ffffffff0x/Pentest101 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ffffffff0x/Pentest101

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ffffffff0x/Pentest101)

Close

ffffffff0x / Pentest101View on GitHubMore

• External links
• Readme badge

一些关于渗透测试的Tips

☆611Dec 19, 2022Updated 3 years ago

Alternatives and similar repositories for Pentest101

Users that are interested in Pentest101 are comparing it to the libraries listed below

• ffffffff0x / AboutSecurity

  View on GitHub
  Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.
  ☆1,075Jan 9, 2023Updated 3 years ago
• safe6Sec / PentestDB

  View on GitHub
  各种数据库的利用姿势
  ☆1,034Jan 3, 2025Updated last year
• Power7089 / PenetrationTest-Tips

  View on GitHub
  渗透测试，渗透测试小技巧，渗透测试Tips，师傅们跟我一起维护更新吧~
  ☆876Jun 8, 2021Updated 4 years ago
• safe6Sec / Fastjson

  View on GitHub
  Fastjson姿势技巧集合
  ☆1,825Oct 20, 2023Updated 2 years ago
• bit4woo / domain_hunter_pro

  View on GitHub
  domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
  ☆2,116Jan 23, 2026Updated last month
• ffffffff0x / name-fuzz

  View on GitHub
  针对目标已知信息的字典生成工具
  ☆209Sep 21, 2022Updated 3 years ago
• ffffffff0x / f8x

  View on GitHub
  红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool
  ☆2,087Jan 27, 2026Updated last month
• r0eXpeR / redteam_vul

  View on GitHub
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,522Jul 17, 2021Updated 4 years ago
• JDArmy / DCSec

  View on GitHub
  域控安全one for all
  ☆736Sep 9, 2024Updated last year
• biggerduck / RedTeamNotes

  View on GitHub
  红队笔记
  ☆2,120Apr 11, 2024Updated last year
• Daybr4ak / C2ReverseProxy

  View on GitHub
  一款可以在不出网的环境下进行反向代理及cs上线的工具
  ☆491Apr 26, 2023Updated 2 years ago
• UzJu / Cloud-Bucket-Leak-Detection-Tools

  View on GitHub
  六大云存储，泄露利用检测工具
  ☆1,243Mar 28, 2025Updated 11 months ago
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,012May 21, 2024Updated last year
• wyzxxz / aksk_tool

  View on GitHub
  AK资源管理工具，阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret，利用AK获取资源信息和操作资源，ECS/CVM/E2/UHOST/ECI/BCC执行命令，OSS/COS/S3/BOS…
  ☆779Feb 13, 2025Updated last year
• Schira4396 / VcenterKiller

  View on GitHub
  一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
  ☆1,467Apr 25, 2024Updated last year
• wyzxxz / heapdump_tool

  View on GitHub
  heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等
  ☆1,434May 21, 2024Updated last year
• xiecat / goblin

  View on GitHub
  一款适用于红蓝对抗中的仿真钓鱼系统
  ☆1,535May 30, 2023Updated 2 years ago
• exp1orer / JNDI-Inject-Exploit

  View on GitHub
  解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
  ☆770Jan 26, 2022Updated 4 years ago
• safe6Sec / command

  View on GitHub
  红队常用命令速查
  ☆1,014Feb 7, 2026Updated 3 weeks ago
• ffffffff0x / 1earn

  View on GitHub
  ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
  ☆5,647Jun 6, 2024Updated last year
• lijiejie / swagger-exp

  View on GitHub
  A Swagger API Exploit
  ☆1,370Jun 7, 2024Updated last year
• luckyfuture0177 / ReZeroBypassAV

  View on GitHub
  从零开始学免杀
  ☆438Mar 30, 2022Updated 3 years ago
• Tas9er / ByPassBehinder4J

  View on GitHub
  冰蝎Java WebShell自动化免杀生成
  ☆783Mar 15, 2022Updated 3 years ago
• safe6Sec / GolangBypassAV

  View on GitHub
  研究利用golang各种姿势bypassAV
  ☆815Apr 11, 2022Updated 3 years ago
• chriskaliX / AD-Pentest-Notes

  View on GitHub
  用于记录内网渗透(域渗透)学习 :-)
  ☆1,236Nov 9, 2020Updated 5 years ago
• dr0op / CrossNet-Beta

  View on GitHub
  红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。
  ☆366Jun 19, 2024Updated last year
• shmilylty / netspy

  View on GitHub
  netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
  ☆2,203Jul 25, 2023Updated 2 years ago
• 0range-x / Domain-penetration_one-stop

  View on GitHub
  域渗透一条龙
  ☆738Feb 16, 2022Updated 4 years ago
• lintstar / LSTAR

  View on GitHub
  LSTAR - CobaltStrike 综合后渗透插件
  ☆1,263Jan 30, 2022Updated 4 years ago
• r0eXpeR / supplier

  View on GitHub
  主流供应商的一些攻击性漏洞汇总
  ☆809Nov 8, 2021Updated 4 years ago
• achuna33 / Memoryshell-JavaALL

  View on GitHub
  收集内存马打入方式
  ☆506May 20, 2022Updated 3 years ago
• rtcatc / Packer-Fuzzer

  View on GitHub
  Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…
  ☆3,210May 24, 2024Updated last year
• pmiaowu / BurpFastJsonScan

  View on GitHub
  一款基于BurpSuite的被动式FastJson检测插件
  ☆1,238Oct 1, 2022Updated 3 years ago
• f0ng / JavaFileDict

  View on GitHub
  Java应用的一些配置文件字典，来源于公开的字典与平时收集
  ☆321Feb 1, 2024Updated 2 years ago
• p1g3 / JSINFO-SCAN

  View on GitHub
  递归式寻找域名和api。
  ☆723Aug 3, 2023Updated 2 years ago
• XTeam-Wing / RedTeaming2020

  View on GitHub
  RedTeaming知识星球2020年安全知识汇总
  ☆473May 5, 2021Updated 4 years ago
• ybdt / post-hub

  View on GitHub
  Lateral movement
  ☆943Updated this week
• czz1233 / GBByPass

  View on GitHub
  冰蝎 哥斯拉 WebShell bypass
  ☆763Jan 15, 2026Updated last month
• DeEpinGh0st / Erebus

  View on GitHub
  CobaltStrike后渗透测试插件
  ☆1,554Oct 28, 2021Updated 4 years ago