cnmsec / MpaasPentestToolView external linksLinks
mpass移动开发框架ios端抓包hook脚本
☆192Nov 18, 2020Updated 5 years ago
Alternatives and similar repositories for MpaasPentestTool
Users that are interested in MpaasPentestTool are comparing it to the libraries listed below
Sorting:
- mPaas请求包加密frida hook解决方案☆122Mar 22, 2023Updated 2 years ago
- mpass移动开发框架ios端抓包hook脚本☆41Nov 18, 2020Updated 5 years ago
- Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。☆1,324Dec 14, 2025Updated 2 months ago
- ☆80Oct 17, 2022Updated 3 years ago
- ☆44Jan 25, 2022Updated 4 years ago
- 针对 @hanbinglengyue 的FART项目下的Frida脱壳脚本进行最新适配,可在Frida16.1.0 + Android12环境下进行脱壳☆262Mar 21, 2024Updated last year
- autoDecoder的用法及案例,包含加解密方法、绕waf、替换参数等操作。☆301Jul 28, 2024Updated last year
- A list for Web Security and Code Audit☆1,212Dec 3, 2024Updated last year
- 对Auth/Waf 自动化bypass的burpsuite插件☆1,073Jan 26, 2026Updated 3 weeks ago
- captcha-killer的修改版,支持关键词识别base64编码的图片,添加免费ocr库,用于验证码爆破,适配新版Burpsuite☆1,870Aug 26, 2025Updated 5 months ago
- Android APP漏洞之战系列,主要讲述如何快速挖掘APP漏洞☆766Feb 3, 2023Updated 3 years ago
- Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件☆1,314Jun 29, 2024Updated last year
- 爬网站JS文件,自动fuzz api接口,指定api接口(针对前后端分离项目,可指定后端接口地址),回显api响应☆755Jul 20, 2023Updated 2 years ago
- 强大的 Frida 重打包工具,用于 iOS 和 Android。轻松修改 Frida 特征,增强隐蔽性,绕过检测。简化逆向工程和安全测试。Powerful Frida repackaging tool for iOS and Android. Easily modify …☆726Sep 12, 2025Updated 5 months ago
- 一款适用于以APP病毒分析、APP漏洞挖掘、APP开发、HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、鸿蒙)辅助分析工具☆1,249Jan 6, 2026Updated last month
- BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite). 支持多种加密算…☆1,618Aug 4, 2023Updated 2 years ago
- A memory shell for ruoyi☆266Apr 28, 2023Updated 2 years ago
- 一个想让你测试加密流量像测试明文一样简单高效的 Burp 插件。 A Burp plugin that makes testing encrypted traffic as simple and efficient as testing plaintext.☆1,041Feb 9, 2026Updated last week
- 用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统☆659Jun 13, 2024Updated last year
- 互联网厂商API利用工具。☆555Sep 13, 2024Updated last year
- Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…☆3,205May 24, 2024Updated last year
- 记录一些代码审计过的源码☆182Feb 26, 2025Updated 11 months ago
- Frida 实现拦截okhttp的脚本☆1,135Nov 30, 2020Updated 5 years ago
- domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等☆2,116Jan 23, 2026Updated 3 weeks ago
- 高危漏洞精准检测与深度利用框架☆1,456Jan 8, 2023Updated 3 years ago
- APIKit:Discovery, Scan and Audit APIs Toolkit All In One.☆2,238Apr 2, 2024Updated last year
- OneScan 是一款用于递归目录扫描的 BurpSuite 插件☆1,229Jun 24, 2025Updated 7 months ago
- .wxapkg analysis tool for macOS☆68Jun 21, 2024Updated last year
- 自己学习java安全的一些总结,主要是安全审计相关☆1,694Jan 5, 2022Updated 4 years ago
- 一个垃圾利用工具,半自动发包机器☆229Sep 8, 2022Updated 3 years ago
- strongR-frida☆223Aug 16, 2021Updated 4 years ago
- 远程调用(rpc)浏览器方法,免去抠代码补环境☆2,167Jan 9, 2026Updated last month
- API接口管理工具(目前内置微信公众号、微信小程序、企业微信、飞书、钉钉等)☆753Oct 15, 2024Updated last year
- 基于frida的安卓hook框架,提供了很多frida自身不支持的功能,将hook安卓变成简单便捷,人人都会的事情☆882Dec 10, 2022Updated 3 years ago
- burp 插件 xia_Yue(瞎越) 主要用于测试越权、未授权☆668Aug 27, 2024Updated last year
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆778Feb 13, 2025Updated last year
- ☆12May 24, 2022Updated 3 years ago
- 使用了lsp魔改全局版+fundex2实现云脱壳原理 测试环境☆19Feb 11, 2024Updated 2 years ago
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,010May 21, 2024Updated last year