🚀 Enterprise-grade Distributed Asset & Vulnerability Scanner. Features: Port Scanning, Subdomain Brute-force, Fingerprinting, and PoC Detection. Built on Go-Zero & Vue3. 高性能分布式网络资产扫描平台 (端口/子域名/指纹/漏扫)---------------------------------点击下面URL获取高级POC
☆278Apr 8, 2026Updated this week
Alternatives and similar repositories for cscan
Users that are interested in cscan are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 互联网资产综合扫描/攻击面测绘☆600Feb 11, 2026Updated 2 months ago
- 渗透测试Payload速查平台 | Pentest Payload Quick Reference | XSS/SQLi/SSRF/RCE | React+TypeScript☆319Mar 11, 2026Updated last month
- Rinte是一款专为渗透测试人员设计的 BurpSuite 插件,提供强大的框架自动化安全扫描功能。目前支持1000+POC☆75Jan 8, 2026Updated 3 months ago
- 二开xiasql☆57Jan 8, 2026Updated 3 months ago
- Java命令行文件监控小工具(代码审计)☆105Nov 29, 2021Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- 辅助甲方安全人员巡检网站资产,发现并分析API安全问题☆524Jan 20, 2025Updated last year
- Burp插件,快速探测可能存在SQL注入的请求并标记,提高测试效率☆774Feb 26, 2026Updated last month
- ScopeSentry-Cyberspace mapping, subdomain enumeration, port scanning, sensitive information discovery, vulnerability scanning, distribute…☆1,483Apr 1, 2026Updated last week
- Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)☆113Feb 24, 2023Updated 3 years ago
- netspy是一款快速探测内网可达网段工具(深信服深蓝实验室天威战队强力驱动)☆2,214Jul 25, 2023Updated 2 years ago
- JavaGadgetGenerator 工具,支持 ysoserial,Hessian,字节码,Expr/SSTI,Shiro,JDBC 等 Gadget 生成,封装,混淆,出网延迟探测,内存马注入等...☆560Apr 3, 2026Updated last week
- Open-source attack surface management and authorized security automation platform for asset discovery, service probing, scan orchestratio…☆515Mar 8, 2026Updated last month
- 存储桶遍历漏洞利用工具☆424Jul 25, 2024Updated last year
- 最好用最智能最可控的目录Fuzz工具 | The most powerful, user-friendly, intelligent, and precise HTTP Fuzzer.☆1,007Mar 6, 2026Updated last month
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- API接口管理工具(目前内置微信公众号、微信小程序、企业微信、飞书、钉钉等)☆759Oct 15, 2024Updated last year
- 一个用于测试文件上传功能安全性的 Burp Suite 插件。通过 Intruder 模块自动生成各类绕过 payload�,覆盖常见的文件上传限制场景。共1000+条payload☆582Dec 24, 2025Updated 3 months ago
- G-DeZender的限制解除版本,可以批量解密php文件。☆11Oct 22, 2024Updated last year
- MDUT-Extend(扩展版本)☆907Mar 27, 2026Updated 2 weeks ago
- 网络空间资产测绘、ICP备案、天眼查股权结构图、端口扫描、指纹识别、小程序敏感信息提取。☆1,267Apr 2, 2026Updated last week
- ☆14Dec 8, 2022Updated 3 years ago
- ☆11Nov 17, 2024Updated last year
- 面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams☆2,041Feb 3, 2026Updated 2 months ago
- 适用于某EHR&HRM的加解密工具,可直接用于sqlmap☆25Jan 14, 2024Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Parsing 是一个 Chrome 插件,选择ai分析当前页面的Js代码,内置提示词,不再需要单拎js。以及信息收集功能,提升渗透测试效率。☆56Jan 28, 2026Updated 2 months ago
- LC(List Cloud)是一个多云攻击面资产梳理工具☆640Oct 6, 2024Updated last year
- 让"WAF绕过"变得简单☆433Jan 26, 2025Updated last year
- 一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webs…☆1,473Apr 25, 2024Updated last year
- 帆软bi反序列化漏洞利用工具☆418Jan 25, 2025Updated last year
- The first Computer Emergency Response (ARK) Tools for young people ;) 年轻人的第一款应急响应(ARK)工具 ;)☆671Oct 21, 2025Updated 5 months ago
- xss漏洞挖掘插件☆37Feb 6, 2025Updated last year
- Supernova 的中文版和扩展了一些加密方式(ROT, XOR, RC4, AES, CHACHA20, B64XOR, B64RC4, B64AES, B64CHACHA20)☆55Mar 1, 2024Updated 2 years ago
- 一个基于 AI 驱动的 Burp Suite 渗透测试辅助插件,旨在利用大语言模型(LLM)的上下文理解能力,为复杂的 HTTP 请求自动生成针对性的 Fuzz 字典。☆37Jan 19, 2026Updated 2 months ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。☆1,363Mar 20, 2026Updated 3 weeks ago
- A Swagger API Exploit☆1,372Jun 7, 2024Updated last year
- GoAttack 是一款运用Go语言作为后端和Vue 3作为前端开发的现代化网络安全扫描分析平台。它被设计用于对标商业级漏洞扫描器,并提供一系列包括主机探测、端点梳理、资产测绘、漏扫POC验证和自动报告等多位一体的安全分析能力。旨在为安全工程师、红蓝渗透测试人员及安全运维管…☆60Updated this week
- 一些jar包相关的漏洞☆26Sep 24, 2024Updated last year
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆509Jan 12, 2026Updated 3 months ago
- A list for Web Security and Code Audit☆1,229Dec 3, 2024Updated last year
- 一键提取exe的图标、嵌入图标、资源信息、版本信息、修改时间、数字签名,降低程序熵值☆433Dec 17, 2024Updated last year