简化前期信息收集的繁重任务，协助红队人员快速的信息收集，达到一条龙的效果

SubDominator helps you discover subdomains associated with a target domain efficiently and with minimal impact for your Bug Bounty

VenomRAT-HVNC 5.6, this is the latest version with a working HVNC module !

R.I.P. MrAnon/MrAnonTools/MrAnon666. This is an updated release for all kids who got scammed/ghosted by gentleman mentioned above. Have fun! ^^

The OpenBullet web testing application.

红队 C2 框架，使用 No X Loader 技术。Red Team C2 Framework, using No X Loader technology.

ParadoxiaRat : Native Windows Remote access Tool.

FofaMap是一款基于Python3开发的跨平台FOFA API数据采集器，支持普通查询、网站存活检测、统计聚合查询、Host聚合查询、网站图标查询、批量查询等查询功能。同时FofaMap还能够自定义查询FOFA数据，并根据查询结果自动去重和筛选关键字，生成对应的Excel表格。另外春节特别版还可以调用Nuclei对FofaMap查询出来的目标进行漏洞扫描，让你在挖洞路上快人一步。

go写的协程版的ssh\redis\mongodb弱口令破解工具

A white box code scan powered by ChatGPT

一款综合性网络安全检测和运维工具，旨在快速资产发现、识别、检测，构建基础资产信息库，协助甲方安全团队或者安全运维人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities

本项目集成了全网优秀的攻防武器工具项目，包含自动化利用，子域名、目录扫描、端口扫描等信息收集工具，各大中间件、cms、OA漏洞利用工具，爆破工具、内网横向、免杀、社工钓鱼以及应急响应、甲方安全资料等其他安全攻防资料。

A Flask-based HTTP(S) command and control (C2) framework with a web interface. Custom Windows EXE/DLL implants written in C++. For educational use only.

A socksv5 proxy tool Written by CLang. 一款纯C实现的基于socks5协议的轻量内网穿透工具，支持ew的全部数据转发方式，支持跨平台使用

BackdoorSim: An Educational into Remote Administration Tools

webshell manager libraries | 网站管理工具

CobaltStrike External C2 for Websockets

A collaborative, multi-platform, red teaming framework

事件驱动的渗透测试扫描器 Event-driven pentest scanner

猫蛋儿安全团队编写的poc能报就能打。企业微信、海康、Metabase、Openfire、泛微OA......

frida based script which automates the process of discovering and exploiting DLL Hijacks in target binaries. The discovered binaries can later be weaponized during Red Team Operations to evade AV/E…

PHP DDoS/Stress Test

🚀Komo, a comprehensive asset collection and vulnerability scanning tool. Komo 一个综合资产收集和漏洞扫描工具，集成了20余款工具，通过多种方式对子域进行获取，收集域名邮箱，进行存活探测，域名指纹识别，域名反查ip，ip端口扫描，web服务链接爬取并发送给xray，对web服务进行POC漏洞扫描，对主机进行主机漏洞扫描。

Inference code for Llama models

A multi web security purposes tool

Scan network ips and ports.

A Security Tool for Bug Bounty, Pentest and Red Teaming.

这是一个用于IP和域名碰撞匹配访问的小工具，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go