攻防演习/渗透测试资产处理小工具,对攻防演习/渗透测试前的信息搜集到的大批量资产/域名进行存活检测、获取标题头、语料提取、常见web端口检测等。
☆634Jun 19, 2024Updated last year
Alternatives and similar repositories for bufferfly
Users that are interested in bufferfly are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 对目标域名进行快速的存活扫描、简单的指纹识别、目录扫描☆914Dec 8, 2022Updated 3 years ago
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。☆1,193Apr 30, 2019Updated 7 years ago
- 红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。☆368Jun 19, 2024Updated last year
- 高危漏洞精准检测与深度利用框架☆1,461Jan 8, 2023Updated 3 years ago
- 递归式寻找域名和api。☆724Aug 3, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Shiro-550 不依赖CC链利用工具☆451Jun 19, 2024Updated last year
- 边界打点后的自动化渗透工具☆1,891Jul 19, 2021Updated 4 years ago
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,020May 21, 2024Updated last year
- Glass是一款针对资产列表的快速指纹识别工具,通过调用Fofa/ZoomEye/Shodan/360等api接口快速查询资产信息并识别重点资产的指纹,也可针对IP/IP段或资产列表进行快速的指纹识别。☆1,010Jan 26, 2022Updated 4 years ago
- domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等☆2,130Apr 10, 2026Updated last month
- 一款可以在不出网的环境下进行反向代理及cs上线的工具☆492Apr 26, 2023Updated 3 years ago
- 一款红队在大量的资产中存活探测与重点攻击系统指纹探测工具☆1,722Dec 22, 2023Updated 2 years ago
- GoScan是采用Golang语言编写的一款分布式综合资产管理系统,适合红队、SRC等使用☆716May 6, 2021Updated 5 years ago
- 红队综合渗透框架☆1,177May 11, 2023Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- fastjson漏洞burp插件,检测fastjson<1.2.68基于dnslog,fastjson<=1.2.24和1.2.33<=fatjson<=1.2.47的不出网检测和TomcatEcho,SpringEcho回显方案。☆126May 14, 2021Updated 5 years ago
- ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。☆1,642Jun 16, 2024Updated last year
- 红队作战中比较常遇到的一些重点系统漏洞整理。☆2,521Jul 17, 2021Updated 4 years ago
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入☆773Jan 26, 2022Updated 4 years ago
- Bypass firewall for traffic forwarding using webshell☆1,430Sep 29, 2021Updated 4 years ago
- Burp suite 分块传输辅助插件☆2,033Feb 23, 2022Updated 4 years ago
- Shiro反序列化利用工具,支持新版本(AES-GCM)Shiro的key爆破,配合ysoserial,生成回显Payload☆892May 28, 2021Updated 4 years ago
- A flexible scanner�☆1,283Aug 22, 2025Updated 8 months ago
- ☆876May 27, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- 输入域名>爆破子域名>扫描子域名端口>发现扫描web服务>集成报告的全流程全自动扫描器。集成oneforall、masscan、nmap、dirsearch、crawlergo、xray等工具,另支持cdn识别、网页截图、站点定位;动态识别域名并添加功能、工具超时中断等☆807Mar 13, 2024Updated 2 years ago
- EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具☆3,473Apr 2, 2024Updated 2 years ago
- 信息收集 OR 信息搜集☆928Mar 13, 2024Updated 2 years ago
- CobaltStrike后渗透测试插件☆1,567Oct 28, 2021Updated 4 years ago
- Burp被动扫描流量转发插件☆1,462Jun 17, 2024Updated last year
- EHole(棱洞)-红队重点攻击系统指纹探测工具☆470Jan 27, 2021Updated 5 years ago
- 大宝剑-边界资产梳理工具(红队、蓝队、企业组织架构、子域名、Web资产梳理、Web指纹识别、ICON_Hash资产匹配)☆926Feb 8, 2022Updated 4 years ago
- goon,集合了fscan和kscan等优秀工具功能的扫描爆破工具。功能包含:ip探活、port扫描、web指纹扫描、title扫描、压缩文件扫描、fofa获取、ms17010、mssql、mysql、postgres、redis、ssh、smb、rdp、telnet、to…☆809Aug 5, 2024Updated last year
- Shiro550/Shiro721 一键化利用工具,支持多种回显方式☆1,955Jun 4, 2021Updated 4 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- 一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具☆739Dec 8, 2022Updated 3 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- 一款甲方资产巡航扫描系统。系统定位是发现资产,进行端口爆破。帮助企业更快发现弱口令问题。主要功能包括: 资产探测、端口爆破、定时任务、管理后台识别、报表展示☆1,837Apr 19, 2022Updated 4 years ago
- 瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf☆719Jul 20, 2022Updated 3 years ago
- Shiro RememberMe 1.2.4 反序列化漏洞图形化检测工具(Shiro-550)☆886Dec 16, 2022Updated 3 years ago
- 域控安全one for all☆740Sep 9, 2024Updated last year
- Kscan是一款纯go开发的全方位扫描器,具备端口扫描、协议检测、指纹识别,暴力破解等功能。支持协议1200+,协议指纹10000+,应用指纹20000+,暴力破解协议10余种。☆4,278Aug 22, 2023Updated 2 years ago