基于 Chrome Manifest V3 的渗透测试辅助插件,用于快速发现页面输入点、评估 CSP 风险、嗅探潜在敏感资产、识别常见前端框架指纹,并内置常用编码转换工具,帮助进行合法合规的渗透测试与安全检查
☆67Mar 2, 2026Updated 2 months ago
Alternatives and similar repositories for XMCVE-WebRecon
Users that are interested in XMCVE-WebRecon are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- SpringbootGuiExploit漏洞利用工具测试版☆20Jun 7, 2024Updated last year
- 这是一个结合 Burp Suite 扩展插件 和 ProxyPool 爬虫代理 IP 池 的集成方案,用于自动化获取、验证和管理免费代理,实现高效的 HTTP 代理切换。插件支持直接粘贴代理列表或访问 ProxyPool API URL 获取代理,支持 HTTP 和 SOC…☆31Oct 30, 2025Updated 6 months ago
- hessian反序列化利用工具☆41Apr 11, 2026Updated last month
- 为初学者开发的爆破靶场。☆31Nov 28, 2025Updated 5 months ago
- 用于若依和Jeecg数据库中密码的爆破☆23Jul 19, 2025Updated 10 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- 本项目是一个插件项目,用于演示插件的使用方法 快速打造自己的谷歌插件该项目使用 vue2.0 + webpack4.0 + less + es6 + vue-router + vuex + axios + element-ui + chrome-plugin 等其他插件开发…☆14Oct 18, 2023Updated 2 years ago
- 【NEW】https://github.com/ctfhub-team/base_web_nginx_mysql_php_56 https://github.com/ctfhub-team/base_web_nginx_mysql_php_74☆12Sep 22, 2020Updated 5 years ago
- Parsing 是一个 Chrome 插件,选择ai分析当前页面的Js代码,内置提示词,不再需要单拎js。以及信息收集功能,提升渗透测试效率。☆60Jan 28, 2026Updated 3 months ago
- 一个由AI运维的网络安全Skill知识库☆118May 16, 2026Updated last week
- php-unserialize-lib 是一个根据 php 反序列化工具 PHPGGC 对应编写而来的反序列化靶场,提供 PHPGGC 中大部分反序列化漏洞环境☆39Dec 20, 2023Updated 2 years ago
- 检测host头攻击的Burpsuite被动扫描插件,Burpsuite passive scanning plugin responsible for detecting host header attack☆11Apr 28, 2023Updated 3 years ago
- Geoserver综合利用工具☆120Jan 7, 2026Updated 4 months ago
- BpArsenal, a Burp Suite plugin that can quickly convert http requests into command-line tool execution, launch third-party tools and open…☆22Oct 31, 2025Updated 6 months ago
- 递归式主动检测脆弱路径的工具☆17Mar 24, 2025Updated last year
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- 🔍 Chrome扩展,为安全研究和渗透测试提供Google/百度/Bing高级搜索语法快捷执行。一键Dorking、批量提取URL、智能过滤黑名单,大幅提升信息收集效率。 🔍 Chrome extension for security research and pen…☆141Oct 16, 2025Updated 7 months ago
- burp解密插件☆10Jun 9, 2023Updated 2 years ago
- FindSomething本地移植版--HeartK☆96Jul 15, 2025Updated 10 months ago
- 【Hello-CTF labs】一个ssrf的综合靶场,包含RCE,SQL注入,Tomcat,Redis,MySQL提权等ssrf攻击场景☆82Mar 18, 2025Updated last year
- Burp Suite HTTP traffic monitoring & management extension for security testers☆59Feb 4, 2026Updated 3 months ago
- SiftScan 是一个集成资产识别、资产梳�理、资产收集、弱点检测、漏洞检测等的工具。它致力于提高红蓝对抗/脆弱性赏金的效率。is a tool that integrates asset identification, asset sorting, asset colle…☆53Jan 17, 2024Updated 2 years ago
- Burpsuite - Js Route Scan 正则匹配获取响应中的路由进行被动探测与递归目录探测的burp插件☆373Jun 7, 2024Updated last year
- 各类综合 upload_fuzz,smb_fuzz,tls绕过,被动指纹扫描☆69Jun 6, 2025Updated 11 months ago
- 符合 OpenForensicRules 数字取证与应急响应信息采集规则格式规范的配置文件仓库☆29Jul 18, 2025Updated 10 months ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- 二开魔改冰蝎(ByPassBehinder)4.1☆24Oct 11, 2025Updated 7 months ago
- 💬 🚀 告别繁琐命令行,用自然语言驱动专业级渗透测试。 ⚡ 让安全测试从未如此简单、高效。Forget complex command lines. 🛡️ Professional penetration testing, powered by natural lan…☆149Mar 6, 2026Updated 2 months ago
- 基于JavaFx开发的图形化安服/渗透测试报告自动生成工具,安服渗透仔摸鱼划水必备。☆131Feb 25, 2026Updated 3 months ago
- ☆21Jun 29, 2022Updated 3 years ago
- Argus 取名自希腊神话中的"百眼巨人" (Argus Panoptes)这是一款专为应急响应、威胁狩猎设计的现代化跨平台安全工具,致力于提供更隐蔽、更强大、更智能的威胁检测能力。☆33May 9, 2026Updated 2 weeks ago
- 一个方便逆向人员进行渗透的 burp 插件☆120Sep 3, 2024Updated last year
- 使用Docker一键制作Vol2取证需要的Profile☆22Aug 31, 2025Updated 8 months ago
- xss漏洞挖掘插件☆37Feb 6, 2025Updated last year
- 一款BurpSuite插件,辅助手工测试☆72Aug 4, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A vulnerability has been identified in Docker Desktop. A remote attacker could exploit this vulnerability to trigger security restriction…☆48Dec 7, 2025Updated 5 months ago
- Vue框架未授权接口扫描工具☆75May 28, 2025Updated 11 months ago
- 冰蝎流量解密脚本,☆79Jan 25, 2021Updated 5 years ago
- A competition QQ group bot for GZCTF☆19Dec 9, 2023Updated 2 years ago
- Hengge team develops JavaScript specifically for loading Webpack for batch reading☆227May 20, 2026Updated last week
- 使用 Frida 增强 FART:实现更强大的 Android 脱壳能力(Enhancing FART with Frida: Unlocking More Powerful Android Unpacking Capabilities)☆60Jun 4, 2025Updated 11 months ago
- Vanguard(先锋者)— AI自动化渗透工具☆41Mar 28, 2026Updated last month