让JavaScript资产分析变得简单而强大
☆181Apr 15, 2026Updated 3 weeks ago
Alternatives and similar repositories for JSSS-Find
Users that are interested in JSSS-Find are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 若依Vue漏洞检测工具☆258May 23, 2025Updated 11 months ago
- 目标是成为当下最完善的API挖掘工具,实现自动提取响应敏感信息、URI信息,并且对URI进行自动|手动递归检查☆257Aug 16, 2025Updated 8 months ago
- ☆75Sep 10, 2025Updated 7 months ago
- 一款最全未授权访问漏洞批量检测工具,集成40+常见未授权访问漏洞;使用PYQT6,为其添加了GUI界面☆112Jul 31, 2025Updated 9 months ago
- 漏洞挖掘小工具,用于发现页面中的隐藏可点击元素☆84Jun 4, 2025Updated 11 months ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- 优化后的URLFinder,可以通过自定义的正则表达式,对页面中的各类敏感信��息提取☆152Jan 20, 2025Updated last year
- P1finger - 红队行动下的重点资产指纹识别工具,解决信息收集过程中的一小步☆446Aug 5, 2025Updated 9 months ago
- Nuclei POC 管理与漏洞验证工具-Nuclei GUI☆538Apr 24, 2026Updated last week
- ☆36May 2, 2025Updated last year
- 最好用最智能最可控的目录Fuzz工具 | The most powerful, user-friendly, intelligent, and precise HTTP Fuzzer.☆1,018Mar 6, 2026Updated last month
- 各类综合 upload_fuzz,smb_fuzz,tls绕过,被动指纹扫描☆70Jun 6, 2025Updated 10 months ago
- 一款用于网页敏感信息检测,指纹识别的chrome插件☆804Jan 13, 2026Updated 3 months ago
- Burpsuite - Js Route Scan 正则匹配获取响应中的路由进行被动探测与递归目录探测的burp插件☆371Jun 7, 2024Updated last year
- 爬网站JS文件,自动fuzz api接口,指定api接口(针对前后端分离项目,可指定后端接口地址),回显api响应☆758Jul 20, 2023Updated 2 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- 一款强大的 burp 安全测试插件,集成多种安全测试功能,支持自动化扫描和手动测试。☆675Mar 20, 2026Updated last month
- 🔍 Chrome扩展,为安全研究和渗透测试提供Google/百度/Bing高级搜索语法快捷执行。一键Dorking、批量提取URL、智能过滤黑名单,大幅提升信息收集效率。 🔍 Chrome extension for security research and pen…☆136Oct 16, 2025Updated 6 months ago
- 一款用于快速打点JS文件及路径扫描的单兵工具 / A single player tool for quickly scanning JS files and paths☆322Aug 24, 2025Updated 8 months ago
- Xia_Yue_Plus 瞎越 增强版☆74Aug 20, 2025Updated 8 months ago
- 辅助甲方安全人员巡检网站资产,发现并分析API安全问题☆528Jan 20, 2025Updated last year
- Vue框架未授权接口扫描工具☆75May 28, 2025Updated 11 months ago
- 本工具为jeecg框架漏洞利用工具非jeecg-boot!☆183Aug 13, 2024Updated last year
- JavaGadgetGenerator 工具,支持 ysoserial,Hessian,字节码,Expr/SSTI,Shiro,JDBC 等 Gadget 生成,封装,混淆,出网延迟探测,内存马注入等...☆564Apr 3, 2026Updated last month
- 一款针对Spring框架的漏洞扫描及漏洞利用图形化工具☆222Mar 4, 2025Updated last year
- Deploy open-source AI quickly and easily - Special Bonus Offer • AdRunpod Hub is built for open source. One-click deployment and autoscaling endpoints without provisioning your own infrastructure.
- 一个想让你测试加密流量像测试明文一样简单高效的 Burp 插件。 A Burp plugin that makes testing encrypted traffic as simple and efficient as testing plaintext.☆1,080Mar 27, 2026Updated last month
- 攻防演练过程中,我们通常会用浏览器访问一些资产,但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等,该插件能让我们发现未授权/敏感信息/越权/登陆接口等。☆1,391Oct 3, 2024Updated last year
- Turacos 是一款专业的多数据库安全评估工具,支持 PostgreSQL、MySQL、Redis、MSSQL 等多种数据库的后渗透操作。 为安全研究人员提供系统化、模块化的数据库安全测试能力,助力企业进行安全评估与漏洞验证。☆82Oct 23, 2025Updated 6 months ago
- 针对JWT渗透开发的漏洞验证/密钥爆破工具,针对CVE-2015-9235/空白密钥/未验证签名攻击/CVE-2016-10555/CVE-2018-0114/CVE-2020-28042的结果生成用于FUZZ,也可使用字典/字符枚举(包括JJWT)的方式进行爆破(JWT …☆286Aug 12, 2025Updated 8 months ago
- 目录扫描+JS文件中提取URL和子域+403状态绕过+指纹识别☆874Sep 30, 2025Updated 7 months ago
- OneScan 是一款用于递归目录扫描的 BurpSuite 插件☆1,241Jun 24, 2025Updated 10 months ago
- 网络空间资产测绘、ICP备案、天眼查股权结构图、端口扫描、指纹识别、小程序敏感信息提取。☆1,283Apr 26, 2026Updated last week
- burpsuite passive-scan-client 插件持续维护分支 v2024☆90Aug 16, 2025Updated 8 months ago
- 云资产管理工具 目前工具定位是云安全相关工具,目前是两个模块 云存储工具、云服务工具, 云存储工具主要是针对oss存储、查看、删除、上传、下载、预览等等 云服务工具主要是针对rds、服务器的管理,查看、执行命令、接管等等☆1,151Feb 26, 2026Updated 2 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- 一款java漏洞集合工具☆1,117Jan 13, 2026Updated 3 months ago
- 一个半自动化springboot打点工具,内置目前springboot所有漏洞☆780Sep 30, 2025Updated 7 months ago
- 自动生成多种文件上传绕过技术的Payload 进行测试 界面化设计☆170Jul 2, 2025Updated 10 months ago
- dddd是一款使用简单的批量信息收集,供应链漏洞探测工具,旨在优化红队工作流,减少伤肝的机械性操作。支持从Hunter、Fofa批量拉取目标☆1,851Aug 2, 2024Updated last year
- xxl-job漏洞综合利用工具☆157Jun 3, 2025Updated 11 months ago
- Burp插件,快速探测可能存在SQL注入的请求并标记,提高测试效率☆787Feb 26, 2026Updated 2 months ago
- 微信小程序辅助渗透-自动化☆1,872Updated this week