theLSA/CS-checklist external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

theLSA/CS-checklist

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/theLSA/CS-checklist)

Close

theLSA / CS-checklistView on GitHubMore

• External links
• Readme badge

PC客户端（C-S架构）渗透测试checklist / Client side(C-S) penetration checklist

☆663Feb 24, 2021Updated 5 years ago

Alternatives and similar repositories for CS-checklist

Users that are interested in CS-checklist are comparing it to the libraries listed below

• theLSA / hack-cs-tools

  View on GitHub
  client side (C-S) penetration toolkit
  ☆159Dec 5, 2020Updated 5 years ago
• 1120362990 / vulnerability-list

  View on GitHub
  在渗透测试中快速检测常见中间件、组件的高危漏洞。
  ☆728Mar 21, 2022Updated 3 years ago
• Mel0day / RedTeam-BCS

  View on GitHub
  BCS（北京网络安全大会）2019 红队行动会议重点内容
  ☆819Sep 4, 2019Updated 6 years ago
• c0ny1 / chunked-coding-converter

  View on GitHub
  Burp suite 分块传输辅助插件
  ☆2,022Feb 23, 2022Updated 4 years ago
• r0eXpeR / redteam_vul

  View on GitHub
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,522Jul 17, 2021Updated 4 years ago
• DeEpinGh0st / Erebus

  View on GitHub
  CobaltStrike后渗透测试插件
  ☆1,554Oct 28, 2021Updated 4 years ago
• 7dog7 / bottleneckOsmosis

  View on GitHub
  瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf
  ☆717Jul 20, 2022Updated 3 years ago
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,012May 21, 2024Updated last year
• r35tart / Penetration_Testing_Case

  View on GitHub
  用于记录分享一些有趣的案例
  ☆866Jan 10, 2022Updated 4 years ago
• theLSA / emergency-response-checklist

  View on GitHub
  应急响应指南 / emergency response checklist
  ☆708Mar 13, 2020Updated 5 years ago
• LangziFun / LangSrcCurise

  View on GitHub
  SRC子域名资产监控
  ☆1,299Jan 14, 2021Updated 5 years ago
• QAX-A-Team / LuWu

  View on GitHub
  红队基础设施自动化部署工具
  ☆852Jan 4, 2023Updated 3 years ago
• r35tart / RW_Password

  View on GitHub
  此项目用来提取收集以往泄露的密码中符合条件的强弱密码
  ☆1,133Apr 1, 2019Updated 6 years ago
• c0ny1 / FastjsonExploit

  View on GitHub
  Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
  ☆1,389Dec 16, 2022Updated 3 years ago
• opensec-cn / vtest

  View on GitHub
  用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
  ☆866Jul 21, 2019Updated 6 years ago
• uknowsec / Active-Directory-Pentest-Notes

  View on GitHub
  个人域渗透学习笔记
  ☆1,800Feb 7, 2020Updated 6 years ago
• FunnyWolf / pystinger

  View on GitHub
  Bypass firewall for traffic forwarding using webshell
  ☆1,430Sep 29, 2021Updated 4 years ago
• LandGrey / ClassHound

  View on GitHub
  利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
  ☆711May 10, 2021Updated 4 years ago
• ShiHuang-ESec / EHole

  View on GitHub
  EHole(棱洞)-红队重点攻击系统指纹探测工具
  ☆471Jan 27, 2021Updated 5 years ago
• sf197 / GetPwd

  View on GitHub
  用CSharp写的一款信息搜集工具，目前支持Navicat、TeamView、Xshell、SecureCRT产品的密码解密
  ☆251Aug 26, 2020Updated 5 years ago
• c0ny1 / jsEncrypter

  View on GitHub
  一个用于前端加密Fuzz的Burp Suite插件
  ☆1,059Mar 6, 2020Updated 5 years ago
• r0eXpeR / supplier

  View on GitHub
  主流供应商的一些攻击性漏洞汇总
  ☆809Nov 8, 2021Updated 4 years ago
• LandGrey / webshell-detect-bypass

  View on GitHub
  绕过专业工具检测的Webshell研究文章和免杀的Webshell
  ☆1,733Nov 15, 2020Updated 5 years ago
• dr0op / WeblogicScan

  View on GitHub
  增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
  ☆968Jun 16, 2024Updated last year
• feihong-cs / ShiroExploit-Deprecated

  View on GitHub
  Shiro550/Shiro721 一键化利用工具，支持多种回显方式
  ☆1,950Jun 4, 2021Updated 4 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• aleenzz / Cobalt_Strike_wiki

  View on GitHub
  Cobalt Strike系列
  ☆2,411Dec 3, 2023Updated 2 years ago
• grayddq / GScan

  View on GitHub
  本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。
  ☆2,807Aug 7, 2022Updated 3 years ago
• c0ny1 / passive-scan-client

  View on GitHub
  Burp被动扫描流量转发插件
  ☆1,459Jun 17, 2024Updated last year
• boy-hack / wooyun-payload

  View on GitHub
  从wooyun中提取的payload，以及burp插件
  ☆842Jun 17, 2022Updated 3 years ago
• timwhitez / crawlergo_x_XRAY

  View on GitHub
  360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
  ☆1,183Nov 10, 2021Updated 4 years ago
• aleenzz / MYSQL_SQL_BYPASS_WIKI

  View on GitHub
  mysql注入,bypass的一些心得
  ☆1,326Jun 25, 2024Updated last year
• uknowsec / SharpDecryptPwd

  View on GitHub
  对密码已保存在 Windwos 系统上的部分程序进行解析,包括：Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品（Xshell,Xftp)。源码：https://github.com/RowTeam/SharpDecrypt…
  ☆1,260Mar 16, 2022Updated 3 years ago
• TideSec / Decrypt_Weblogic_Password

  View on GitHub
  搜集了市面上绝大部分weblogic解密方式，整理了7种解密weblogic的方法及响应工具。
  ☆833Nov 7, 2023Updated 2 years ago
• Daybr4ak / C2ReverseProxy

  View on GitHub
  一款可以在不出网的环境下进行反向代理及cs上线的工具
  ☆491Apr 26, 2023Updated 2 years ago
• ztosec / secscan-authcheck

  View on GitHub
  越权检测工具
  ☆746Jun 17, 2022Updated 3 years ago
• QAX-A-Team / sharpwmi

  View on GitHub
  sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
  ☆716Aug 3, 2021Updated 4 years ago
• yzddmr6 / webshell-venom

  View on GitHub
  免杀webshell无限生成工具
  ☆1,288Apr 3, 2020Updated 5 years ago
• lengjibo / RedTeamTools

  View on GitHub
  记录自己编写、修改的部分工具
  ☆1,461Oct 19, 2025Updated 4 months ago