scopion/security_test_guide external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

scopion/security_test_guide

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/scopion/security_test_guide)

Close

scopion / security_test_guideView on GitHubMore

• External links
• Readme badge

安全测试导论

☆92Sep 1, 2023Updated 2 years ago

Alternatives and similar repositories for security_test_guide

Users that are interested in security_test_guide are comparing it to the libraries listed below

• scopion / dic

  View on GitHub
  渗透字典，框架信息泄露，备份文件泄露，配置文件泄露。字典
  ☆188May 11, 2023Updated 2 years ago
• pmiaowu / DeserializationTest

  View on GitHub
  就是一个练习Java反序列化的最简单环境
  ☆15Dec 24, 2021Updated 4 years ago
• ffffffff0x / AboutSecurity

  View on GitHub
  Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.
  ☆1,075Jan 9, 2023Updated 3 years ago
• weujieytt / HostHeaderAttack

  View on GitHub
  检测host头攻击的Burpsuite被动扫描插件，Burpsuite passive scanning plugin responsible for detecting host header attack
  ☆11Apr 28, 2023Updated 2 years ago
• tpt11fb / AttackTomcat

  View on GitHub
  Tomcat常见漏洞GUI利用工具。CVE-2017-12615 PUT文件上传漏洞、tomcat-pass-getshell 弱认证部署war包、弱口令爆破、CVE-2020-1938 Tomcat AJP文件读取/包含
  ☆250Nov 15, 2022Updated 3 years ago
• binganao / TaiO

  View on GitHub
  TaiO 的定位是一款用于攻击方对靶标资产梳理，快速定位脆弱资产的网络空间测绘工具
  ☆75Mar 9, 2022Updated 4 years ago
• Ggasdfg321 / SmallProxyPool

  View on GitHub
  一个免费高质量的小代理池，解决一些站点有WAF的情况下，进行目录扫描或者字典爆破
  ☆274Feb 21, 2023Updated 3 years ago
• ffffffff0x / burp_nu_te_gen

  View on GitHub
  nuclei模版生成插件
  ☆108Dec 19, 2023Updated 2 years ago
• Ryze-T / CNVD-2022-10270-LPE

  View on GitHub
  基于向日葵RCE的本地权限提升，无需指定端口
  ☆210Feb 24, 2022Updated 4 years ago
• yaunsky / passToJs

  View on GitHub
  爆破js加密的后台登陆；JS加密；爆破密码；PyExecJS
  ☆55Jan 20, 2021Updated 5 years ago
• x1a0t / Struts2Burp

  View on GitHub
  ☆101Jun 18, 2021Updated 4 years ago
• li8u99 / Seeyon_exp_plus

  View on GitHub
  seeyon致远OA全漏洞检测与利用
  ☆58Apr 11, 2022Updated 3 years ago
• HoAd-sc / R-dict

  View on GitHub
  一些自己常用的渗透字典
  ☆230Aug 19, 2022Updated 3 years ago
• safe6Sec / PentestNote

  View on GitHub
  一些渗透姿势记录
  ☆499Nov 3, 2021Updated 4 years ago
• amaz1ngday / fastjson-exp

  View on GitHub
  fastjson利用，支持tomcat、spring回显，哥斯拉内存马；回显利用链为dhcp、ibatis、c3p0。
  ☆326Mar 15, 2022Updated 3 years ago
• a1phaboy / JsonDetect

  View on GitHub
  A burp Extender to detect json, include fastjson,jackson,gson
  ☆45Sep 22, 2022Updated 3 years ago
• west9b / Weaver-Eoffice-getshell

  View on GitHub
  泛微 eoffice10 前台 getshell
  ☆59Aug 22, 2022Updated 3 years ago
• dongfangyuxiao / BurpExtend

  View on GitHub
  基于Burp插件开发打造渗透测试自动化
  ☆422Dec 7, 2021Updated 4 years ago
• j2ekim / YonyouNC_Tip

  View on GitHub
  ☆168May 30, 2022Updated 3 years ago
• JKme / cube

  View on GitHub
  内网渗透测试工具，弱密码爆破、信息收集和漏洞扫描
  ☆609Jan 31, 2024Updated 2 years ago
• Bouquets-ai / BUG-Pocket

  View on GitHub
  小型漏洞库，提供FOFA语法及批量脚本，具体利用法请参考别的漏洞库，共4种类型47项
  ☆97Jul 31, 2021Updated 4 years ago
• jas502n / SweetPotato-webshell

  View on GitHub
  SweetPotato修改版，用于webshell下执行命令
  ☆13Nov 22, 2020Updated 5 years ago
• aw220 / InOne

  View on GitHub
  一个BurpSuite插件，想法是简化日常挖洞流程
  ☆14Jun 28, 2022Updated 3 years ago
• ffffffff0x / 403-fuzz

  View on GitHub
  针对 403 页面的 fuzz 脚本
  ☆123Feb 14, 2022Updated 4 years ago
• f0ng / autoDecoder

  View on GitHub
  Burp插件，根据自定义来达到对数据包的处理（适用于加解密、爆破等），类似mitmproxy，不同点在于经过了burp中转，在自动加解密的基础上，不影响APP、网站加解密正常逻辑等。
  ☆1,330Dec 14, 2025Updated 2 months ago
• 7hang / --Java

  View on GitHub
  代码审计知识点整理-Java
  ☆529Jun 15, 2020Updated 5 years ago
• ffffffff0x / f8x

  View on GitHub
  红/蓝队环境自动化部署工具 | Red/Blue team environment automation deployment tool
  ☆2,089Updated this week
• Liqunkit / LiqunShield

  View on GitHub
  下架
  ☆141Jan 21, 2022Updated 4 years ago
• ffffffff0x / name-fuzz

  View on GitHub
  针对目标已知信息的字典生成工具
  ☆209Sep 21, 2022Updated 3 years ago
• Al1ex / Alibab-Nacos-Unauthorized-Login

  View on GitHub
  Alibab Nacos Unauthorized Login
  ☆14Mar 16, 2023Updated 2 years ago
• UzJu / Cloud-Bucket-Leak-Detection-Tools

  View on GitHub
  六大云存储，泄露利用检测工具
  ☆1,243Mar 28, 2025Updated 11 months ago
• EASY233 / BpScan

  View on GitHub
  一款用于辅助渗透测试工程师日常渗透测试的Burp被动漏扫插件
  ☆241Nov 25, 2022Updated 3 years ago
• jas502n / FinalShellDecodePass

  View on GitHub
  FinalShellDecodePass 加密解密
  ☆83Dec 1, 2021Updated 4 years ago
• yuyan-sec / druid_sessions

  View on GitHub
  获取 alibaba druid 一些 sessions , sql , urls
  ☆300Apr 4, 2025Updated 11 months ago
• luckyfuture0177 / ReZeroBypassAV

  View on GitHub
  从零开始学免杀
  ☆439Mar 30, 2022Updated 3 years ago
• yuanhaiGreg / Fuzz-Dict

  View on GitHub
  一些常见字典
  ☆174Aug 19, 2021Updated 4 years ago
• z2p / sweetPotato

  View on GitHub
  基于burpsuite的资产分析工具
  ☆475Apr 29, 2023Updated 2 years ago
• fengya0 / bypassAV

  View on GitHub
  绕过360、火绒等安全设备拦截添加用户
  ☆15Feb 15, 2022Updated 4 years ago
• ybdt / post-hub

  View on GitHub
  Lateral movement
  ☆943Feb 28, 2026Updated last week