sh0ve1
Follow
Starred repositories
Learn RegEx step by step, from zero to advanced.
ShellCheck, a static analysis tool for shell scripts
Getting started with java code auditing 代码审计入门的小项目
一份通俗易懂、风趣幽默的Java学习指南,内容涵盖Java基础、Java并发编程、Java虚拟机、Java企业级开发、Java面试等核心知识点。学Java,就认准二哥的Java进阶之路😄
Java web common vulnerabilities and security code which is base on springboot and spring security
Burp Bounty (Scan Check Builder in BApp Store) is a extension of Burp Suite that allows you, in a quick and simple way, to improve the active and passive scanner by means of personalized rules thro…
Utilize misconfigured DNS and old database records to find hidden IP's behind the CloudFlare network
The Browser Exploitation Framework Project
OWASP based Web Application Security Testing Checklist is an Excel based checklist which helps you to track the status of completed and pending test cases.
Find, verify, and analyze leaked credentials
Custom bash scripts used to automate various penetration testing tasks including recon, scanning, enumeration, and malicious payload creation using Metasploit. For use with Kali Linux.
⚡ Perform subdomain enumeration using the certificate transparency logs from Censys.
图解计算机网络、操作系统、计算机组成、数据库,共 1000 张图 + 50 万字,破除晦涩难懂的计算机基础知识,让天下没有难懂的八股文!🚀 在线阅读:https://xiaolincoding.com
这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。
A .DS_Store file disclosure exploit. It parses .DS_Store file and downloads files recursively.
🔍 gowitness - a golang, web screenshot utility using Chrome Headless
🚀 A simple asset discovery engine for cybersecurity. (网络资产发现引擎)
一个基于网络空间搜索引擎的攻击面管理平台,可定时进行资产信息爬取,及时发现新增资产,本项目聚合了 Fofa、Hunter、Quake、Zoomeye 和 Threatbook 的数据源,并对获取到的数据进行去重与清洗
自动化监控赏金项目-定期收集资产,漏洞进行推送(现在可以稳定收菜,有问题issues我)-关注-夜安团队SEC-加我微信进群可下载最新自动化版本,git目前不会更新了,群里目前版本1.3.1,项目优化了非常多,功能也加入了非常多,建议进群(没收费项目放心白嫖)
This repository contains all the supplement material for the book "The art of sub-domain enumeration"
