smxiazi/xia_Liao external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

smxiazi/xia_Liao

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/smxiazi/xia_Liao)

Close

smxiazi / xia_LiaoView on GitHubMore

• External links
• Readme badge

xia Liao（瞎料）burp插件 用于Windows在线进程/杀软识别 与 web渗透注册时，快速生成需要的资料用来填写，资料包含：姓名、手机号、身份证、统一社会信用代码、组织机构代码、银行卡，以及各类web语言的hello world输出和生成弱口令字典等。

☆769Jul 9, 2024Updated last year

Alternatives and similar repositories for xia_Liao

Users that are interested in xia_Liao are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• smxiazi / xia_Yue

  View on GitHub
  burp 插件 xia_Yue（瞎越） 主要用于测试越权、未授权
  ☆696Aug 27, 2024Updated last year
• smxiazi / xia_sql

  View on GitHub
  xia SQL (瞎注) burp 插件 ，在每个参数后面填加一个单引号，两个单引号，一个简单的判断注入小插件。
  ☆1,274May 18, 2023Updated 3 years ago
• Tsojan / TsojanScan

  View on GitHub
  An integrated BurpSuite vulnerability detection plug-in.
  ☆1,511Jan 29, 2026Updated 4 months ago
• F6JO / RouteVulScan

  View on GitHub
  Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
  ☆1,324Jun 29, 2024Updated last year
• whwlsfb / JDumpSpider

  View on GitHub
  HeapDump敏感信息提取工具
  ☆1,660Dec 15, 2025Updated 5 months ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• pykiller / API-T00L

  View on GitHub
  互联网厂商API利用工具。
  ☆573Sep 13, 2024Updated last year
• KimJun1010 / WeblogicTool

  View on GitHub
  WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
  ☆1,791Nov 1, 2023Updated 2 years ago
• 0x727 / BypassPro

  View on GitHub
  对Auth/Waf 自动化bypass的burpsuite插件
  ☆1,273May 10, 2026Updated last month
• Schira4396 / VcenterKiller

  View on GitHub
  一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
  ☆1,475Apr 25, 2024Updated 2 years ago
• f0ng / autoDecoder

  View on GitHub
  Burp插件，根据自定义来达到对数据包的处理（适用于加解密、爆破等），类似mitmproxy，不同点在于经过了burp中转，在自动加解密的基础上，不影响APP、网站加解密正常逻辑等。
  ☆1,404Apr 14, 2026Updated 2 months ago
• shuanx / BurpAPIFinder

  View on GitHub
  攻防演练过程中，我们通常会用浏览器访问一些资产，但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等，该插件能让我们发现未授权/敏感信息/越权/登陆接口等。
  ☆1,437Oct 3, 2024Updated last year
• a1phaboy / FastjsonScan

  View on GitHub
  Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
  ☆1,057Oct 7, 2022Updated 3 years ago
• vaycore / OneScan

  View on GitHub
  OneScan 是一款用于递归目录扫描的 BurpSuite 插件
  ☆1,251Jun 24, 2025Updated 11 months ago
• SummerSec / ShiroAttack2

  View on GitHub
  shiro反序列化漏洞综合利用（仅限授权测试使用）
  ☆2,551Jun 4, 2026Updated last week
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• API-Security / APIKit

  View on GitHub
  APIKit：Discovery, Scan and Audit APIs Toolkit All In One.
  ☆2,270Apr 2, 2024Updated 2 years ago
• f0ng / log4j2burpscanner

  View on GitHub
  CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks
  ☆844Jun 13, 2023Updated 3 years ago
• gh0stkey / HaE

  View on GitHub
  HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations. 赋能白帽，高效作战！
  ☆4,218Updated this week
• metaStor / SpringScan

  View on GitHub
  SpringScan 漏洞检测 Burp插件
  ☆607Nov 14, 2023Updated 2 years ago
• Lotus6 / AutoRepeater

  View on GitHub
  Burp插件，自动化挖掘SSRF，Redirect，Sqli漏洞，自定义匹配参数
  ☆480Sep 10, 2023Updated 2 years ago
• White-hua / Apt_t00ls

  View on GitHub
  高危漏洞利用工具
  ☆1,832Feb 12, 2025Updated last year
• Ghr07h / Heimdallr

  View on GitHub
  一款完全被动监听的谷歌插件，用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗
  ☆1,675Jan 19, 2023Updated 3 years ago
• UzJu / Cloud-Bucket-Leak-Detection-Tools

  View on GitHub
  六大云存储，泄露利用检测工具
  ☆1,258Mar 28, 2025Updated last year
• wyzxxz / heapdump_tool

  View on GitHub
  heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等
  ☆1,447May 21, 2024Updated 2 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• dark-kingA / superSearchPlus

  View on GitHub
  superSearchPlus是聚合型信息收集插件，支持综合查询，资产测绘查询，信息收集 敏感信息提取 js资源扫描 目录扫描 vue组件扫描 整合了目前常见的资产测绘平台 专为白帽子提供快速侦测目标。
  ☆1,440Dec 16, 2024Updated last year
• pureqh / Hyacinth

  View on GitHub
  一款java漏洞集合工具
  ☆1,127Jan 13, 2026Updated 5 months ago
• cseroad / Webshell_Generate

  View on GitHub
  用于生成各类免杀webshell
  ☆1,307Jan 8, 2026Updated 5 months ago
• savior-only / Spring_All_Reachable

  View on GitHub
  Spring漏洞综合利用工具
  ☆676Jul 5, 2023Updated 2 years ago
• outlaws-bai / Galaxy

  View on GitHub
  一个想让你测试加密流量像测试明文一样简单高效的 Burp 插件。 A Burp plugin that makes testing encrypted traffic as simple and efficient as testing plaintext.
  ☆1,084Mar 27, 2026Updated 2 months ago
• lijiejie / swagger-exp

  View on GitHub
  A Swagger API Exploit
  ☆1,379Jun 7, 2024Updated 2 years ago
• shmilylty / netspy

  View on GitHub
  netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
  ☆2,219Jul 25, 2023Updated 2 years ago
• 1n7erface / Template

  View on GitHub
  Next generation RedTeam heuristic intranet scanning | 下一代RedTeam启发式内网扫描
  ☆1,121Sep 16, 2023Updated 2 years ago
• rtcatc / Packer-Fuzzer

  View on GitHub
  Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…
  ☆3,241May 24, 2024Updated 2 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• f0ng / captcha-killer-modified

  View on GitHub
  captcha-killer的修改版，支持关键词识别base64编码的图片，添加免费ocr库，用于验证码爆破，适配新版Burpsuite
  ☆1,932Aug 26, 2025Updated 9 months ago
• cseroad / Exp-Tools

  View on GitHub
  一款集成高危漏洞exp的实用性工具
  ☆1,314Nov 6, 2024Updated last year
• smxiazi / NEW_xp_CAPTCHA

  View on GitHub
  xp_CAPTCHA(瞎跑 白嫖版) burp 验证码 识别 burp插件
  ☆1,044Oct 11, 2024Updated last year
• LittleBear4 / OA-EXPTOOL

  View on GitHub
  OA综合利用工具，集合将近20款OA漏洞批量扫描
  ☆1,344Oct 28, 2023Updated 2 years ago
• ttstormxx / jjjjjjjjjjjjjs

  View on GitHub
  爬网站JS文件，自动fuzz api接口，指定api接口（针对前后端分离项目，可指定后端接口地址），回显api响应
  ☆761Jul 20, 2023Updated 2 years ago
• achuna33 / MYExploit

  View on GitHub
  OAExploit一款基于产品的一键扫描工具。
  ☆1,485Sep 20, 2022Updated 3 years ago
• R4gd0ll / I-Wanna-Get-All

  View on GitHub
  综合漏洞后渗透利用工具
  ☆1,754Dec 11, 2025Updated 6 months ago