ring04h/pentest external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

ring04h/pentest

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/ring04h/pentest)

Close

ring04h / pentestView on GitHubMore

• External links
• Readme badge

渗透测试用到的东东

☆428May 6, 2020Updated 5 years ago

Alternatives and similar repositories for pentest

Users that are interested in pentest are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• opensec-cn / vtest

  View on GitHub
  用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
  ☆866Jul 21, 2019Updated 6 years ago
• l3m0n / whatweb

  View on GitHub
  更快速的进行Web应用指纹识别
  ☆171May 9, 2019Updated 6 years ago
• dr0op / WeblogicScan

  View on GitHub
  增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
  ☆967Jun 16, 2024Updated last year
• 1120362990 / vulnerability-list

  View on GitHub
  在渗透测试中快速检测常见中间件、组件的高危漏洞。
  ☆728Mar 21, 2022Updated 4 years ago
• QAX-A-Team / LuWu

  View on GitHub
  红队基础设施自动化部署工具
  ☆852Jan 4, 2023Updated 3 years ago
• yzddmr6 / webshell-venom

  View on GitHub
  免杀webshell无限生成工具
  ☆1,288Apr 3, 2020Updated 5 years ago
• Mel0day / RedTeam-BCS

  View on GitHub
  BCS（北京网络安全大会）2019 红队行动会议重点内容
  ☆819Sep 4, 2019Updated 6 years ago
• r35tart / Penetration_Testing_Case

  View on GitHub
  用于记录分享一些有趣的案例
  ☆865Jan 10, 2022Updated 4 years ago
• myvyang / chromium_for_spider

  View on GitHub
  dynamic crawler for web vulnerability scanner
  ☆251Mar 15, 2026Updated last week
• Ridter / get_ip_by_ico

  View on GitHub
  从shodan获取使用了相同favicon.ico的网站
  ☆189Feb 16, 2019Updated 7 years ago
• Ridter / redis-rce

  View on GitHub
  Redis 4.x/5.x RCE
  ☆975Nov 30, 2021Updated 4 years ago
• c0ny1 / chunked-coding-converter

  View on GitHub
  Burp suite 分块传输辅助插件
  ☆2,026Feb 23, 2022Updated 4 years ago
• timwhitez / crawlergo_x_XRAY

  View on GitHub
  360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
  ☆1,183Nov 10, 2021Updated 4 years ago
• ox01024 / Xray_and_crwlergo_in_server

  View on GitHub
  雇一位免费的360工程师和一位长亭工程师为你挖洞，还有听话的server酱给你汇报
  ☆193Apr 12, 2020Updated 5 years ago
• l3m0n / Bypass_Disable_functions_Shell

  View on GitHub
  一个各种方式突破Disable_functions达到命令执行的shell
  ☆1,198Oct 17, 2023Updated 2 years ago
• cvkki / src

  View on GitHub
  日常src平台域名收集
  ☆594Jul 11, 2019Updated 6 years ago
• lijiejie / idea_exploit

  View on GitHub
  Gather sensitive information from (.idea) folder for pentesters
  ☆369Aug 5, 2022Updated 3 years ago
• uknowsec / loginlog_windows

  View on GitHub
  读取登录过本机的登录失败或登录成功的所有计算机信息，在内网渗透中快速定位运维管理人员。
  ☆221Sep 30, 2019Updated 6 years ago
• jiangsir404 / pbscan

  View on GitHub
  基于burpsuite headless 的代理式被动扫描系统
  ☆95Feb 10, 2020Updated 6 years ago
• uknowsec / Active-Directory-Pentest-Notes

  View on GitHub
  个人域渗透学习笔记
  ☆1,803Feb 7, 2020Updated 6 years ago
• phink-team / Cobaltstrike-MS17-010

  View on GitHub
  cobaltstrike ms17-010 module and some other
  ☆418Jun 13, 2019Updated 6 years ago
• boy-hack / airbug

  View on GitHub
  Airbug(空气洞)，收集漏洞poc用于安全产品
  ☆355Sep 26, 2019Updated 6 years ago
• lufeirider / CVE-2019-2725

  View on GitHub
  CVE-2019-2725 命令回显
  ☆436May 8, 2023Updated 2 years ago
• RicterZ / genpAss

  View on GitHub
  ☆743Nov 20, 2019Updated 6 years ago
• Lucifer1993 / cmsprint

  View on GitHub
  CMS和中间件指纹库
  ☆399Apr 30, 2019Updated 6 years ago
• opensec-cn / chip

  View on GitHub
  a simple tool to detect potential security threat in php code
  ☆316Sep 9, 2024Updated last year
• aleenzz / MYSQL_SQL_BYPASS_WIKI

  View on GitHub
  mysql注入,bypass的一些心得
  ☆1,327Jun 25, 2024Updated last year
• c0ny1 / FastjsonExploit

  View on GitHub
  Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
  ☆1,389Dec 16, 2022Updated 3 years ago
• r35tart / RW_Password

  View on GitHub
  此项目用来提取收集以往泄露的密码中符合条件的强弱密码
  ☆1,131Apr 1, 2019Updated 6 years ago
• QAX-A-Team / EventLogMaster

  View on GitHub
  Cobalt Strike插件 - RDP日志取证&清除
  ☆363Dec 23, 2019Updated 6 years ago
• boy-hack / wooyun-payload

  View on GitHub
  从wooyun中提取的payload，以及burp插件
  ☆841Jun 17, 2022Updated 3 years ago
• aleenzz / MSSQL_SQL_BYPASS_WIKI

  View on GitHub
  MSSQL注入提权,bypass的一些总结
  ☆737Jun 25, 2024Updated last year
• fnmsd / ChunkedHTTPAdapter

  View on GitHub
  参考《利用分块传输吊打所有WAF》修改的requests的Adapter
  ☆98Jan 31, 2019Updated 7 years ago
• l3m0n / WebFuzzAttack

  View on GitHub
  web模糊测试 - 将漏洞可能性放大
  ☆145Apr 23, 2019Updated 6 years ago
• l3m0n / pentest_study

  View on GitHub
  从零开始内网渗透学习
  ☆3,017Apr 8, 2016Updated 9 years ago
• Xyntax / POC-T

  View on GitHub
  渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework
  ☆1,951Mar 28, 2022Updated 3 years ago
• Lucifer1993 / struts-scan

  View on GitHub
  Python2编写的struts2漏洞全版本检测和利用工具
  ☆1,418May 7, 2019Updated 6 years ago
• 7dog7 / bottleneckOsmosis

  View on GitHub
  瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf
  ☆717Jul 20, 2022Updated 3 years ago
• threedr3am / tomcat-cluster-session-sync-exp

  View on GitHub
  tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包， 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
  ☆212May 19, 2020Updated 5 years ago