Wh0ale/SRC-experience

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Wh0ale/SRC-experience)

Wh0ale / SRC-experience

工欲善其事，必先利其器

☆1,615

Alternatives and similar repositories for SRC-experience

Users that are interested in SRC-experience are comparing it to the libraries listed below

Sorting:

LangziFun / LangSrcCurise
View on GitHub
SRC子域名资产监控
☆1,299Jan 14, 2021Updated 5 years ago
TheKingOfDuck / fuzzDicts
View on GitHub
You Know, For WEB Fuzzing !
☆8,264Nov 13, 2023Updated 2 years ago
c0ny1 / chunked-coding-converter
View on GitHub
Burp suite 分块传输辅助插件
☆2,023Feb 23, 2022Updated 4 years ago
feihong-cs / ShiroExploit-Deprecated
View on GitHub
Shiro550/Shiro721 一键化利用工具，支持多种回显方式
☆1,951Jun 4, 2021Updated 4 years ago
r0eXpeR / redteam_vul
View on GitHub
红队作战中比较常遇到的一些重点系统漏洞整理。
☆2,521Jul 17, 2021Updated 4 years ago
timwhitez / crawlergo_x_XRAY
View on GitHub
360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
☆1,183Nov 10, 2021Updated 4 years ago
Leezj9671 / Pentest_Interview
View on GitHub
个人准备渗透测试和安全面试的经验之谈，和去部分厂商的面试题，干货真的满满~
☆1,971Sep 18, 2021Updated 4 years ago
bit4woo / domain_hunter_pro
View on GitHub
domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
☆2,116Jan 23, 2026Updated last month
zhzyker / exphub
View on GitHub
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、…
☆4,272Apr 4, 2021Updated 4 years ago
Threezh1 / JSFinder
View on GitHub
JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
☆2,913Nov 24, 2021Updated 4 years ago
c0ny1 / upload-fuzz-dic-builder
View on GitHub
上传漏洞fuzz字典生成脚本
☆1,270Apr 1, 2021Updated 4 years ago
LandGrey / SpringBootVulExploit
View on GitHub
SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list
☆6,117Mar 10, 2021Updated 4 years ago
rtcatc / Packer-Fuzzer
View on GitHub
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…
☆3,210May 24, 2024Updated last year
c0ny1 / passive-scan-client
View on GitHub
Burp被动扫描流量转发插件
☆1,460Jun 17, 2024Updated last year
aleenzz / Cobalt_Strike_wiki
View on GitHub
Cobalt Strike系列
☆2,413Dec 3, 2023Updated 2 years ago
boy-hack / wooyun-payload
View on GitHub
从wooyun中提取的payload，以及burp插件
☆842Jun 17, 2022Updated 3 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,011May 21, 2024Updated last year
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,404Jan 18, 2022Updated 4 years ago
LandGrey / webshell-detect-bypass
View on GitHub
绕过专业工具检测的Webshell研究文章和免杀的Webshell
☆1,733Nov 15, 2020Updated 5 years ago
cvkki / src
View on GitHub
日常src平台域名收集
☆594Jul 11, 2019Updated 6 years ago
threedr3am / learnjavabug
View on GitHub
Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
☆2,690Mar 14, 2024Updated last year
aleenzz / MYSQL_SQL_BYPASS_WIKI
View on GitHub
mysql注入,bypass的一些心得
☆1,326Jun 25, 2024Updated last year
7dog7 / bottleneckOsmosis
View on GitHub
瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf
☆717Jul 20, 2022Updated 3 years ago
HatBoy / Struts2-Scan
View on GitHub
Struts2全漏洞扫描利用工具
☆2,211Jul 12, 2021Updated 4 years ago
kelvinBen / AppInfoScanner
View on GitHub
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN…
☆3,512Dec 18, 2022Updated 3 years ago
1120362990 / vulnerability-list
View on GitHub
在渗透测试中快速检测常见中间件、组件的高危漏洞。
☆728Mar 21, 2022Updated 3 years ago
Bypass007 / Emergency-Response-Notes
View on GitHub
应急响应实战笔记，一个安全工程师的自我修养。
☆5,517Jun 26, 2023Updated 2 years ago
Mr-xn / Penetration_Testing_POC
View on GitHub
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell co…
☆7,227Feb 28, 2026Updated last week
uknowsec / Active-Directory-Pentest-Notes
View on GitHub
个人域渗透学习笔记
☆1,801Feb 7, 2020Updated 6 years ago
0verSp4ce / PoCBox
View on GitHub
PoCBox - Vulnerability Test Aid Platform
☆964Mar 26, 2024Updated last year
insightglacier / Dictionary-Of-Pentesting
View on GitHub
Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
☆2,030Jul 21, 2023Updated 2 years ago
xiaoy-sec / Pentest_Note
View on GitHub
渗透测试常规操作记录
☆4,045May 22, 2023Updated 2 years ago
CTF-MissFeng / bayonet
View on GitHub
bayonet是一款src资产管理系统，从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统
☆1,507Nov 22, 2022Updated 3 years ago
Ridter / Intranet_Penetration_Tips
View on GitHub
2018年初整理的一些内网渗透TIPS，后面更新的慢，所以整理出来希望跟小伙伴们一起更新维护~
☆4,610Feb 24, 2023Updated 3 years ago
c0ny1 / FastjsonExploit
View on GitHub
Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
☆1,389Dec 16, 2022Updated 3 years ago
rabbitmask / WeblogicScan
View on GitHub
Weblogic一键漏洞检测工具，V1.5，更新时间：20200730
☆2,266May 22, 2023Updated 2 years ago
fofapro / Hosts_scan
View on GitHub
这是一个用于IP和域名碰撞匹配访问的小工具，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。
☆1,189Apr 30, 2019Updated 6 years ago
HackJava / HackJava
View on GitHub
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
☆2,872Aug 4, 2023Updated 2 years ago
shmilylty / OneForAll
View on GitHub
OneForAll是一款功能强大的子域收集工具
☆9,644Sep 12, 2025Updated 5 months ago