chaitin/xapp external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

chaitin/xapp

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/chaitin/xapp)

Close

chaitin / xappView on GitHubMore

• External links
• Readme badge

☆322Jul 19, 2024Updated last year

Alternatives and similar repositories for xapp

Users that are interested in xapp are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• chaitin / xray-plugins

  View on GitHub
  ☆199Aug 1, 2024Updated last year
• chaitin / xpoc

  View on GitHub
  为供应链漏洞扫描设计的快速应急响应工具 [快速应急] [漏洞扫描] [端口扫描] [xray2.0进行时] A fast emergency response tool designed for supply chain vulnerability scanning.
  ☆1,166Jul 19, 2024Updated last year
• shuanx / BurpAPIFinder

  View on GitHub
  攻防演练过程中，我们通常会用浏览器访问一些资产，但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等，该插件能让我们发现未授权/敏感信息/越权/登陆接口等。
  ☆1,384Oct 3, 2024Updated last year
• P001water / P1finger

  View on GitHub
  P1finger - 红队行动下的重点资产指纹识别工具，解决信息收集过程中的一小步
  ☆440Aug 5, 2025Updated 8 months ago
• a1phaboy / FastjsonScan

  View on GitHub
  Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
  ☆1,053Oct 7, 2022Updated 3 years ago
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• chainreactors / gogo

  View on GitHub
  面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams
  ☆2,041Feb 3, 2026Updated 2 months ago
• R4gd0ll / I-Wanna-Get-All

  View on GitHub
  综合漏洞后渗透利用工具
  ☆1,706Dec 11, 2025Updated 4 months ago
• m-sec-org / EZ

  View on GitHub
  EZ是一款集信息收集、端口扫描、服务暴破、URL爬虫、指纹识别、被动扫描为一体的跨平台漏洞扫描器。
  ☆1,037Jan 17, 2025Updated last year
• chainreactors / spray

  View on GitHub
  最好用最智能最可控的目录Fuzz工具 | The most powerful, user-friendly, intelligent, and precise HTTP Fuzzer.
  ☆1,007Mar 6, 2026Updated last month
• pen4uin / java-memshell-generator

  View on GitHub
  一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
  ☆2,179Aug 21, 2025Updated 7 months ago
• wafinfo / DecryptTools

  View on GitHub
  DecryptTools-综合解密
  ☆1,315Mar 2, 2025Updated last year
• lemonlove7 / EHole_magic

  View on GitHub
  EHole(棱洞)魔改。可对路径进行指纹识别；支持识别出来的重点资产进行漏洞检测(支持从hunter和fofa中提取资产)支持对ftp服务识别及爆破
  ☆954Mar 6, 2024Updated 2 years ago
• abc123info / Struts2VulsScanTools

  View on GitHub
  1、点击“检测漏洞”，会自动检测该URL是否存在S2-001、S2-005、S2-009、S2-013、S2-016、S2-019、S2-020/021、S2-032、S2-037、DevMode、S2-045/046、S2-052、S2-048、S2-053、S2-057…
  ☆958Nov 3, 2025Updated 5 months ago
• Autumn-27 / ScopeSentry

  View on GitHub
  ScopeSentry-Cyberspace mapping, subdomain enumeration, port scanning, sensitive information discovery, vulnerability scanning, distribute…
  ☆1,483Apr 1, 2026Updated 2 weeks ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• wgpsec / lc

  View on GitHub
  LC（List Cloud）是一个多云攻击面资产梳理工具
  ☆640Oct 6, 2024Updated last year
• c0olw / NacosRce

  View on GitHub
  Nacos JRaft Hessian 反序列化 RCE 加载字节码 注入内存马 不出网利用
  ☆848Jul 7, 2023Updated 2 years ago
• vaycore / OneScan

  View on GitHub
  OneScan 是一款用于递归目录扫描的 BurpSuite 插件
  ☆1,237Jun 24, 2025Updated 9 months ago
• saoshao / DetSql

  View on GitHub
  Burp插件，快速探测可能存在SQL注入的请求并标记，提高测试效率
  ☆778Feb 26, 2026Updated last month
• whwlsfb / JDumpSpider

  View on GitHub
  HeapDump敏感信息提取工具
  ☆1,647Dec 15, 2025Updated 4 months ago
• DeEpinGh0st / MDUT-Extend-Release

  View on GitHub
  MDUT-Extend(扩展版本)
  ☆916Mar 27, 2026Updated 2 weeks ago
• KimJun1010 / WeblogicTool

  View on GitHub
  WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
  ☆1,786Nov 1, 2023Updated 2 years ago
• zema1 / suo5

  View on GitHub
  高性能 HTTP 正向代理工具 | A high-performance http tunneling tool
  ☆2,694Feb 2, 2026Updated 2 months ago
• rtcatc / Packer-Fuzzer

  View on GitHub
  Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…
  ☆3,224May 24, 2024Updated last year
• Managed hosting for WordPress and PHP on Cloudways • Ad
  Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
• API-Security / APIKit

  View on GitHub
  APIKit：Discovery, Scan and Audit APIs Toolkit All In One.
  ☆2,260Apr 2, 2024Updated 2 years ago
• shuanx / BurpFingerPrint

  View on GitHub
  BurpSuite插件集成Ehole指纹库并进行常见OA弱口令爆破插件
  ☆745Sep 5, 2024Updated last year
• outlaws-bai / Galaxy

  View on GitHub
  一个想让你测试加密流量像测试明文一样简单高效的 Burp 插件。 A Burp plugin that makes testing encrypted traffic as simple and efficient as testing plaintext.
  ☆1,067Mar 27, 2026Updated 2 weeks ago
• 0x727 / BypassPro

  View on GitHub
  对Auth/Waf 自动化bypass的burpsuite插件
  ☆1,126Feb 28, 2026Updated last month
• EdgeSecurityTeam / EHole

  View on GitHub
  EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
  ☆3,460Apr 2, 2024Updated 2 years ago
• MInggongK / dahuaExploitGUI

  View on GitHub
  dahua综合漏洞利用工具
  ☆287Aug 6, 2024Updated last year
• SleepingBag945 / dddd

  View on GitHub
  dddd是一款使用简单的批量信息收集,供应链漏洞探测工具，旨在优化红队工作流，减少伤肝的机械性操作。支持从Hunter、Fofa批量拉取目标
  ☆1,839Aug 2, 2024Updated last year
• qiwentaidi / Slack

  View on GitHub
  安全服务集成化工具集
  ☆1,056Mar 20, 2026Updated 3 weeks ago
• F6JO / RouteVulScan

  View on GitHub
  Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
  ☆1,316Jun 29, 2024Updated last year
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• f0ng / autoDecoder

  View on GitHub
  Burp插件，根据自定义来达到对数据包的处理（适用于加解密、爆破等），类似mitmproxy，不同点在于经过了burp中转，在自动加解密的基础上，不影响APP、网站加解密正常逻辑等。
  ☆1,363Mar 20, 2026Updated 3 weeks ago
• ReaJason / MemShellParty

  View on GitHub
  一款专注于 Java 主流 Web 中间件的内存马快速生成工具，致力于简化安全研究人员和红队成员的工作流程，提升攻防效率
  ☆1,401Mar 30, 2026Updated 2 weeks ago
• X1r0z / JNDIMap

  View on GitHub
  A powerful JNDI injection exploitation framework that supports RMI, LDAP and LDAPS protocols, including various bypass methods for high-v…
  ☆575Feb 4, 2026Updated 2 months ago
• gh0stkey / HaE

  View on GitHub
  HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.
  ☆4,137Mar 31, 2026Updated 2 weeks ago
• winezer0 / APIFinderPlus

  View on GitHub
  目标是成为当下最完善的API挖掘工具，实现自动提取响应敏感信息、URI信息，并且对URI进行自动|手动递归检查
  ☆257Aug 16, 2025Updated 7 months ago
• ekkoo-z / Z-Godzilla_ekp

  View on GitHub
  哥斯拉webshell管理工具二次开发规避流量检测设备
  ☆1,058Dec 2, 2025Updated 4 months ago
• jar-analyzer / jar-analyzer

  View on GitHub
  Jar Analyzer - 一个 JAR 包 GUI 分析工具，方法调用关系搜索，方法调用链 DFS 算法分析，模拟 JVM 的污点分析验证 DFS 结果，字符串搜索，Java Web 组件入口分析，CFG 程序分析，JVM 栈帧分析，自定义表达式搜索，紧跟 AI 技术发…
  ☆2,046Apr 3, 2026Updated last week