentests
  ☆15Feb 27, 2021Updated 4 years ago
• jitsi / jsocks

  View on GitHub
  Java SOCKS Proxy
  ☆11Dec 30, 2021Updated 4 years ago
• Ar3h / putter

  View on GitHub
  命令执行写任意文件，主要用于命令执行但不出网情况
  ☆30Sep 9, 2023Updated 2 years ago
• yuxianzi / FrchannelPlus

  View on GitHub
  帆软bi反序列化漏洞利用工具
  ☆56Jun 4, 2024Updated last year
• ggfgh / Crawler

  View on GitHub
  整理本人在2021年10月-12月期间写的一些爬虫demo，比如用于渗透测试中SQL注入的URL收集脚本(爬取必应和百度搜索结果的URL)，子域名爆破demo，各大高校漏洞信息收集爬虫，以及入门爬虫时写的一些基础代码
  ☆27Sep 7, 2022Updated 3 years ago
• ssst0n3 / security-research-specification

  View on GitHub
  ☆15Aug 20, 2025Updated 5 months ago
• Inull-Studio / php_jsp_asp_webshell

  View on GitHub
  php webshell bypass D盾、safedog、360、火绒等，仅支持php7
  ☆18Aug 25, 2025Updated 5 months ago
• fr33d3m0n / threat-modeling

  View on GitHub
  AI-native automated software risk analysis skill. LLM-driven, Code-First approach for comprehensive security risk assessment, threat mode…
  ☆157Updated this week
• langsasec / Github-sec-push

  View on GitHub
  使用Github-API和WgpSecBot进行安全相关项目进行推送，用最简单的代码完成微信推送，每次推送均按最近更新排序。
  ☆15Feb 24, 2023Updated 2 years ago
• crifan / ios_re_iphone_jailbreak

  View on GitHub
  iOS逆向开发：iPhone越狱
  ☆19Dec 27, 2024Updated last year
• xzajyjs / SpringBoot-whitelabel-error-rce-EXP

  View on GitHub
  Spring Boot whitelabel error page SpEL rce EXP
  ☆13May 24, 2024Updated last year
• adeljck / YongYou-Exploit

  View on GitHub
  YongYou U8C deserialization file upload exploit tool targeting IPFxxFileService and IFileTrans services
  ☆28Sep 28, 2025Updated 4 months ago
• KSroido / ArchiveCybersecurityOpenSourceNote

  View on GitHub
  存一些笔者看到的,感觉很不错的开源的(或作者暂未声称商业版权的)信息安全笔记
  ☆18Jul 4, 2024Updated last year
• zhaoyumi / jolokia_Realm_JNDI_RCE_Check

  View on GitHub
  jolokia Realm JNDI RCE 漏洞检测，并获取明文密码
  ☆18May 29, 2023Updated 2 years ago
• l3yx / Java-RASP-Research-Env

  View on GitHub
  之前方便自己研究RASP原理和绕过时顺手写的，用于快速启动和重置RASP环境
  ☆71Oct 13, 2024Updated last year
• v9d0g / CVE-2024-43044-POC

  View on GitHub
  CVE-2024-43044的利用方式
  ☆20Aug 13, 2024Updated last year
• huoji120 / mbnsc

  View on GitHub
  通过分析流量,快速检查手机是否被APT攻击
  ☆35Oct 19, 2025Updated 3 months ago
• nOnExiaoyu / YQScan

  View on GitHub
  语雀敏感信息泄露搜索工具
  ☆19Jan 20, 2023Updated 3 years ago
• qncosfh / xxl_job_executor_exploit

  View on GitHub
  xxl_job_executor_默认Access_Token_不出网综合利用
  ☆40Oct 20, 2025Updated 3 months ago
• exp999fuck / poc_yaml

  View on GitHub
  漏洞扫描poc，不定期更新
  ☆41May 26, 2024Updated last year
• suizhibo / MemShellGene

  View on GitHub
  一款Java内存马生成、测试工具，搭配@ax1sX的MemShell食用。
  ☆260Jul 4, 2024Updated last year
• aboutbo / tools

  View on GitHub
  ☆20Dec 3, 2020Updated 5 years ago
• d0ub1ec0d3 / SharpEmailC2

  View on GitHub
  ☆18Nov 23, 2023Updated 2 years ago
• unam4 / fineldapc

  View on GitHub
  某软最新公开gadgegt,新加入不出网利用。
  ☆89Sep 6, 2024Updated last year
• imsellbaox / Eyeworm

  View on GitHub
  一款强大的内网信息收集工具，支持文件、文件夹、文件内容、命令、注册表、进程、mimikatz命令、dpapi、最近访问收集，且支持定制化配置，只需更新配置文件，定义收集规则，即可开启对各类浏览器、remote工具、聊天软件进行凭据、信息收集
  ☆22Oct 16, 2022Updated 3 years ago
• Ernket / xia_sql_modify

  View on GitHub
  瞎注修改版，新增了参数黑名单、返回包列排序、数据包内容自动匹配替换的功能
  ☆24Mar 19, 2025Updated 10 months ago
• kN6jq / JeecgCracker

  View on GitHub
  JeecgCracker 是一个专门针对 JeecgBoot 框架的密码爆破工具。
  ☆29Oct 29, 2024Updated last year
• Leeyangee / python_webshell

  View on GitHub
  python简单webshell，用于蚁剑远程管理
  ☆23Jul 14, 2024Updated last year
• goodlunatic / Docker-ProfileMaker-vol2

  View on GitHub
  使用Docker一键制作Vol2取证需要的Profile
  ☆22Aug 31, 2025Updated 5 months ago
• HACK-THE-WORLD / nacos-poc

  View on GitHub
  ☆19Jul 15, 2024Updated last year
• evilAdan0s / RedTeamInterview

  View on GitHub
  自己收集和编制的红队面试题，不定期更新
  ☆153Jul 21, 2025Updated 6 months ago