xgit01/sgkrank

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/xgit01/sgkrank)

xgit01 / sgkrank

2026最新免费社工库排行

☆3,048

Alternatives and similar repositories for sgkrank

Users that are interested in sgkrank are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

wwwwho / SGK_Sites_and_Bots
View on GitHub
免费在线社工库、Telegram社工库合集
☆114May 16, 2026Updated last week
Conan924 / GodInfo
View on GitHub
GodInfo 是一个功能全面的后渗透信息和凭据收集工具，旨在帮助安全测试人员在获得授权访问权限后，快速收集目标系统的信息和凭据。
☆254Apr 29, 2025Updated last year
eeeeeeeeee-code / e0e1-config
View on GitHub
综合后渗透方面的杂烩
☆588Mar 1, 2026Updated 2 months ago
ekkoo-z / Z-Godzilla_ekp
View on GitHub
哥斯拉webshell管理工具二次开发规避流量检测设备
☆1,061Dec 2, 2025Updated 5 months ago
T3nk0 / Upload_Auto_Fuzz
View on GitHub
一个用于测试文件上传功能安全性的 Burp Suite 插件。通过 Intruder 模块自动生成各类绕过 payload，覆盖常见的文件上传限制场景。共1000+条payload
☆603Dec 24, 2025Updated 4 months ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
eeeeeeeeee-code / POC
View on GitHub
备份的漏洞库，3月开始我们来维护
☆1,978Mar 31, 2026Updated last month
abc123info / EquationToolsGUI
View on GitHub
本程序为美国NSA的方程式工具包图形界面版，由ABC_123于2017年开始编写，仅用来扫描和验证MS17-010、MS09-050、MS08-067漏洞，并可协助管理员修复系统漏洞。
☆552Jul 12, 2025Updated 10 months ago
Wileysec / nacos_derby_rce
View on GitHub
Nacos Derby命令执行漏洞利用脚本
☆152Apr 7, 2025Updated last year
shuanx / BurpAPIFinder
View on GitHub
攻防演练过程中，我们通常会用浏览器访问一些资产，但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等，该插件能让我们发现未授权/敏感信息/越权/登陆接口等。
☆1,402Oct 3, 2024Updated last year
xiaogang000 / XG_NTAI
View on GitHub
用于Webshell木马免杀、流量加密传输，多多支持star
☆1,048Jun 27, 2025Updated 10 months ago
SleepingBag945 / dddd
View on GitHub
dddd是一款使用简单的批量信息收集,供应链漏洞探测工具，旨在优化红队工作流，减少伤肝的机械性操作。支持从Hunter、Fofa批量拉取目标
☆1,879Aug 2, 2024Updated last year
SexyBeast233 / SecDictionary
View on GitHub
实战沉淀字典
☆1,553Mar 17, 2026Updated 2 months ago
ReaJason / MemShellParty
View on GitHub
一款专注于 Java 主流 Web 中间件的内存马快速生成工具，致力于简化安全研究人员和红队成员的工作流程，提升攻防效率
☆1,465Apr 26, 2026Updated 3 weeks ago
pureqh / Hyacinth
View on GitHub
一款java漏洞集合工具
☆1,120Jan 13, 2026Updated 4 months ago
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
howmp / reality
View on GitHub
grs内网穿透工具通过reality协议隐藏特征
☆611Dec 4, 2025Updated 5 months ago
wh1t3zer / SpringBootVul-GUI
View on GitHub
一个半自动化springboot打点工具，内置目前springboot所有漏洞
☆780Sep 30, 2025Updated 7 months ago
whwlsfb / ViewState-Cracker
View on GitHub
ASP.net ViewState密钥被动扫描爆破BurpSuite插件
☆228Nov 14, 2025Updated 6 months ago
pen4uin / java-memshell-generator
View on GitHub
一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
☆2,191Aug 21, 2025Updated 9 months ago
wafinfo / DecryptTools
View on GitHub
DecryptTools-综合解密
☆1,322Mar 2, 2025Updated last year
chainreactors / gogo
View on GitHub
面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams
☆2,062Updated this week
0ofo / Deswing
View on GitHub
图形化Java反序列化利用工具，集成Ysoserial
☆362May 8, 2024Updated 2 years ago
wgpsec / lc
View on GitHub
LC（List Cloud）是一个多云攻击面资产梳理工具
☆641Oct 6, 2024Updated last year
KimJun1010 / WeblogicTool
View on GitHub
WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
☆1,786Nov 1, 2023Updated 2 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
SwagXz / encrypt-labs
View on GitHub
前端加密对抗练习靶场，包含非对称加密、对称加密、加签以及禁止重放的测试场景，比如AES、DES、RSA，用于渗透测试练习
☆566Jun 17, 2025Updated 11 months ago
wgpsec / ENScan_GO
View on GitHub
一款基于各大企业信息API的工具，解决在遇到的各种针对国内企业信息收集难题。一键收集控股公司ICP备案、APP、小程序、微信公众号等信息聚合导出。支持MCP接入
☆4,393Mar 30, 2026Updated last month
outlaws-bai / Galaxy
View on GitHub
一个想让你测试加密流量像测试明文一样简单高效的 Burp 插件。 A Burp plugin that makes testing encrypted traffic as simple and efficient as testing plaintext.
☆1,081Mar 27, 2026Updated last month
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,473Apr 25, 2024Updated 2 years ago
DeEpinGh0st / MDUT-Extend-Release
View on GitHub
MDUT-Extend(扩展版本)
☆923Mar 27, 2026Updated last month
wgpsec / cloudsword
View on GitHub
一款帮助云租户发现和测试云上风险、增强云上防护能力的综合性开源工具
☆604Feb 3, 2026Updated 3 months ago
whwlsfb / JDumpSpider
View on GitHub
HeapDump敏感信息提取工具
☆1,657Dec 15, 2025Updated 5 months ago
R4gd0ll / I-Wanna-Get-All
View on GitHub
综合漏洞后渗透利用工具
☆1,729Dec 11, 2025Updated 5 months ago
TFour123 / Webpack_Insight
View on GitHub
用于提取Webpack打包的未加载的JavaScript文件，并扫描这些文件以查找敏感信息。
☆40Sep 17, 2025Updated 8 months ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
Lotus6 / JavaGadgetGenerator
View on GitHub
JavaGadgetGenerator 工具，支持 ysoserial，Hessian，字节码，Expr/SSTI，Shiro，JDBC 等 Gadget 生成，封装，混淆，出网延迟探测，内存马注入等...
☆569Apr 3, 2026Updated last month
0x727 / BypassPro
View on GitHub
对Auth/Waf 自动化bypass的burpsuite插件
☆1,241May 10, 2026Updated last week
DeEpinGh0st / JDumpSpiderGUI
View on GitHub
JDumpSpiderGUI 是一个用于 Java 堆转储文件分析的工具，支持命令行和 JavaFX 图形界面两种模式。该工具主要是在原工具上添加了图形化的界面
☆160May 5, 2025Updated last year
namonakibito / SGK.choice
View on GitHub
🕵️‍♂️整理一些可用的社工库
☆63Mar 29, 2026Updated last month
cseroad / Exp-Tools
View on GitHub
一款集成高危漏洞exp的实用性工具
☆1,309Nov 6, 2024Updated last year
whgojp / JavaSecLab
View on GitHub
JavaSecLab is a comprehensive Java vulnerability platform｜ JavaSecLab是一款综合型Java漏洞平台，提供相关漏洞缺陷代码、修复代码、漏洞场景、审计SINK点、安全编码规范，覆盖多种漏洞场景，友好用户交互U…
☆836Mar 23, 2025Updated last year
m-sec-org / EZ
View on GitHub
EZ是一款集信息收集、端口扫描、服务暴破、URL爬虫、指纹识别、被动扫描为一体的跨平台漏洞扫描器。
☆1,043Jan 17, 2025Updated last year