Contribute to ok-helloworld/vibe-pentest development by creating an account on GitHub.

一个 **Web API 接口自动发现与安全分析平台**。你只需要提供一个网站地址，它就能： - 自动从网页的 HTML 和 JavaScript 代码中发现隐藏的 API 接口 - 对发现的接口进行安全漏洞检测（SQL 注入、XSS、SSRF、命令注入等） - 智能识别 WAF 类型并自动选择最优绕过策略 - 爬取整站结构，精确识别技术栈和版本号 - 通过代理模式抓包分析请求中的敏感数据...

Add go CVE-2026-46300 (Fragnesia) local privilege escalation exploit - 1neptune/Fragnesia

Add go CVE-2026-43284 / CVE-2026-43500 (dirtyfrag) local privilege escalation exploit - 1neptune/DirtyFrag

Nuclei API is an advanced, AI-augmented platform for automated vulnerability scanning and template management, built around Nuclei. - miladhzzzz/nuclei-api

Chrome 扩展：页面资产梳理 · 技术指纹识别 · Spring/Webpack 探测 · 云存储漏洞扫描 · 实战 Payload 字典。仅限授权安全测试。 - z50n6/StiffEyes

一个为Claude Code定制的 UEFI/BIOS 固件安全漏洞分析技能。将资深 BIOS 安全研究者积累的经验打包为可复用的 AI 能力，覆盖从固件镜像解析、深度解压、微码提取、证书审计到最终报告输出的全流程。A Claude Code skill for comprehensive UEFI/BIOS firmware security vulnerability analysis....

ATLAS 空间数据治理与服务发布平台 | 🌍 面向 CAD / GIS 源数据的一站式 Docker 化数据治理与地图服务发布平台 | 📤 上传或从 MinIO 导入源文件 → 🔄 自动转换 GeoPackage → 🗺️ 发布 MVT / WMTS 地图服务 - Xu1Aan/ATLAS

一行命令，从样本加载到完整分析报告，全流程自动化。覆盖 Windows PE / Linux ELF / macOS Mach-O 三平台，映射 MITRE ATT&CK 框架，生成可执行应急响应方案。 - InKu0721/malware-re-skills

Find or download and install the YARA malware analysis library - manwar/Alien-YARA

A lightweight C2 framework . Contribute to veeramani110400/Leviathan-c2 development by creating an account on GitHub.

A Burp Suite extension for inspecting and manipulating Google Cloud Firestore traffic. - exploitradam/BurpFireStream

go CVE-2026-31431 (CopyFail) local privilege escalation exploit - 1neptune/CopyFail

一个基于 AI Agent 的钓鱼邮件智能分析 Skill，以红队视角帮助企业员工识别和应对社会工程学攻击。 - aliex23k65/Phishing_Email_Analyzer

Modern GUI-based XSS scanner focused on fast reflected XSS detection, payload testing and practical security workflows. - bnthedev/XSS-Scaner

Living Off the Orchard: macOS Binaries (LOOBins) is designed to provide detailed information on various built-in "living off the land" macOS binaries and how they can be used by t...

Mirror repository for open-source OPC-UA Toolkit designed with security and embedded devices in mind. Main repository is on gitlab: - systerel/S2OPC

fastjson1.*转Jackson. Contribute to lyalexzz/fastjson-convert-jackson development by creating an account on GitHub.

用于sql注入的测试服务端。. Contribute to 3436533165/SQL-injection development by creating an account on GitHub.

Cyber Security researcher | Bug Bounty Hunter. 0xGhostCAT has 2 repositories available. Follow their code on GitHub.

Wazuh, SIEM, Vulnerability Management: Deploying a Wazuh Manager and Agent to enable centralized security monitoring, asset inventory, and CVE-based vulnerability detection across endpoints. - Adit...