Chrome 扩展:页面资产梳理 · 技术指纹识别 · Spring/Webpack 探测 · 云存储漏洞扫描 · 实战 Payload 字典。仅限授权安全测试。
☆16Jul 8, 2026Updated this week
Alternatives and similar repositories for StiffEyes
Users that are interested in StiffEyes are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- DBX 数据审计版☆41Updated this week
- 一个专为渗透测试、安全研究员设计的AI 驱动的 Web 加密流量代理解决方案。输入一个目标 URL,即可自动完成从 JS 逆向分析到 mitmproxy 脚本生成的完整流程,实现 Burp Suite 与目标服务器之间的双向透明加解密。☆27Apr 22, 2026Updated 2 months ago
- xxljob-Hessian-Exp 一款XXL-JOB <=2.0.1 Hessian反序列化图形化利用工具,可不出网利用☆36Dec 31, 2024Updated last year
- 常用字典收集☆10Mar 23, 2021Updated 5 years ago
- LeekShell 是一款完全自研的轻量级C2框架,采用 Python + C++ 架构,舍弃部分冗余功能以换取更高的隐蔽性与可控性。☆15Updated this week
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- 一个用于检测HOST 头攻击漏洞的Burp Suite扩展插件。☆13Mar 7, 2025Updated last year
- NextAnti is a browser extension focused on anti-honeypot and anti anti-honeypot techniques, NextAnti 是一款专门用于浏览器反蜜罐反反蜜罐(Anti-Honeypot)的插件,…☆27Jun 22, 2026Updated 3 weeks ago
- Burpsuite验证码DOS攻击插件。☆21Oct 24, 2024Updated last year
- 泛查询漏洞扫描Burp插件☆28Jun 26, 2026Updated 2 weeks ago
- 掘地三尺(DigDeep):覆盖云安全 、小程序、APP、web等常见敏感信息泄露类型,一键挖掘源码中的密码/密钥/手机号/身份证/云服务AK、SK等近百类敏感数据。☆74Apr 12, 2026Updated 3 months ago
- 一款支持 目录扫描(可配合熊猫头)+自动绕403+敏感匹配 等的小脚本工具,目前此脚本属于创始测试版,后续会继续升级!!!CowCow🐂🐂☆17Dec 27, 2024Updated last year
- burpsuit插件,解析swagger/openapi接口文档并进行请求,模拟参数方便渗透测试人员快速发现可用接口 (最新使用源码编译,release有时候没空搞)☆46Oct 23, 2025Updated 8 months ago
- 一款服务器应急响应安全扫描程序(Linux版),在安全检查和被黑后检测有较优效果☆18Mar 27, 2026Updated 3 months ago
- 用于若依和Jeecg数据库中密码的爆破☆22Jul 19, 2025Updated 11 months ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- FastjsonScan,支持版本识别、出网检测、AutoType检测、依赖检测,poc验证等功能☆14Jun 17, 2025Updated last year
- chrome和edge查看exif有效信息的插件☆12Mar 3, 2025Updated last year
- Jsp Decoder Source Code☆16Mar 23, 2021Updated 5 years ago
- RayScan 2.0 — 开箱即用的 Web 漏洞扫描器 | SQLi/XSS/命令注入/LFI/SSRF/XXE/RCE/API安全 | 多引擎聚合(Nuclei/sqlmap/ffuf)+MSF验证链+Profile扫描配置 | CLI+Web UI双模式 | Met…☆27Updated this week
- ☆24Jul 2, 2026Updated last week
- 一个功能强大的浏览器扩展程序,专门用于检测Web系统中的权限越权漏洞,适用于Web渗透测试。☆44Oct 11, 2025Updated 9 months ago
- 基于 Burp Montoya API 开发的全能插件,集成自动化HTTP加解密、高危漏洞扫描(Fastjson/Log4j/Shiro/Spring未授权)与安全工具联动(sqlmap/xray),支持 Burp Collaborator 与 CEYE DNSLog,专为…☆41Jun 11, 2026Updated last month
- URLReplayer是一个burp插件,一个用于自动化 API 接口提取、参数解析及批量验证 的 Burp Suite 插件。旨在从 HTTP 响应中快速挖掘未公开的 API 端点并进行有效 性测试。☆45Jan 15, 2026Updated 5 months ago
- cloud-audit (云安全审计助手)是检测公有云厂商AK/SK泄漏被利用的工具,通过定期调用云平台接口审计日志,基于异常行为/黑特征/基线发现疑似入侵行为。☆43Jun 4, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- AICryptoProxy 是一个基于 Claude Code(https://claude.ai/code) + MCP(https://docs.claude.ai) 的智能渗透测试框架,专为解决前端加密 Web 应用的流量加解密问题而设计。☆49Jun 2, 2026Updated last month
- ☆23Dec 23, 2024Updated last year
- ARL 灯塔的 WIH 利用☆32Jul 2, 2024Updated 2 years ago
- Windows应急响应内存检索工具,支持进程内存扫描+网络外联关联,快速定位恶意进程。Windows Memory Scan Tool for Incident Response, memory forensics, network correlation.☆22Jul 8, 2026Updated last week
- 一个针对业务系统功能的全自动化平台☆55Jun 10, 2026Updated last month
- 开源apk逆向一体化分析工具☆68Feb 7, 2026Updated 5 months ago
- 基于 Y4er/ysoserial 与 marshalsec 的 Java 反序列化利用 GUI 工具,集成 Payload 生成、JNDI Reference、LDAP 反序列化与调用图编辑。☆44May 5, 2026Updated 2 months ago
- 多接口MD5解密PHP版☆15Jan 1, 2025Updated last year
- 补天公益厂商域名列表+python脚本☆23Aug 17, 2022Updated 3 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- ByPassTamperPlus / SQLMap加强绕WAF / Code By:Tas9er☆120Feb 12, 2026Updated 5 months ago
- API Highlighter 是一个用于 BurpSuite 的插件,主要用于 web 应用迭代安全测试时高亮指定的新增接口,该插件最初用 Python 编写,现重构为 Java 版本。☆43Feb 19, 2025Updated last year
- BCEL编解码工具☆16Aug 3, 2022Updated 3 years ago
- 用于提取Webpack打包的未加载的JavaScript文件,并扫描这些文件以查找敏感信息。☆41Sep 17, 2025Updated 9 months ago
- Template injection allows an attacker to include template code into an existant (or not) template. A template engine makes designing HTML…☆13Jan 30, 2020Updated 6 years ago
- Burp插件 TLA Watcher:分为两个模块:流量管理模块、扩展功能模块(脆弱风险检测)☆39Nov 13, 2025Updated 8 months ago
- 面向渗透测试的多跳SOCKS5代理工具☆40Jan 5, 2026Updated 6 months ago