awake1t/Awesome-hacking-tools external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

awake1t/Awesome-hacking-tools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/awake1t/Awesome-hacking-tools)

Close

awake1t / Awesome-hacking-toolsView on GitHubMore

• External links
• Readme badge

收集网上好用、实用的红蓝对抗武器。从资产扫描、泄漏扫描、信息收集、漏洞扫描、SRC批量挖掘、内网渗透、应急响应等等工具。 大部分我都用过、部分会写上自己的感想与建议，希望对你有帮助

☆521May 21, 2022Updated 3 years ago

Alternatives and similar repositories for Awesome-hacking-tools

Users that are interested in Awesome-hacking-tools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• hanc00l / nemo_go

  View on GitHub
  Nemo是用来进行自动化信息收集的一个简单平台，通过集成常用的信息收集工具和技术，实现对内网及互联网资产信息的自动收集，提高隐患排查和渗透测试的工作效率。
  ☆2,040Feb 9, 2026Updated 3 months ago
• awake1t / linglong

  View on GitHub
  一款甲方资产巡航扫描系统。系统定位是发现资产，进行端口爆破。帮助企业更快发现弱口令问题。主要功能包括: 资产探测、端口爆破、定时任务、管理后台识别、报表展示
  ☆1,837Apr 19, 2022Updated 4 years ago
• kracer127 / SiteScan

  View on GitHub
  专注一站化解决渗透测试的信息收集任务，功能包括域名ip历史解析、nmap常见端口爆破、子域名信息收集、旁站信息收集、whois信息收集、网站架构分析、cms解析、备案信息收集、CDN信息解析、是否存在waf检测、后台寻找以及生成检测结果html报告表。
  ☆429Oct 31, 2023Updated 2 years ago
• givemefivw / SecurityServiceBox

  View on GitHub
  一个既可以满足安服仔日常渗透工作也可以批量刷洞的工具盒子。集合了常见的域名收集、目录扫描、ip扫描、指纹扫描、PoC验证等常用工具，方便安服仔快速展开渗透测试
  ☆539May 5, 2023Updated 3 years ago
• tr0uble-mAker / POC-bomber

  View on GitHub
  利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点
  ☆2,363Jun 9, 2023Updated 2 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• zongdeiqianxing / Autoscanner

  View on GitHub
  输入域名>爆破子域名>扫描子域名端口>发现扫描web服务>集成报告的全流程全自动扫描器。集成oneforall、masscan、nmap、dirsearch、crawlergo、xray等工具，另支持cdn识别、网页截图、站点定位；动态识别域名并添加功能、工具超时中断等
  ☆809Mar 13, 2024Updated 2 years ago
• bit4woo / domain_hunter_pro

  View on GitHub
  domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
  ☆2,130Apr 10, 2026Updated last month
• guchangan1 / All-Defense-Tool

  View on GitHub
  本项目集成了全网优秀的攻防武器工具项目，包含自动化利用，子域名、目录扫描、端口扫描等信息收集工具，各大中间件、cms、OA漏洞利用工具，爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。
  ☆7,538Updated this week
• Goqi / Banli

  View on GitHub
  Banli-高危资产识别和高危漏洞扫描
  ☆458Apr 10, 2023Updated 3 years ago
• 0x727 / ShuiZe_0x727

  View on GitHub
  信息收集自动化工具
  ☆4,001Jun 13, 2024Updated last year
• kelvinBen / AppInfoScanner

  View on GitHub
  一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN…
  ☆3,524Dec 18, 2022Updated 3 years ago
• yqcs / heartsk_community

  View on GitHub
  Hearts K-企业资产发现与脆弱性检查工具，自动化资产信息收集与漏洞扫描
  ☆252Dec 25, 2023Updated 2 years ago
• awake1t / PortBrute

  View on GitHub
  一款跨平台小巧的端口爆破工具，支持爆破FTP/SSH/SMB/MSSQL/MYSQL/POSTGRESQL/MONGOD / A cross-platform compact port blasting tool that supports blasting FTP/SSH…
  ☆1,110Oct 9, 2021Updated 4 years ago
• awake1t / HackReport

  View on GitHub
  渗透测试报告/资料文档/渗透经验文档/安全书籍
  ☆2,972Jul 4, 2024Updated last year
• Simple, predictable pricing with DigitalOcean hosting • Ad
  Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
• redtoolskobe / scaninfo

  View on GitHub
  fast scan for redtools
  ☆880Mar 23, 2022Updated 4 years ago
• xzajyjs / ThunderSearch

  View on GitHub
  macOS上的小而美【Fofa、Shodan、Hunter、Zoomeye、Quake网络空间搜索引擎】闪电搜索器；GUI图形化(Mac/Windows)渗透测试信息搜集工具；资产搜集引擎；hw红队工具hvv
  ☆666Dec 6, 2024Updated last year
• EdgeSecurityTeam / EHole

  View on GitHub
  EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
  ☆3,467Apr 2, 2024Updated 2 years ago
• White-hua / Apt_t00ls

  View on GitHub
  高危漏洞利用工具
  ☆1,834Feb 12, 2025Updated last year
• tongcheng-security-team / NextScan

  View on GitHub
  飞刃是一套完整的企业级黑盒漏洞扫描系统，集成漏洞扫描、漏洞管理、扫描资产、爬虫等服务。 拥有强大的漏洞检测引擎和丰富的插件库，覆盖多种漏洞类型和应用程序框架。
  ☆1,166Jun 30, 2023Updated 2 years ago
• EASY233 / Finger

  View on GitHub
  一款红队在大量的资产中存活探测与重点攻击系统指纹探测工具
  ☆1,719Dec 22, 2023Updated 2 years ago
• bigblackhat / oFx

  View on GitHub
  一个开源的、开箱即用的漏洞批量验证框架
  ☆906Oct 24, 2025Updated 6 months ago
• ExpLangcn / Aopo

  View on GitHub
  内网自动化快速打点工具｜资产探测｜漏洞扫描｜服务扫描｜弱口令爆破
  ☆456Nov 29, 2023Updated 2 years ago
• ExpLangcn / NucleiTP

  View on GitHub
  自动整合全网Nuclei的漏洞POC，实时同步更新最新POC！
  ☆2,887Aug 23, 2024Updated last year
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• Bywalks / DarkAngel

  View on GitHub
  DarkAngel 是一款全自动白帽漏洞扫描器，从hackerone、bugcrowd资产监听到漏洞报告生成、漏洞URL截屏、消息通知。
  ☆611Aug 17, 2023Updated 2 years ago
• b0bac / ApolloScanner

  View on GitHub
  自动化巡航扫描框架（可用于红队打点评估）
  ☆733Feb 5, 2026Updated 3 months ago
• chainreactors / gogo

  View on GitHub
  面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams
  ☆2,054Feb 3, 2026Updated 3 months ago
• ki9mu / ARL-plus-docker

  View on GitHub
  基于ARL-V2.6.2修改后的版本
  ☆988Jun 26, 2025Updated 10 months ago
• komomon / Komo

  View on GitHub
  🚀Komo, a comprehensive asset collection and vulnerability scanning tool. Komo 一个综合资产收集和漏洞扫描工具，集成了20余款工具，通过多种方式对子域进行获取，收集域名邮箱，进行存活探测，域名指纹…
  ☆561Jan 19, 2024Updated 2 years ago
• zhzyker / dismap

  View on GitHub
  Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点
  ☆2,146Jan 29, 2024Updated 2 years ago
• veo / vscan

  View on GitHub
  开源、轻量、快速、跨平台 的网站漏洞扫描工具，帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)
  ☆1,624Oct 10, 2023Updated 2 years ago
• insightglacier / Dictionary-Of-Pentesting

  View on GitHub
  Dictionary collection project such as Pentesing, Fuzzing, Bruteforce and BugBounty. 渗透测试、SRC漏洞挖掘、爆破、Fuzzing等字典收集项目。
  ☆2,044Jul 21, 2023Updated 2 years ago
• savior-only / Spring_All_Reachable

  View on GitHub
  Spring漏洞综合利用工具
  ☆674Jul 5, 2023Updated 2 years ago
• Deploy open-source AI quickly and easily - Special Bonus Offer • Ad
  Runpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
• Threekiii / Vulnerability-Wiki

  View on GitHub
  一个基于 docsify 快速部署 Awesome-POC 漏洞文档的项目。Deploying the Awesome-POC repository via docsify.
  ☆2,073Apr 23, 2026Updated 2 weeks ago
• gh0stkey / Web-Fuzzing-Box

  View on GitHub
  Web Fuzzing Box - Web 模糊测试字典与一些Payloads
  ☆2,707Mar 23, 2026Updated last month
• ffffffff0x / 1earn

  View on GitHub
  ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
  ☆5,670Jun 6, 2024Updated last year
• zhzyker / vulmap

  View on GitHub
  Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能
  ☆3,522Apr 26, 2023Updated 3 years ago
• tib36 / PhishingBook

  View on GitHub
  红蓝对抗：钓鱼演练资源汇总&备忘录
  ☆1,167Nov 6, 2024Updated last year
• W01fh4cker / Serein

  View on GitHub
  【懒人神器】一款图形化、批量采集url、批量对采集的url进行各种nday检测的工具。可用于src挖掘、cnvd挖掘、0day利用、打造自己的武器库等场景。可以批量利用Actively Exploited Atlassian Confluence 0Day CVE-2022…
  ☆1,245Feb 26, 2023Updated 3 years ago
• lcvvvv / kscan

  View on GitHub
  Kscan是一款纯go开发的全方位扫描器，具备端口扫描、协议检测、指纹识别，暴力破解等功能。支持协议1200+，协议指纹10000+，应用指纹20000+，暴力破解协议10余种。
  ☆4,277Aug 22, 2023Updated 2 years ago