lzy11332211 Goto Github PK

kunpeng

kunpeng是一个Golang编写的开源POC框架/库，以动态链接库的形式提供各种语言调用，通过此项目可快速开发漏洞检测类的系统。

lynis

Lynis - Security auditing tool for Linux, macOS, and UNIX-based systems. Assists with compliance testing (HIPAA/ISO27001/PCI DSS) and system hardening. Agentless, and installation optional.

lynis-report-converter

Manageable report from lynis text output, in various formats.

machine-learning-learning-notes

周志华《机器学习》又称西瓜书是一本较为全面的书籍，书中详细介绍了机器学习领域不同类型的算法(例如：监督学习、无监督学习、半监督学习、强化学习、集成降维、特征选择等)，记录了本人在学习过程中的理解思路与扩展知识点，希望对新人阅读西瓜书有所帮助！

mactype

A better font rasterizer for Windows.

macvim

Vim - the text editor - for Mac OS X

metasploit-framework

Metasploit Framework

micro8

mimikatz

A little tool to play with Windows security

mobile-security-framework-mobsf

Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.

modsecurity

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx that is developed by Trustwave's SpiderLabs. It has a robust event-based programming language which provides protection from a range of attacks against web applications and allows for HTTP traffic monitoring, logging and real-time analysis. With over 10,000 deployments world-wide, ModSecurity is the most widely deployed WAF in existence.

mongoaudit

🔥 A powerful MongoDB auditing and pentesting tool 🔥

mooder

Mooder是一款开源、安全、简洁、强大的团队内部知识分享平台。

naxsi

NAXSI is an open-source, high performance, low rules maintenance WAF for NGINX

needle

The iOS Security Testing Framework

nishang

Nishang - PowerShell for penetration testing and offensive security.

nsq

A realtime distributed messaging platform

office8570

CVE20178570

oh-my-zsh

A delightful community-driven (with 1,100+ contributors) framework for managing your zsh configuration. Includes 200+ optional plugins (rails, git, OSX, hub, capistrano, brew, ant, php, python, etc), over 140 themes to spice up your morning, and an auto-update tool so that makes it easy to keep up with the latest updates from the community.

oneforall

OneForAll是一款功能强大的子域收集工具

opencanary_web

The web management platform of honeypot

osprey

oucml

owasp-mstg

The Mobile Security Testing Guide (MSTG) is a comprehensive manual for mobile app security testing and reverse engineering.

owasp-nettacker

Automated Penetration Testing Framework

paddleocr

Awesome multilingual OCR toolkits based on PaddlePaddle （practical ultra lightweight OCR system, provide data annotation and synthesis tools, support training and deployment among server, mobile, embedded and IoT devices）

paper

penetration

this is some pentest script based on python, just simple but useful, maybe it can help you do something else. just have a try

penetration-1

渗透 超全面的渗透资料💯 包含：0day，xss，sql注入，提权……

pentest-bookmarks

A collection of penetration testing related sites