cs24 Goto Github PK

openc2-org

The Open Command and Control Forum promotes the global development and adoption of the OpenC2 language and reference material.

opencti

Open Cyber Threat Intelligence Platform

openftp4

A list of all FTP servers in IPv4 that allow anonymous logins.

osint-framework

OSINT Framework

osstracker

Github organization OSS metrics collector and metrics dashboard

paperweekly_forum

paperweekly's forum

pastabean

Python Script to Scrape Pastebin with Regex.

pastehunter

Scanning pastebin with yara rules

pastemon

pastebin.com Content Monitoring Tool

patrowlmanager

PatrOwl - Open Source, Smart and Scalable Security Operations Orchestration Platform

payloads

Git All the Payloads! A collection of web attack payloads.

payloadsallthethings

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pcap-analyzer

Python编写的可视化的离线数据包分析器

pcapdb

A Distributed, Search-Optimized Full Packet Capture System

peiqi-wiki-poc

鹿不在侧，鲸不予游🐋

poc-in-github

📡PoC auto collect from GitHub.

poc-t

渗透测试插件化并发框架

poclist

Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-14536/RJ-SSL-VPN-UltraVires/Redis-Unauthorized-RCE/TDOA-V11.7-GetOnlineCookie/VMware-vCenter-GetAnyFile/yongyou-GRP-U8-XXE/Oracle-WebLogic-CVE-2020-14883/Oracle-WebLogic-CVE-2020-14882/Apache-Solr-GetAnyFile/F5-BIG-IP-CVE-2021-22986/Sonicwall-SSL-VPN-RCE/GitLab-Graphql-CNVD-2021-14193/D-Link-DCS-CVE-2020-25078/WLAN-AP-WEA453e-RCE/360TianQing-Unauthorized/360TianQing-SQLinjection/FanWeiOA-V8-SQLinjection/QiZhiBaoLeiJi-AnyUserLogin/QiAnXin-WangKangFirewall-RCE

portia

Portia aims to automate a number of techniques commonly performed on internal network penetration tests after a low privileged account has been compromised.

poseidon

A search engine which can holds 100 trillion lines of log data.

powerpath

PowerShell implementations of path-finding algorithms using graph theory

pr0xy

教学用多线程扫描框架（代理扫描）

prowler

Prowler is an Open Source Security tool for AWS, Azure and GCP to perform Cloud Security best practices assessments, audits, incident response, compliance, continuous monitoring, hardening and forensics readiness. Includes CIS, NIST 800, NIST CSF, CISA, FedRAMP, PCI-DSS, GDPR, HIPAA, FFIEC, SOC2, GXP, Well-Architected Security, ENS and more.

public-pentesting-reports

Curated list of public penetration test reports released by several consulting firms and academic security groups

public_drown_scanner

puff

Clientside vulnerability / reflected xss fuzzer

purple-team-exercise-framework

Purple Team Exercise Framework

pyhashdd

A python library for building hash databases and interacting with the hashdd.com API.

pyrebox

Python scriptable Reverse Engineering Sandbox, a Virtual Machine instrumentation and inspection framework based on QEMU

pystemon

Monitoring tool for PasteBin-alike sites written in Python. Inspired by pastemon http://github.com/xme/pastemon