the fastest and most powerful android decompiler(native tool working without Java VM) for the APK, DEX, ODEX, OAT, JAR, AAR, and CLASS file. which supports malicious behavior detection, privacy lea…

A collection of various awesome lists for hackers, pentesters and security researchers

被动式漏洞扫描系统

A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.

收集自网络各处的 webshell 样本，用于测试 webshell 扫描器检测率。

This is a webshell open source project

An advanced web directory & file scanning tool that will be more powerful than DirBuster, Dirsearch, cansina, and Yu Jian.一个高级web目录、文件扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑。

GitHub 泄露监控系统(GitHub Sensitive Information Leakage Monitor Spider)

对 The Hacker Playbook 3 的翻译。

A collection of android Exploits and Hacks

AndroBugs Framework is an efficient Android vulnerability scanner that helps developers or hackers find potential security vulnerabilities in Android applications. No need to install on Windows.

RAT Museum

Proof-of-Concept exploits for CVEs found by the team at Rhino Security Labs

Java web common vulnerabilities and security code which is base on springboot and spring security

红队基础设施自动化部署工具

Source Code Security Audit (源代码安全审计)

Metasploit Framework