s7safe/Rad-Team-tools

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/s7safe/Rad-Team-tools)

s7safe / Rad-Team-tools

赏金技巧|红队|RedTeam|信息侦查|漏洞挖掘

☆130

Alternatives and similar repositories for Rad-Team-tools

Users that are interested in Rad-Team-tools are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

mstxq17 / VunHunterTips
View on GitHub
漏洞挖掘技巧及其一些工具集成
☆141Jul 12, 2022Updated 3 years ago
Maikefee / BurpAutoProxySwitcherPlugins_Maikefee
View on GitHub
红队必备，场景：在爆破批量封ip的情况下，爬取socks5代理在bp进行渗透测试。说明：可设置一个请求换一次socks代理ip，这样就绕过了封ip的情况。
☆39Jun 28, 2024Updated last year
komomon / Komo
View on GitHub
🚀Komo, a comprehensive asset collection and vulnerability scanning tool. Komo 一个综合资产收集和漏洞扫描工具，集成了20余款工具，通过多种方式对子域进行获取，收集域名邮箱，进行存活探测，域名指纹…
☆561Jan 19, 2024Updated 2 years ago
F6JO / RouteVulScan
View on GitHub
Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
☆1,320Jun 29, 2024Updated last year
badboycxcc / Exchange-Info
View on GitHub
Exchange 信息收集工具
☆54Jan 4, 2025Updated last year
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
smxiazi / xia_sql
View on GitHub
xia SQL (瞎注) burp 插件，在每个参数后面填加一个单引号，两个单引号，一个简单的判断注入小插件。
☆1,262May 18, 2023Updated 3 years ago
A0WaQ4 / Weaver_ofslogin_vul
View on GitHub
组合利用泛微信息泄漏漏洞和任意用户登录漏洞，可获取全部loginId并测试登录
☆59Aug 3, 2023Updated 2 years ago
VVVinson / Zfre_scan
View on GitHub
HVV信息收集，优秀开源工具的整合，通过Zoomeye+ffuf+EHole+Xray+Rad进行信息收集
☆59May 3, 2021Updated 5 years ago
kk12-30 / subfinder-x
View on GitHub
subfinder-x是一款高性能的子域名爆破工具，使用 Go 语言开发，专为信息收集和渗透测试场景设计。该工具能够快速发现目标域名的子域名，并支持多级子域名扫描、HTTP服务识别和指纹识别等功能。
☆32May 16, 2025Updated last year
b0bac / ApolloScanner
View on GitHub
自动化巡航扫描框架（可用于红队打点评估）
☆737Feb 5, 2026Updated 3 months ago
Soufaker / laoyue
View on GitHub
自动化监控赏金项目-定期收集资产,漏洞进行推送(现在可以稳定收菜,有问题issues我)-关注-夜安团队SEC-加我微信进群可下载最新自动化版本,git目前不会更新了,群里目前版本1.3.1,项目优化了非常多,功能也加入了非常多,建议进群(没收费项目放心白嫖)
☆558Jan 31, 2024Updated 2 years ago
f0ng / autoDecoder
View on GitHub
Burp插件，根据自定义来达到对数据包的处理（适用于加解密、爆破等），类似mitmproxy，不同点在于经过了burp中转，在自动加解密的基础上，不影响APP、网站加解密正常逻辑等。
☆1,385Apr 14, 2026Updated last month
lemonlove7 / dirsearch_bypass403
View on GitHub
目录扫描+JS文件中提取URL和子域+403状态绕过+指纹识别
☆876Sep 30, 2025Updated 7 months ago
EdgeSecurityTeam / EHole
View on GitHub
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
☆3,473Apr 2, 2024Updated 2 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
cckuailong / hostscan
View on GitHub
自动化Host碰撞工具，帮助红队快速扩展网络边界，获取更多目标点
☆602Oct 7, 2023Updated 2 years ago
zongdeiqianxing / Autoscanner
View on GitHub
输入域名>爆破子域名>扫描子域名端口>发现扫描web服务>集成报告的全流程全自动扫描器。集成oneforall、masscan、nmap、dirsearch、crawlergo、xray等工具，另支持cdn识别、网页截图、站点定位；动态识别域名并添加功能、工具超时中断等
☆807Mar 13, 2024Updated 2 years ago
gh0stkey / Web-Fuzzing-Box
View on GitHub
Web Fuzzing Box - Web 模糊测试字典与一些Payloads
☆2,742Mar 23, 2026Updated 2 months ago
Bohemiana / behinder_erkai
View on GitHub
☆22Jan 29, 2026Updated 3 months ago
shuanx / BurpAPIFinder
View on GitHub
攻防演练过程中，我们通常会用浏览器访问一些资产，但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等，该插件能让我们发现未授权/敏感信息/越权/登陆接口等。
☆1,409Oct 3, 2024Updated last year
achuna33 / MYJNDIExploit
View on GitHub
自己的JNDI 利用工具，添加一些人性化功能
☆132Sep 4, 2022Updated 3 years ago
carl1l / f403
View on GitHub
用于渗透测试中对40x页面进行bypass并发扫描,采用go编写
☆261Mar 25, 2023Updated 3 years ago
Mr-xn / subdomain_shell
View on GitHub
一键调用subfinder+ksubdomain+httpx 强强联合从域名发现-->域名验证-->获取域名标题、状态码以及响应大小最后保存结果,简化重复操作命令
☆334Feb 17, 2022Updated 4 years ago
yavolo / Nemesis
View on GitHub
URL scanner for recon, vulnerabilities, secrets and more!
☆12Sep 27, 2021Updated 4 years ago
Deploy on Railway without the complexity - Free Credits Offer • Ad
Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
p1ckzi / CVE-2022-22965
View on GitHub
spring4shell | CVE-2022-22965
☆23Jun 30, 2022Updated 3 years ago
xz-zone / Webpackfind
View on GitHub
Webpack自动化信息收集
☆312Feb 20, 2023Updated 3 years ago
raspberryhusky / lazyfinder
View on GitHub
快速遍历目标目录中所有指定后缀文件中包含的敏感信息
☆139May 15, 2026Updated last week
Whoopsunix / nacosScan
View on GitHub
nacos api bypass & jwt bypass & get all configs
☆41Aug 9, 2023Updated 2 years ago
rouze-d / pocsuite3-pocs
View on GitHub
Simple Some POCs for Pocsuite3
☆25Jan 7, 2021Updated 5 years ago
ttstormxx / jjjjjjjjjjjjjs
View on GitHub
爬网站JS文件，自动fuzz api接口，指定api接口（针对前后端分离项目，可指定后端接口地址），回显api响应
☆759Jul 20, 2023Updated 2 years ago
whwlsfb / SpringSpider
View on GitHub
Spring Actuator端点的BurpSuite被动扫描插件。
☆202Nov 2, 2022Updated 3 years ago
iamHuFei / HVVault
View on GitHub
梳理【护网高利用率POC】并集成Nuclei模板仓库，针对解决网上同一资产漏洞一键检测工具参次不齐问题。
☆578Mar 21, 2024Updated 2 years ago
zongdeiqianxing / hscan
View on GitHub
集成crawlergo、xray、dirsearch、nmap等工具的src漏洞挖掘工具，使用docker封装运行；使用oneforall自动遍历子域名并扫描；
☆114Feb 23, 2021Updated 5 years ago
Open source password manager - Proton Pass • Ad
Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
madneal / sec-dog
View on GitHub
☆17Dec 1, 2022Updated 3 years ago
DroidKali / AutoHackTools
View on GitHub
一站式自动下载部署常用安全工具小脚本.
☆19Jun 6, 2023Updated 2 years ago
Throokie / MmpScan
View on GitHub
一个自动挖掘漏洞的框架，日后会发展成强大的信息收集+漏洞挖掘脚本！
☆26May 27, 2022Updated 3 years ago
depycode / burpsuite_hack
View on GitHub
一款代理扫描器
☆566May 5, 2023Updated 3 years ago
J0o1ey / BountyHunterInChina
View on GitHub
重生之我在安全行业讨口子系列，分享在安全行业讨口子过程中，SRC、项目实战的有趣案例
☆1,138Mar 31, 2026Updated last month
EASY233 / BpScan
View on GitHub
一款用于辅助渗透测试工程师日常渗透测试的Burp被动漏扫插件
☆241Nov 25, 2022Updated 3 years ago
Ghr07h / Heimdallr
View on GitHub
一款完全被动监听的谷歌插件，用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗
☆1,669Jan 19, 2023Updated 3 years ago