Awesome Stars

A curated list of my GitHub stars! Generated by starred

Assembly

spider - Spider Exploit with CVE-2013-2842

Batchfile

CharlesLoader - Charles v4.x 动态启动loader
zogvm - zogna video manager

C

avet - AntiVirus Evasion Tool
0d1n - Web security tool to make fuzzing at HTTP, Beta
torsocks - Library to torify application - NOTE: upstream has been moved to https://gitweb.torproject.org/torsocks.git
raptor_waf - Raptor - WAF - Web application firewall using DFA [ Current version ] - Beta
android-keyboard-gadget - Convert your Android device into USB keyboard/mouse, control your PC from your Android device remotely, including BIOS/bootloader.
stegdetect - Stegdetect is an automated tool for detecting steganographic content in images.
parasite - Linux Runtime Process Injection Tool
mooltipass - Github repository dedicated to the mooltipass project
PrivEsc - A collection of Windows, Linux and MySQL privilege escalation scripts and exploits.
Mirai-Source-Code - Leaked Mirai Source Code for Research/IoC Development Purposes
icmptunnel - Transparently tunnel your IP traffic through ICMP echo and reply packets.
docker-tor-hiddenservice-nginx - Easily setup a hidden service inside the Tor network
linux - Linux kernel source tree
pcileech - Direct Memory Access (DMA) Attack Software
pdnsd - fork of pdnsd https://gitorious.org/pdnsd
ssl-kill-switch2 - Blackbox tool to disable SSL certificate validation - including certificate pinning - within iOS and OS X Apps
blacknurse - BlackNurse attack PoC
password_manager - Military-Grade Password Manager
icmpsh - Simple reverse ICMP shell
ChinaDNS - Protect yourself against DNS poisoning in China.
shadowsocks-libev - libev port of shadowsocks
shadowsocksr-libev - libev port of ShadowsocksR
Acrylic-DNS-Proxy-GUI - Acrylic DNS Proxy 的GUI版本
fcn - free connect your private network from anywhere
tor - unofficial git repo -- report bugs/issues on https://trac.torproject.org/ -- no pull requests here --
ttyd - Share your terminal over the web
seafile - File syncing and sharing software with file encryption and group sharing, emphasis on reliability and high performance.
radare2 - unix-like reverse engineering framework and commandline tools
reading-notes - list some notes
cve-2013-2094-report -
libmsm_cameraconfig_exploit - CVE-2013-2595 exploit
lib_mysqludf_sys - A UDF library with functions to interact with the operating system. These functions allow you to interact with the execution environment in which MySQL runs.
ncrack - Ncrack network authentication tool
git - Git Source Code Mirror - This is a publish-only repository and all pull requests are ignored. Please follow Documentation/SubmittingPatches procedure for any of your improvements.

C#

choco - Chocolatey CLI
NativePayload_DNS - C# code for Backdoor Payloads transfer by DNS Traffic and Bypassing Anti-viruses
BaiduOldDriver - Library and tools for using Baidu Netdisk's private APIs. 百度网盘私有API的C#库。
Md5Decrypt - MD5多接口解密工具（插件式）
MarkPadRT -
inVtero.net - inVtero.net: Forensics, Memory integrity & assurance, patch compliance, overall agentless binary ninja tools. Find/Extract processes, hypervisors (including nested) in memory dumps using microarchitechture independent Virtual Machiene Introspection techniques
SimpleDnsCrypt - A simple management tool for dnscrypt-proxy
PowerForensics - PowerForensics provides an all in one platform for live disk forensic analysis
ChromeUpdater - http://iivb.net/chrome_update_tool.html
AwesomerShell - The AwesomerShell Code Sample
PowerShell - PowerShell for every system!
ExportBlog - 博客导出工具
Psychson - Phison 2251-03 (2303) Custom Firmware & Existing Firmware Patches (BadUSB)
GySurface - .NET WPF Framework
shadowsocks-windows - If you want to keep a secret, you must also hide it from yourself.
qqzeng-ip - 最新IP地址数据库-多语言解析以及导入数据库脚本
shadowsocksr-csharp - ShadowsocksR for Windows
Destroy-Windows-10-Spying - Destroy Windows Spying tool

C++

52g - Process & query leaked password data using bloom filter.
KdExploitMe - A kernel driver to practice writing exploits against, as well as some example exploits using public techniques.
RocProtect-V1 - Emulating Virtual Environment to stay protected against advanced malware
atom-bombing - Brand New Code Injection for Windows
dnscat2 -
dont_panic - Linux bind shell with anti-reverse engineering techniques
EhTrace - ATrace is a tool for tracing execution of binaries on Windows.
dnslog - 基于C++ boost实现的一个线程池转发dns请求并记录请求的工具，后续扩展功能正在实现ing--
hunter - (l)user hunter using WinAPI calls only
dnscrypt-proxy-gui - Qt/KF5 GUI wrapper over dnscrypt-proxy
libcrafter - A high level C++ network packet sniffing and crafting library.
apt-transport-tor - Tor support for apt
Pcap_DNSProxy - Pcap_DNSProxy, a local DNS server based on WinPcap and LibPcap
qTox - The most feature-rich Tox client; P2P instant messaging, audio and video calls.
FastCopy-M - FastCopy-Multilanguage，FastCopy完整支持多国语言版
Release - Release folder of all projects.
osquery - SQL powered operating system instrumentation, monitoring, and analytics.
Java-environment-variable - Quickly to set Java environment variable (Only support JDK1.8）
nmap - Nmap - the Network Mapper. Github mirror of official SVN repository.
LAVFilters - LAV Filters - Open-Source DirectShow Media Splitter and Decoders
Mu - An open-source music manager.

CSS

chromebackdoor - Chromebackdoor is a pentest tool, this tool use a MITB technique for generate a windows executable ".exe" after launch run a malicious extension or script on most popular browsers, and send all DOM datas on command and control.
whatsinmyredis - A CSRF demonstration of stealing local Redis data, and encrypting all Redis instances on a local network
louchaooo.github.io - 🐺三千浮华独居一隅
GourdScanV2 - 被动式漏洞扫描系统
sina-weibo - J2EE高仿新浪微博完整项目（包括JSP、SQL、后台代码）,学习使用。
wooyun_offline_ui - 乌云离线UI
QMUI_Web - QMUI Web 前端框架
jacman - Jacman is a fresh looking and responsive theme for Hexo with more features based on Pacman.
b374k - PHP Webshell with handy features
Public - A collection of all my publicly released material.
typecho-theme-material - Material Design Theme for Typecho.
hexo-theme-next - Elegant theme for Hexo.
typecho-theme-next - NexT.Mist 主题的 Typecho 移植版 https://github.com/iissnan/hexo-theme-next
SyntaxHighlighter-For-Typecho - 著名代码高亮插件SyntaxHighlighter Typecho移植版，同时支持0.8、0.9
Prismjs - Prismjs plugin for Typecho
typecho-theme-NexTPisces - NexT.Pisces主题的Typecho移植版
Baroque-Duoshuo -
typecho-theme-casper - Ghost official theme to Typecho
terse - 🍋 my typecho blog theme, Concise UI
jQuery-Parallax - NO LONGER MAINTAINED Used to recreate the Nike Better World parallax effect
the-swift-programming-language-in-chinese - 中文版 Apple 官方 Swift 教程《The Swift Programming Language》
loaders.css - Delightful, performance-focused pure css loading animations.

CoffeeScript

pivottable - Open-source Javascript Pivot Table (aka Pivot Grid, Pivot Chart, Cross-Tab) implementation with drag'n'drop.
atom - The hackable text editor

Erlang

ss7MAPer - SS7 MAP (pen-)testing toolkit

Go

zdns - DNS Lookup and Manipulation Tools
hardentools -
github-trending - Tracking the most popular Github repos, updated daily
wuzz - Interactive cli tool for HTTP inspection
wechatcmd - 提供微信终端版本、微信命令行版本聊天功能、微信机器人
HERCULES - HERCULES is a special payload generator that can bypass antivirus softwares.
The-Eye - Simple security surveillance script for linux distributions.
kcptun - an extremely simple & fast udp tunnel based on kcp protocol
dns - DNS library in Go
xxeserv - A mini webserver with FTP support for XXE payloads
kcptun - A Secure Tunnel Based On KCP with N:M Multiplexing
yunSpider - 百度云网盘爬虫
ruler - A tool to abuse Exchange services
onionscan - OnionScan is a free and open source tool for investigating the Dark Web.
pholcus_lib - 公共维护的Pholcus爬虫规则库
v2ray-core - A platform for building proxies to bypass network restrictions.
goproxy - 基于go写的隧道代理服务器，主要用于翻墙。
bearded -
remote-tail - RemoteTail用于同步监控多台服务器日志文件变更，一句话说就是多主机的远程tail。
kubernetes - Production-Grade Container Scheduling and Management
tsuru - Open source, extensible and Docker-based Platform as a Service (PaaS).
pholcus - [Crawler for Golang] Pholcus is a distributed, high concurrency and powerful web crawler software.
docker - Docker - the open-source application container engine

Groff

oh-my-i3 - oh-my-i3

Groovy

RopeyTasks - Deliberately vulnerable web application

HTML

linux-command - Linux命令大全搜索工具，内容包含Linux命令手册、详解、学习、搜集。
kodachi - Linux Kodachi operating system is based on Debian 8.6 it will provide you with a secure, anti forensic, and anonymous operating system considering all features that a person who is concerned about privacy would need to have in order to be secure.
warberry - WarBerryPi - Tactical Exploitation
post-exploitation-wiki - Post Exploitation Wiki
mana - Our mana toolkit for wifi rogue AP attacks and MitM - see hostapd-mana too
pytube - A lightweight, dependency-free Python library (and command-line utility) for downloading YouTube Videos.
walle-web - A Web Deployment Tool (web代码部署工具)
WooyunDrops - Wooyun知识库，乌云知识库，https://superkieran.github.io/WooyunDrops
streisand - Streisand sets up a new server running L2TP/IPsec, OpenConnect, OpenSSH, OpenVPN, Shadowsocks, sslh, Stunnel, a Tor bridge, and WireGuard. It also generates custom instructions for all of these services. At the end of the run you are given an HTML file with instructions that can be shared with friends, family members, and fellow activists.
weibo_analysis - python爬虫自动爬取指定用户的原创微博和图片，并对微博进行归类分析，最后以html图表的形式展示。
growth-in-action - 全栈增长工程师实战
growth-ebook - Growth Engineering: The Definitive Guide。全栈增长工程师指南
ideabook - 一个全栈增长工程师的练手项目集. A Growth Engineering Idea in Action.
github-roam - GitHub 漫游指南- a Chinese ebook on how to build a good build on Github. Explore the users' behavior. Find some thing interest.
designiot - 教你设计物联网系统。构建自己的Internet of Things 。
awesome-html5 - 📝 世上最全的中文翻译HTML5资源库
dirtycow.github.io - Dirty COW
AndroidMalwareEvaluatingTools - Evaluation tools for malware Android
toolbox - Phodal's Toolbox
webrtc-ips - Demo: https://diafygi.github.io/webrtc-ips/
domxssscanner - DOMXSS Scanner is an online tool to scan source code for DOM based XSS vulnerabilities
bboss-gencode - this is a tool to auto generate source code for bboss mvc, ioc,persistent,jsp,i18n,sql config file,webservice,hessian service and so on.Dev document:http://yin-bp.iteye.com/blog/2256948
wooyun111 -
kali-tools-zh - 😛kali linux 工具使用（中文机翻版）
DVRF - The Damn Vulnerable Router Firmware Project
CVE-2012-4792 - CVE-2012-4792 simple calc exploitation
codelf - Organize your GitHub stars and repositories.Search over projects from GitHub, Bitbucket, Google Code, Codeplex, Sourceforge, Fedora Project to find real-world usage variable names

Hack

fbctf - Platform to host Capture the Flag competitions

Haskell

shellcheck - ShellCheck, a static analysis tool for shell scripts
pandoc - Universal markup converter

Inno Setup

windows-installer - Install Boot2Docker cli, msys-git and VirtualBox

Java

data-cleaning - 数据清洗系统；hadoop；实体识别；冲突消解；不一致修复；缺失值填充
elasticsearch-knapsack - Knapsack plugin is an import/export tool for Elasticsearch
FuzzDomain - FuzzDomain
IIS-ShortName-Scanner - latest version of scanners for IIS short filename (8.3) disclosure vulnerability
SecurityShepherd - Web and mobile application security training platform
wifi-bruteforcer-fsecurify - Android application to brute force WiFi passwords without requiring a rooted device.
busybox - BusyBox for Android | BusyBox для Android
pentaho-kettle - Pentaho Data Integration ( ETL ) a.k.a Kettle
find-sec-bugs - The FindBugs plugin for security audits of Java web applications and Android applications. (Also work with Scala projects)
wycheproof - Project Wycheproof tests crypto libraries against known attacks.
dsploit - An Android tool to perform network analysis, port scanning, mitm attacks, etc.
android - cSploit - The most complete and advanced IT security professional toolkit on Android.
AndroidHttpCapture - AndroidHttpCapture网络诊断工具是一款Android手机抓包软件主要功能包括：手机端抓包、PING/DNS/TraceRoute诊断、抓包HAR数据上传分享。你也可以看成是Android版的"Fiddler" (^o^)/~
zrlog - zrlog 使用 JFinal 构建的个人博客程序 - 可能是最好用的开源Java博客系统
zaproxy - The OWASP ZAP core project
autopsy - Autopsy® is a digital forensics platform and graphical interface to The Sleuth Kit® and other digital forensics tools. It can be used by law enforcement, military, and corporate examiners to investigate what happened on a computer. You can even use it to recover photos from your camera's memory card. Installers can be found at: http://www.sf.net/projects/autopsy/files/autopsy
jtm-techfrontier-app -
android_jtm_sourcecode -
symphony - 🎶 A modern community (forum/BBS/SNS/blog) platform written in Java. 一个用 Java 实现的现代化社区（论坛/社交网络/博客）平台。
checkSql -
WebCollector - WebCollector is an open source web crawler framework based on Java.It provides some simple interfaces for crawling the Web,you can setup a multi-threaded web crawler in less than 5 minutes.
webmagic - A scalable web crawler framework for Java.
mmseg4j-solr - mmseg4j for lucene or solr analyzer
IK-Analyzer-2012FF - 将IK-Analyzer建成maven工程
feilong-core - 💎 Reduce development, Release ideas
guava - Google Core Libraries for Java
shopping - 我的毕业设计_网上商城
WiFiCarClient - 本人2014年本科毕业设计，基于OpenWrt的视频监控WiFi遥控车的Android客户端源码
quickmark - 快速记（个人记账安卓app），2015.4毕业设计，《基于Android平台的个人理财软件的设计与实现》
MultimediaDesktop - 分布式多媒体共享平台，个人毕业设计的系统，采用分布式系统构架，保证服务的稳定性。项目wiki文档：https://github.com/wu560130911/MultimediaDesktop/wiki
ZhiHuSpider - Java无框架实现爬取知乎用户信息、图片和知乎推荐内容并下载到本地或数据库中
WeiboCluster - 毕业设计，通过新浪微博api获取网上的微博信息，然后通过一个简单的k-means算法进行简单的分类，以便找到热点事件
WeiboSpider - 一个基于微博用户数据的Java爬虫项目
weibo-spider - 新浪微博爬虫，采用Java语言开发，基于HTTPClient 4.0，采用MySQL存储爬取数据，支持多进程并发执行。功能包括：爬取微博、评论、转发、关注列表（层次）。根据数据需求，持续更新...
ftserver - Lightweight Embeddable iBoxDB Full Text Search Server for Java
jsp -
CTFCrackTools - China's first CTFcrack framework.中国国内首个CTFcrack框架,旨在帮助CTFer快速攻克难关
SSM - 不定期分享JavaWeb方向的技术，长期更新。欢迎发起讨论 Issues
springmvc-rest-helloworld -
DataX - DataX 是阿里巴巴集团内被广泛使用的离线数据同步工具/平台，实现包括 MySQL、Oracle、HDFS、Hive、OceanBase、HBase、OTS、ODPS 等各种异构数据源之间高效的数据同步功能。
TranslationPlugin - JetBrains IDE/Android Studio 翻译插件，支持中英互译、单词朗读
JavaBaasServer - JavaBaas server application.
dex2jar - Tools to work with android .dex and java .class files
CVE-2012-4681-Armoring - An A/V evasion armoring experiment for CVE-2012-4681
netflix-oss-example - POC of Spring Cloud / Netflix OSS
xiaov - 👰‍♀️ Yet another QQ Bot. 又一个 QQ 聊天机器人，她的名字叫做小薇~
pmd -
spring-boot-starter - MyBatis integration with Spring Boot
jodd - Jodd! light open-source Java micro-frameworks and tools: tools + ioc + mvc + db + aop + tx + json + html < 1.7 Mb
Mybatis-PageHelper - Mybatis通用分页插件
che - Eclipse Che: Next-generation Eclipse IDE. Open source workspace server and cloud IDE.
sharding-jdbc - A JDBC driver for shard databases and tables
SpringShiro -
solo - 🎸 A blogging system written in Java, feel free to create your or your team own blog. 一个用 Java 实现的博客系统，为你或你的团队创建个博客吧。
superword - Superword is a Java open source project dedicated in the study of English words analysis and auxiliary reading.
hibernate-orm - Hibernate's core Object/Relational Mapping functionality
blade - 🚀 A Simple, Elegant Java Web Framework! website →
form-binder-java - Java port of form-binder, a micro data binding and validating framework
jackson-core - Core part of Jackson that defines Streaming API as well as basic shared abstractions
weixin-java-tools - 微信公众号、企业号Java SDK
mybatis-3 - MyBatis SQL mapper framework for Java
init-spring - Spring Demo致力于即拿即用,简单快速. SpringMVC+Spring+Spring Data JPA+Druid. 前台JSP+Bootstrap. 权限使用shiro. 数据库不限.
codeFactory -
cl-privilege - 通用权限管理系统：作为配置中心，管理后台系统的菜单、功能、用户、角色等，并提供DUBBO接口。

JavaScript

github-remove-forks - Remove all forked repositories
hacknical - A website for github user to make a better resume.
hexo-qiniu-sync - Hexo七牛同步插件
JudasDNS - Nameserver DNS poisoning attacks made easy
pluto - The Pluto
browser-autofill-phishing - A simple demo of phishing by abusing the browser autofill feature
3xp10it - 一个自动化渗透框架
CopyCat - Universal MITM web server
linuxdeploy - Install and run GNU/Linux on Android | Установка и запуск GNU/Linux под Android
hyper - A terminal built on web technologies
hexo-git-backup - you can use it to backup your blog into git.
datacenter-sensor - Sensors for the datacenter to protect against intruders and high temperatures
leanote - Not Just A Notepad! (golang + mongodb) http://leanote.org
hexo - A fast, simple & powerful blog framework, powered by Node.js.
BurpKit - Next-gen BurpSuite penetration testing tool
flv.js - HTML5 FLV Player
userscript - 本人原创或修改的 GM 脚本，包括小说阅读脚本、百度盘导出脚本等。
DOMPurify - DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
faraday - Collaborative Penetration Test and Vulnerability Management Platform
webtorrent-desktop - ❤️ Streaming torrent app for Mac, Windows, and Linux (BitTorrent/WebTorrent)
ssrfDetector - Server-side request forgery detector
bluebox-ng - Pentesting framework using Node.js powers. Specially focused in VoIP/UC.
research - Hello and welcome to my GitHub account. If you'd like to know more about me, this is likely the best place to start
r2frida - Radare2 and Frida better together.
gem - 💎 GUI for Data Modeling with Elasticsearch
AtEar - Wireless Hacking, WiFi Security, Vulnerability Analyzer, Pentestration
MonkeyScript -
awesome-mac -  This repo is a collection of awesome Mac applications and tools for developers and designers.
UserScripts - My greasemonkey scripts (e.g.,True URL downloads迅雷、快车、QQ旋风等专有链解密 & HacgGodTurn琉璃神社工具集 & DownloadAllContent懒人小说下载器 & Easy offline一键离线下载)
Delete-Baidu-AD - 去广告/去除百度推广以及无用功能
Tampermonkey - Tampermonkey Script
iBookmark - Chrome extension for manage bookmarks
N-blog - 一起学 Node.js
webpack - A bundler for javascript and friends. Packs many modules into a few bundled assets. Code Splitting allows to load parts for the application on demand. Through "loaders," modules can be CommonJs, AMD, ES6 modules, CSS, Images, JSON, Coffeescript, LESS, ... and your custom stuff.
CSRF-Request-Builder -
node-lessons - 📕《Node.js 包教不包会》 by alsotang
backbone-fundamentals - 📖 A creative-commons book on Backbone.js for beginners and advanced users alike
webui-aria2 - The aim for this project is to create the worlds best and hottest interface to interact with aria2. Very simple to use, just download and open index.html in any web browser.
yaaw - Yet Another Aria2 Web Frontend in pure HTML/CSS/Javascirpt
BaiduExporter - Assistant for Baidu to export download links to aria2/aria2-rpc
WebshellManager - w8ay 一句话WEB端管理工具
MyMindMap - 这里存放着本人平时以思维导图形式整理的相关资料信息，如有引用和转载，请注明出处。
deform - A Python HTML form library.
fanqiang - 翻墙-科学上网
front-end-collect - 分享自己长期关注的前端开发相关的优秀网站、博客、以及活跃开发者
BurpSuite - BurpSuite using the document and some extensions
GM_scripts - All about my Greasemonkey scripts
Zhihu-Spider - 知乎关系网爬虫
sinaWeiboShare - 封装了在web中分享到新浪微博的方法
weibo_code - 陈叔叔博客的源码
sinaWeiboSpider - 使用node.js写的一个简单的新浪微博爬虫，目前仅是爬取了粉丝信息，大概一分钟可以爬取4000多个人的信息。
nodejs-timing-weibo - 定时发微博的nodejs服务代码，基本功能是可以定时发微博，其他功能包括自动打水印，从制定网页抓取微博，批量从多个网页抓取微博并设置整点微博等。
sina-weibo-crawler - sina weibo crawler
rewrap - a regexp wrapper, less pain and more fun with regexp :)
awesome-wechat-weapp - 微信小程序开发资源汇总 💯
pinyin - 🇨🇳 汉字拼音 ➜ hàn zì pīn yīn
BlueLotus_XSSReceiver - XSS平台 CTF工具 Web安全工具
NutzWk - 基于Nutz的Java开源企业级开发框架
thimble.mozilla.org - Online code editor geared to people teaching and learning HTML, CSS, and JavaScript.
brackets - An open source code editor for the web, written in JavaScript, HTML and CSS.
free-programming-books-zh_CN - 📚 免费的计算机编程类中文书籍，欢迎投稿
zui - ZUI is an HTML5 front UI framework.
moloch - Moloch is an open source, large scale, full packet capturing, indexing, and database system.
beef - The Browser Exploitation Framework Project
OSXAuditor - OS X Auditor is a free Mac OS X computer forensics tool
MyGitStar - MyGitStar，管理你的Github Star！
ace - Ace (Ajax.org Cloud9 Editor)
es6tutorial - 《ECMAScript 6入门》是一本开源的JavaScript语言教程，全面介绍ECMAScript 6新增的语法特性。
mima - generate password from Chinese poetry
keeweb - Free cross-platform password manager compatible with KeePass
mole - Mole - based-git cloud note | 墨乐 - GitHub上的云笔记
angular.js - AngularJS - HTML enhanced for web apps!
node - Node.js JavaScript runtime ✨🐢🚀✨
neo_graph_search - A POC at replicating Facebook Graph Search with Cypher and Neo4j
xsschef - Chrome extension Exploitation Framework
antSword - AntSword is a cross-platform website management toolkit.
mongoose - MongoDB object modeling designed to work in an asynchronous environment.
jpress -
topology - HTML5 network topology graph, base on SVG. 一套基于HTML5的网络拓扑图组件
particles.js - A lightweight JavaScript library for creating particles
jQuery.AjaxFileUpload.js - jQuery plugin to magically make file inputs upload via ajax
jquery-weui - UI lib for build hybrid wechat web app
fks - 前端技能汇总 Frontend Knowledge Structure
ubuntu_config - This is use for configure ubuntu after install ubuntu
jiang - Typecho主题：Jiang
wp-calypso - The new JavaScript- and API-powered WordPress.com
syntaxhighlighter - SyntaxHighlighter is a fully functional self-contained code syntax highlighter developed in JavaScript.
itranswarp.js - Full-featured CMS including blog, wiki, discussion, etc. powered by Nodejs.
xkcdfools - xkcd CLI + jQuery terminal implementation
WebFrontEndStack - web front end stack: browsers, platforms, libraries, frameworks, tools etc.
Respond - A fast & lightweight polyfill for min/max-width CSS3 Media Queries (for IE 6-8, and more)
bootstrap - The most popular HTML, CSS, and JavaScript framework for developing responsive, mobile first projects on the web.
shearphoto - mark everything
ueditor - rich text 富文本编辑器
html5shiv - This script is the defacto way to enable use of HTML5 sectioning elements in legacy Internet Explorer.
Buttons - A CSS button library built using Sass and Compass
foundation-sites - The most advanced responsive front-end framework in the world. Quickly create prototypes and production code for sites that work on any kind of device.
code-prettify - Automatically exported from code.google.com/p/google-code-prettify
unslider - A very simple jQuery slider.
echarts - A powerful, interactive charting and visualization library for browser
Semantic-UI - Semantic is a UI component framework based around useful principles from natural language.
APDPlat - APDPlat是Application Product Development Platform的缩写，即应用级产品开发平台。
kityminder-editor - Powerful Mindmap Editing Tool
kityminder - 百度脑图
springmvc-plupload - 🍃 Springmvc and servlet shard to upload demo
SpringMVC-Spring-Hibernate - Spring MVC+Spring+Hibernate+Maven
lodash - A modern JavaScript utility library delivering modularity, performance, & extras.
jquery-qrcode - qrcode generation standalone (doesn't depend on external services)

Makefile

docker-openwrt - 📻 OpenWrt Package Builder for Raspberry Pi

OCaml

redos-detector - A tool for detecting regular expression denial-of-service vulnerabilities in Android apps.
infer - A static analyzer for Java, C, C++, and Objective-C

Objective-C

macOS-10.12.2-Exp-via-mach_voucher - Local Privilege Escalation for macOS 10.12.2 via mach_voucher and XNU port Feng Shui
weibo - 视频中微博大项目
weiBo - 仿新浪微博界面
tpwn - xnu local privilege escalation via cve-2015-???? & cve-2015-???? for 10.10.5, 0day at the time | poc or gtfo
realm-cocoa - Realm is a mobile database: a replacement for Core Data & SQLite
EChart - iOS/iPhone/iPad Chart, Graph. Event handling and animation supported.

Others

awesome-pentest-cheat-sheets - Collection of the cheat sheets useful for pentesting
nosqlinjection_wordlists - This repository contains payload to test NoSQL Injections
ShinoBOT - RAT / Botnet Simulator for pentest / education
understanding-csrf - What are CSRF tokens and how do they work?
awesome-windows-domain-hardening - A curated list of awesome Security Hardening techniques for Windows.
RFSec-ToolKit - RFSec-ToolKit is a collection of Radio Frequency Communication Protocol Hacktools.
chinese-programmer-wrong-pronunciation - 中国程序员容易发音错误的单词
Auth-Boss - Become an Auth Boss. Learn about different authentication methodologies on the web.
design-patterns-for-humans - Design Patterns for Humans™ - An ultra-simplified explanation
awesome-cyber-skills - A curated list of hacking environments where you can train your cyber skills legally and safely
pentest-bookmarks - a collection of handy bookmarks
Cheatsheets - Penetration Testing/Security Cheatsheets
dns-fuzzing - Repository to store unique seeds for DNS server fuzzing
linset - Evil Twin Attack Bash script
GradleUserGuide - "Gradle User Guide" Chinese version
gitignore - A collection of useful .gitignore templates
docker-blxr - Docker contained BlueLotus_XSSReceiver
docker-webscan - Dockerized versions of various web security scanning tools and utilities
Jrebel_for_Android_Cracked - Jrebel for Android latest cracked file and license
JustInMind_Crack - JustInMind v7.4.0--v7.5.0--v7.6.0 破解文件
repo - Debian CN Community Repo
cloudflare_ips - List of all IP belonging to Cloudflare
js-vuln-db - A collection of JavaScript engine CVEs with PoCs
awesome-ml-for-cybersecurity - Machine Learning for Cyber Security
pentestbox-docs - A template Sphinx repo
APTnotes - Various public documents, whitepapers and articles about APT campaigns
MISP-presentations -
downloads -
MobileApp-Pentest-Cheatsheet - The Mobile App Pentest cheat sheet was created to provide concise collection of high value information on specific mobile application penetration testing topics.
infosec_getting_started - A collection of resources/documentation/links/etc to help people learn about Infosec and break into the field.
Trident - Git Trident
awesome-forensics - A curated list of awesome forensic analysis tools and resources
dnscrypt-proxy-docker - Dockerfile for dnscrypt-proxy
linux-kernel-exploitation - A bunch of links related to Linux kernel fuzzing and exploitation
awesome-osint - 😱 A curated list of amazingly awesome OSINT
Security_list - Great security list for fun and profit
awesome-sysadmin - A curated list of amazingly awesome open source sysadmin resources inspired by Awesome PHP.
bbr -
finalspeed - 高速双边加速软件,在高丢包,延迟环境下仍可达到90%物理带宽利用率.
Potatso - Potatso is an iOS client that implements Shadowsocks proxy with the leverage of NetworkExtension framework in iOS 9.
IosHackStudy - IOS安全学习资料汇总
easy-job - 🔥🔥2017互联网求职面试知识复习
awesome-html5 - 📝 A curated list of awesome HTML5 resources. Inspired by awesome-php and awesome-python
awesome-opensource-documents - 📘 A curated list of awesome open source or open source licensed documents, guides, books.
awesome-programming-books - 经典编程书籍大全，涵盖：计算机系统与网络、系统架构、算法与数据结构、前端开发、后端开发、移动开发、数据库、测试、项目与团队、程序员职业修炼、求职面试等
awesome-nlp - 📖 A curated list of resources dedicated to Natural Language Processing (NLP)
awesome-python-books - 📚 Directory of Python books
book - 学习笔记
frontend-dev-bookmarks - Manually curated collection of resources for frontend web developers.
HowToBeAProgrammer - A guide on how to be a Programmer - originally published by Robert L Read
og-equity-compensation - Stock options, RSUs, taxes — a guide for humans
practical-programming-books - 这里收录比较实用的计算机相关技术书籍，可以在短期之内入门的简单实用教程、一些技术网站以及一些写的比较好的博文，欢迎Fork，你也可以通过Pull Request参与编辑。
wikizhao -
papers - my open papers
nosql-mind - 主流 Nosql (如 Redis, Mongodb) 思维导图
SEO - 关于 SEO 优化的思维导图
MSMindMap - 网络安全基础知识思维导图
IntelliJ-IDEA-Tutorial - IntelliJ IDEA 简体中文专题教程
Intellij-IDEA-F2E - Intellij IDEA / PHPStorm / WebStorm Front End Engineer Guide (中文)
sublime-text - sublime-text
awesome-javascript-cn - JavaScript 资源大全中文版，内容包括：包管理器、加载器、测试框架、运行器、QA、MVC框架和库、模板引擎等
awesome-javascript - 🐢 A collection of awesome browser-side JavaScript libraries, resources and shiny things.
awesome-crawler - A collection of awesome web crawler,spider in different languages
Qix - Machine Learning、Deep Learning、PostgreSQL、Distributed System、Node.Js、Golang
free-programming-books - 📚 Freely available programming books
awesome-spider - 爬虫集合
opensource - 【编程随想】收藏的开源项目清单
sites - 【编程随想】收藏的各色网站
books - 【编程随想】收藏的电子书清单（多个学科，含下载链接）
awesome-hacker-news - Awesome Hacker News: a collection of awesome Hacker News apps, libraries, resources and shiny things.
fuzz_dict - 常用的一些fuzz及爆破字典，欢迎大神继续提供新的字典及分类。
openftp4 - A list of all FTP servers in IPv4 that allow anonymous logins.
respin - Tool to backup and clone Ubuntu or Debian distros
XSS-Filter-Evasion-Cheat-Sheet-CN - XSS_Filter_Evasion_Cheat_Sheet 中文版
AndroidDevTools - 收集整理Android开发所需的Android SDK、开发中用到的工具、Android开发教程、Android设计规范，免费的设计素材等。
pentest_study - 从零开始内网渗透学习
Mind-Map - 各种安全相关思维导图整理收集
Pocket - 收录日常发现的好的文章和资源
awesome-pentest - A collection of awesome penetration testing resources, tools and other shiny things
it-ebooks-archive - 📚 计算机开放电子书（不完全）汇总
jfinal-dreampie - jfinal plugins
tbsign_plugins - 贴吧云签到插件库
wiki -
shadowsocks-rss - ShadowsocksR update rss, SSR organization https://github.com/shadowsocksr
w3school - 📚 W3School 教程整理
jeeshop_springmvc - 开源电商系统jeeshop的springmvc版

PHP

pcc - PHP Secure Configuration Checker
DVWS - Damn Vulnerable Web Sockets (DVWS) is a vulnerable web application which works on web sockets for client-server communication.
WebWechat - 网页微信PHP登录的实现
xss_payloads - Exploitation for XSS
FruityWifi - FruityWiFi is a wireless network auditing tool. The application can be installed in any Debian based system adding the extra packages. Tested in Debian, Kali Linux, Kali Linux ARM (Raspberry Pi), Raspbian (Raspberry Pi), Pwnpi (Raspberry Pi), Bugtraq, NetHunter.
webshells - Various webshells. We accept pull requests for additions to this collection.
lnmpcheck - lnmp环境检测工具，检测linux,nginx,php,mysql的各种问题
MISP - MISP - Malware Information Sharing Platform & Threat Sharing
avenger-sh - Project for finding vunerabilities in mass.
jitamin - Jitamin is a free software written in PHP, intended to handle the project management over the web.
weibo - 基于TP开发的微博社交系统
Xblog - A powerful and responsive blog system powered by laravel 5.4.
SecLists - SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
wooyun_search - 乌云公开漏洞、知识库搜索 search from wooyun.org
SQLMAP-Web-GUI - PHP Frontend to work with the SQLMAP JSON API Server (sqlmapapi.py) to allow for a Web GUI to drive near full functionality of SQLMAP!
Awsome-Front-End-learning-resource - GitHub最全的前端资源汇总仓库（包括前端学习、开发资源、求职面试等）
mongo-php-driver-legacy - Legacy MongoDB PHP driver
rockmongo - RockMongo is a MongoDB administration tool, written in PHP 5.
C99-Shell - Öncelikle bu sheller pek bir hacker tarafında bulunan sheller değildir.Özel kodlanmış c99 shelldir.Bu private c99 shell ile sunucudaki sitelere rahat bir şekilde girebilirsiniz.Düzenleme silme işlemlerini diğer c99 shelle göre daha rahat uyguluyabilirsiniz.Komut işlemleri diğer c99 shell gibidir. /Var/Named komutu sunucudaki siteleri listeler var user ise sunucudaki kullanıcı isimlerini gösterir.Home user public_html komutuyla ise sunucudaki bir sitenin içine rahat bir şekilde girebilirsiniz.Bu özel shelli Arap hacker tarafından kodlanıp piyasaya sürülmüştür.Genel başta 100 $ satılmaya başlamıştır fakat sonradan bedava sürümü verilmeye başlamıştır.c99 web shell herkes tarafından bilinen piyasada olan ilk shelldir.2002 sitesinde Hackerler tarfından kullanılmaya başlanmıştır.Şuan 2015 piyasında kullanılan bu shell genellikle wordpress ve joomla upload açıklarında deneniyor.c99 shell tanımını yapmaya kalkarsak c99 shell php scriptidir.Bazen virüs olarak kabül edinmekte bazense hack aracı olarak bilinmektedir.Yüklenilen c99 shellde yeşil yanıyorsa perm vardır yani yazma silme gibi izin vardır anlamına gelmekte.Eğerki c99 shellde perm yoksa şöyle hack yoluna başvurabiliriz.wp-confing.php ( wordpress ) configuration.php ( joomla ) gibi confing dosyasını okuyup yukardaki sql bölümünden veritabanına bağlanıp database düzenlemesi yapabilirsiniz yada admin kullanıcı adı şifresi değiştirebilirsiniz.wordpresslerde genellikle wp-userde kullanıcı adı ve şifreleri bulunmakta.Fakat şifreler genellike md5lidir.Ama bunun içni siz yeni md5 oluşturup değiştirebilirsiniz.Fakat baştada söylediğimzi gibi bu özel c99 shellde buna gerek bile kalmıycak.Permleri özel olarak yeşil yapıp işlem yapmanızı sağlıyor.Shellimize girdiğimizde en alt sağ kısımda upload etme seçeneğinide sizlere sunuyor.Bazense root yapma imkanı sunucudaki siteleri hepsine index atma gibi bir özelliğide sunuyor.Bazı c99 shellerde genellikle antivürsler ‘ Hack ‘ olarak algıladığı için virüs olarak görüyor.Bu yüzden anti virüs kapatmayı deneyin yoksa otamatik anti virüsler tarafından siliniyor.4hackerz.org ekibi olarak bu private c99 shell ile bol hackler dileriz.
webshell - This is a webshell open source project
MCIR - The Magical Code Injection Rainbow! MCIR is a framework for building configurable vulnerability testbeds. MCIR is also a collection of configurable vulnerability testbeds.
typecho-links-material - A Links for the Material Theme, based on Hanny's Links
Themia-for-TE - 针对typecho优化的Themia模板
BaiduSubmit - A typecho plugin
RandomDescription - A Tepcho Plugin
typecho - typecho plugins
typecho-plugin-HTMLCompress - Typecho HTMLCompress Plugin
typecho-calender-plugin - 基于Typecho的侧边栏日历插件
BaiduSlug - Typecho 自动翻译slug插件
UpyunFile - 又拍云文件管理插件Typecho版
lpisme - lpisme, A Typecho Theme
APlayer-Typecho-Plugin - Typecho plugin for APlayer https://github.com/DIYgod/APlayer
adminer - Database management in a single PHP file
DVWA - Damn Vulnerable Web Application (DVWA)
typecho-login - typecho login
jianshu - A Typecho Theme
typecho - A PHP Blogging Platform. Simple and Powerful.
presence - WordPress 篇平化单栏主题，响应式布局，兼容移动端。
Tieba_Sign - 百度贴吧签到
Teahouse-Wordpress-Theme - Wordpress 三栏博客主题

PLSQL

VulApps - 快速搭建各种漏洞环境(Various vulnerability environment)
manong - 码农周刊整理

Perl

owasp-modsecurity-crs - OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)
dotdotpwn - DotDotPwn - The Directory Traversal Fuzzer
PadBuster - Automated script for performing Padding Oracle attacks
fierce-domain-scanner - Fierce.pl Domain Scanner
lbmap - Advanced HTTP fingerprinting PoC
ora-exec-cmd - Run remote system commands from Oracle connection - oracle exec command perl
shelling - SHELLING - an offensive approach to the anatomy of improperly written OS command injection sanitisers
vbscan - VBScan is a Black Box vBulletin Vulnerability Scanner
browsersploit - BrowserExploit is an advanced browser exploit pack for doing internal and external pentesting, helping gaining access to internal computers.
vbscan - OWASP VBScan is a Black Box vBulletin Vulnerability Scanner

Perl6

metasploit-vulnerability-emulator - Created by Jin Qian via the GitHub Connector
IoTSeeker - Created by Jin Qian via the GitHub Connector

PowerShell

PowerMemory - Exploit the credentials present in files and memory
Tater - Tater is a PowerShell implementation of the Hot Potato Windows Privilege Escalation exploit from @breenmachine and @foxglovesec
Inveigh - Inveigh is a Windows PowerShell LLMNR/NBNS spoofer/man-in-the-middle tool
NetRipper - NetRipper - Smart traffic sniffing for penetration testers
Invoke-TheHash - PowerShell Pass The Hash Utils
ElevateKit - The Elevate Kit demonstrates how to use third-party privilege escalation attacks with Cobalt Strike's Beacon payload.
Kautilya - Kautilya - Tool for easy use of Human Interface Devices for offensive security and penetration testing.
MimikatzHoneyToken - This is a logon script used to detect the theft of credentials by tools such as Mimikatz
PowerShellArsenal - A PowerShell Module Dedicated to Reverse Engineering
DomainPasswordSpray - DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will automatically generate the userlist from the domain. BE VERY CAREFUL NOT TO LOCKOUT ACCOUNTS!
CrackMapExec - A swiss army knife for pentesting Windows/Active Directory environments
nishang - Nishang - PowerShell for penetration testing and offensive security.
Empire - Empire is a PowerShell and Python post-exploitation agent.
PowerTools - PowerTools is a collection of PowerShell projects with a focus on offensive operations.

Python

Stitch - Python Remote Administration Tool (RAT)
github_spider - 使用代理调用github API爬去用户数据
phpsploit - Stealth post-exploitation framework
hashID - Software to identify the different types of hashes -
HaboMalHunter - HaboMalHunter is a sub-project of Habo Malware Analysis System (https://habo.qq.com), which can be used for automated malware analysis and security assessment on the Linux system.
LAMMA-beta - Vulnerability Assessment and Auditing Framework for all the Crypto Implementations.
PayloadsAllTheThings - A list of useful payloads and bypass for Web Application Security and Pentest/CTF
HEVD-Exploits - Various exploits for the HackSys Extreme Vulnerable Driver
Veil - Veil 3.0
rext - Router EXploitation Toolkit - small toolkit for easy creation and usage of various python scripts that work with embedded devices.
github-trending - Tracking the most popular Github repos, update daily(Python version)
awesome-industrial-control-system-security - A curated list of resources related to Industrial Control System (ICS) security.
subdomain3 -
EmPyre - A post-exploitation OS X/Linux agent written in Python 2.7
mongoaudit - 🔥 A powerful MongoDB auditing and pentesting tool 🔥
bat-armor - Encode powershell payload into bat files
WMD - Python framework for IT security tools
aeskiller - Burp Extension to auto manipulate AES En/Decryption
NodeJsScan - NodeJsScan is a static security code scanner for Node.js applications.
EaST - Exploits and Security Tools Framework 1.0.3
sipvicious - SIPVicious suite is a set of tools that can be used to audit SIP based VoIP systems.
shootback - a reverse TCP tunnel let you access target behind NAT or firewall
DarkEnumeration - Automated enumeration
ivre - Network recon framework.
HnTool - Hardening Tool for *nixes
server-status_PWN - A script that monitors and extracts requested URLs and clients connected to the service by exploiting publicly accessible Apache server-status instances.
dns2proxy - Offensive DNS server
Shodan-mattermost - Mattermost - Shodan Slash command
tumblr-crawler - Easily download all the photos/videos from tumblr blogs. 下载指定的 Tumblr 博客中的图片，视频
tumblr-crawler - Easily download all the photos/videos from tumblr blogs. 下载指定的 Tumblr 博客中的图片，视频
lcyscan -
urlfuzzing - Advance URL Fuzzing + Whois Domain running on python
smod - MODBUS Penetration Testing Framework
redsnarf - RedSnarf is a pen-testing / red-teaming tool for Windows environments
pandas - Flexible and powerful data analysis / manipulation library for Python, providing labeled data structures similar to R data.frame objects, statistical functions, and much more
python-pty-shells - Python PTY backdoors - full PTY or nothing!
web-exploitation-engine - Generic Command Exploitation Engine for exploiting web application command-injection bugs,.
ibrute - AppleID bruteforce p0c
lisa.py - -An Exploit Dev Swiss Army Knife.
Nosql-Exploitation-Framework - A Python Framework For NoSQL Scanning and Exploitation
nosqlpot - The NoSQL Honeypot Framework
tftptheft - TFTP Theft is a tool which allows one to quickly scan/bruteforce a tftp server for files and download them instantly
wifijammer - Continuously jam all wifi clients/routers
shellnoob - A shellcode writing toolkit
dcept - A tool for deploying and detecting use of Active Directory honeytokens
maltrail - Malicious traffic detection system
Snoopy - Snoopy: A distributed tracking and data interception framework
Kvasir - Kvasir: Penetration Test Data Management
clusterd - application server attack toolkit
exploitpack - Exploit Pack - Project
nullinux - SMB null session identification and enumeration tool
brut3k1t - Brute-force (dictionary attack, jk) attack that supports multiple protocols and services
WAS - Automatic USB drive malware scanning tool for the security-minded person
smsweb - 一个使用python编写的sms短信嗅探程序
BackdoorMan - BackdoorMan is a toolkit that helps you find malicious, hidden and suspicious PHP scripts and shells in a chosen destination.
CAPE - Config And Payload Extraction
bluewall - Bluewall is a firewall framework designed for offensive and defensive cyber professionals.
msf-remote-console - A remote msfconsole written in Python 2.7 to connect to the msfrcpd server of metasploit. This tool gives you the ability to load modules permanently as daemon on your server like autopwn2.
waidps - Wireless Auditing, Intrusion Detection & Prevention System
scripts -
wifiphisher - Automated victim-customized phishing attacks against Wi-Fi clients
CMSmap -
airpwn-ng - airpwn-ng
ubuntu-apport-exploitation - This project contains a PoC and exploit generator for a code execution bug in Ubuntu's Apport crash reporter
ChinaDNS-Python - Protect yourself against DNS poisoning in China.
Tcp-DNS-proxy - A TCP dns proxy which can get the RIGHT ip address
sshuttle - Transparent proxy server that works as a poor man's VPN. Forwards over ssh. Doesn't require admin. Works with Linux and MacOS. Supports DNS tunneling.
AppleDNS - Apple 网络服务加速配置。（少数派、Appinn、Mac玩儿法推荐）
BLE-Security -
certfuzz - This project contains the source code for the CERT Basic Fuzzing Framework (BFF) and the CERT Failure Observation Engine (FOE).
TelphOWN - Telpho10 Ownage Tool
Cypher - Pythonic ransomware proof of concept.
win_driver_plugin - A tool to help when dealing with Windows IOCTL codes or reversing Windows drivers.
WIG - Tools for 802.11 information gathering.
social-engineer-toolkit - The Social-Engineer Toolkit (SET) repository from TrustedSec - All new versions of SET will be deployed here.
macOS-Security-and-Privacy-Guide - A practical guide to securing macOS.
AIL-framework - AIL framework - Analysis Information Leak framework
fuzzinator - Fuzzinator Random Testing Framework
xsser - From XSS to RCE 2.5 - Black Hat Europe Arsenal 2016
struts-scan - 快速检测struts命令执行漏洞，可批量。
onionshare - Securely and anonymously share a file of any size
cve-search - cve-search - a tool to perform local searches for known vulnerabilities
chipsec - Platform Security Assessment Framework
NoSQLMap - Automated Mongo database and NoSQL web application exploitation tool
SharpMeter -
duckhunt - 🎯 Prevent RubberDucky (or other keystroke injection) attacks
Fireaway - Next Generation Firewall Audit and Bypass Tool
malboxes - Builds malware analysis Windows VMs so that you don't have to.
DPAT - Domain Password Audit Tool for Pentesters
lightbulb-framework - Tools for auditing WAFS
mitmproxy - An interactive TLS-capable intercepting HTTP proxy for penetration testers and software developers
httpie - Modern command line HTTP client – user-friendly curl alternative with intuitive UI, JSON support, syntax highlighting, wget-like downloads, extensions, etc. https://httpie.org
xrdp - A rudimentary remote desktop tool for the X11 protocol exploiting unauthenticated x11 sessions
ptf - The Penetration Testers Framework (PTF) is a way for modular support for up-to-date tools.
dedsploit - Framework for attacking network protocols
VBAMacroPWD - Python scripts to remove, change, and crack Office 97-2003/Office 2007/Office 2010/Office 2013 Macro Passwords
PyPowerShellXray - Python script to decode common encoded PowerShell scripts
honeybadger -
infernal-twin - wireless hacking - This is automated wireless hacking tool
gitem - A Github organization reconnaissance tool.
mitmAP - 📡 A python program to create a fake AP and sniff data.
needle - The iOS Security Testing Framework
MMeTokenDecrypt - Decrypts and extracts iCloud and MMe authorization tokens on Apple macOS / OS X. No user authentication needed. 🏅🌩
deep-pwning - Metasploit for machine learning.
fetch-some-proxies - Simple Python script for fetching "some" (usable) proxies
TwitterBruteforcer - Twitter bruteforcer developed via Python3
scripts -
DOMFf - DOMFf is a simple IDE for extract all DOM data on a website, is perfect for all penetration testers, with this you can extract all data name, value of specific form with only one line, this tool work like a debugger
Aker - SSH bastion/jump host
flare-fakenet-ng - FakeNet-NG - Next Generation Dynamic Network Analysis Tool
wifi-deauth-attack - An automated script for deauthentication attack
Python_editor - Better CodeEditor for Ida Pro.
Noriben - Noriben - Portable, Simple, Malware Analysis Sandbox
mongol - A simple python tool to pinpoint the IP addresses of machines working for the Great Firewall of China.
pythonwebhack - 用python实现的web框架建立的在线渗透平台
creddump7 -
PCredz - This tool extracts Credit card numbers, NTLM(DCE-RPC, HTTP, SQL, LDAP, etc), Kerberos (AS-REQ Pre-Auth etype 23), HTTP Basic, SNMP, POP, SMTP, FTP, IMAP, etc from a pcap file or from a live interface.
mission-improbable - A set of scripts to root and install gapps and orbot+orwall into a CopperheadOS image and re-sign it for verified boot.
ProxyPool - Crawl and validate proxies from Internet
fake-useragent - up to date simple useragent faker with real world database
HighAnonProxyPool -
geoip-attack-map - Cyber security geoip attack map that follows syslog and parses IPs/port numbers to visualize attackers in real time.
weiboCAR - 基于Scrapy开发的微博（评论、转发、点赞）爬虫，可以批量抓取。
OpenDoor - a simple web scanner implement by python
DeDRM_tools - DeDRM tools for ebooks
test-lists - URL testing lists intended for discovering website censorship
paper_manager - A command-line manager programed in python, help with managing your local academic papers.
pentest-wiki - PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
google_explorer - Google mass exploit robot in python
nginx-book - Nginx开发从入门到精通
osint_public -
zhao - 【编程随想】整理的《太子党关系网络》，专门揭露赵国的权贵
listen1 - one for all free music in china (origin edition)
Sublist3r - Fast subdomains enumeration tool for penetration testers
weevely3 - Weaponized web shell
windows-st-portable - Sublime Text 3 portable version include some package（汪磊的Sublime Text 3绿色便携版，包括一些常用插件）
package_control - The Sublime Text package manager
ConvertToUTF8 - A Sublime Text 2 & 3 plugin for editing and saving files encoded in GBK, BIG5, EUC-KR, EUC-JP, Shift_JIS, etc.
LNScan - 详细的内部网络信息扫描器
cola - A high-level distributed crawling framework.
mooder - Mooder是一款开源、安全、简洁、强大的团队内部知识分享平台。
sudo-snooper - Python script that acts like the original sudo binary to fool users into entering their passwords
QQ-Groups-Spider - QQ Groups Spider（QQ 群爬虫）
crawler-user-agents - Lists syntactic patterns of HTTP user-agents used by robots/crawlers/spiders
zhihu_spider - 知乎爬虫
weibosearch - A distributed Sina Weibo Search spider base on Scrapy and Redis.
spider - 爬一些常用的电影网站的连接
weibo-keywords-crawler - Crawl the related sina weibo content using the keywords, and save the results to txt file for future use.
weibo-pic-spider - 抓取weibo图片爬虫
weibo - 根据微博内容，判断人的自杀倾向 \n 采用了贝叶斯模型和svm模型
sina-weibo-crawler - 方便扩展的新浪微博爬虫
clean-sina-weibo - 新浪微博清理器批量删除
collectWeiboData - 收集新浪微博数据
weibospider - A Web Spider for Weibo(Chinese Twitter)
WeiboMsgBackupGUI - 中国爬盟出品的微博备份神器：用于备份新浪微博指定用户全部微博的备份工具
weibo_spider - graduate project, a weibo spider to find some interesting information such as "In social network , people tend to be happy or sad."
weibo - Python sina weibo sdk. More simpler and cleaner than the official one.
weibo - 新浪weibo微博抓取，Python3 support
SinaSpider - 新浪微博爬虫（Scrapy、Redis）
fuck-login - 模拟登录一些知名的网站，为了方便爬取需要登录的网站
weiboSpider - 新浪微博爬虫，用python爬取新浪微博数据
WikiExtractor - 维基百科离线语料获取
evlal_win -
penetration - this is some pentest script based on python, just simple but useful, maybe it can help you do something else. just have a try
Search-IP - Search IP and optimize them
eqgrp-free-file - Free sampling of files from the purported Equation Group hack.
ZeroNet - ZeroNet - Decentralized websites using Bitcoin crypto and BitTorrent network
DouBanSpider - 豆瓣读书的爬虫
binwalk - Firmware Analysis Tool
websocket-injection - WebSocket 中转注入工具
XX-Net - a web proxy tool
ScanSql - 利用sqlmap和URL去重的爬虫写的一个刷rank的脚本
http-observatory - HTTP Observatory
cuckoo - Cuckoo Sandbox is an automated dynamic malware analysis system
Fox-scan - Fox-scan is a initiative and passive SQL Injection vulnerable Test tools.
poc - poc from bugscan beebeeto
uefi-firmware-parser - Parse BIOS/Intel ME/UEFI firmware related structures: Volumes, FileSystems, Files, etc
wfuzz - Web application bruteforcer
pocscan - Will to be a niubility scan-framework
GitHack - A .git folder disclosure exploit
pykek - Kerberos Exploitation Kit
sqlmap - Automatic SQL injection and database takeover tool
EduParser - 用于爬取解析中国大学导师信息的工具
tools - 一些实用的python脚本
gdb-dashboard - Modular visual interface for GDB in Python
maybe - 📂 🐇 🎩 See what a program does before deciding whether you really want it to happen.
RD_Checklist - 知道创宇研发技能表
starred - creating your own Awesome List used GitHub stars!
wooyun_public - 乌云公开漏洞、知识库爬虫和搜索 crawl and search for wooyun.org public bug(vulnerability) and drops
CVE-2012-1823 -
Tarot -
RSPET - RSPET (Reverse Shell and Post Exploitation Tool) is a Python based reverse shell equipped with functionalities that assist in a post exploitation scenario.
apkbinder - Automatic backdooring apk with meterpreter (PoC)
pwntools - CTF framework and exploit development library
html5lib-python - Standards-compliant library for parsing and serializing HTML documents and fragments in Python
requests - Python HTTP Requests for Humans™
FeelUOwn - nothing but the alternate
shadowsocksr - Python port of ShadowsocksR
aliyun-cli - Universal Command Line Interface for Alibaba Cloud

Ruby

HellRaiser - Vulnerability Scanner
yasuo - A ruby script that scans for vulnerable & exploitable 3rd-party web applications on a network
Cartero - Mailing Phishing Framework - This Branch is UNSTABLE :: Official STABLE master branch at https://github.com/Section9Labs/Cartero
Cartero - Cartero - Social Engineering Framework
CeWL - CeWL is a Custom Word List Generator
dawnscanner - Dawn is a static analysis security scanner for ruby written web applications. It supports Sinatra, Padrino and Ruby on Rails frameworks.
airchat - AirChat lets you chat to nearby users by abusing the AirDrop interface on OS X.
pentest-env - Pentest environment deployer (kali linux + targets) using vagrant and chef.
metasploit-modules - Collection of metasploit modules
idb - idb is a tool to simplify some common tasks for iOS pentesting and research
bettercap - A complete, modular, portable and easily extensible MITM framework.
dockscan - dockscan is security vulnerability and audit scanner for Docker installations
wyquery - Wooyun查询系统
Scumblr - Web framework that allows performing periodic syncs of data sources and performing analysis on the identified results
brakeman - A static analysis security vulnerability scanner for Ruby on Rails applications
XXEinjector - Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
MySQL-Fu.rb - MySQL-Fu is a Ruby based MySQL Client Script I wrote. It does most of the stuff a normal MySQL client might do: SQL Shell, Update/Delete/Drop Database/Table, Add/Delete Users, Dump Database(s)/Table w/ option for gzip...... Plus a few extra options to make life a little easier for pentests. Includes Several builtin PHP Command Shell options as well as Pentestmonkey's PHP Reverse Shell, in addition to multiple options for file writing and reading (all files read logged locally for offline analysis later), also includes Ruby port of Kingcope's CVE-2012-5613 Linux MySQL Privilege Escalation Exploit.
metasploit-framework - Metasploit Framework
gitlabhq - GitLab CE | Please open new issues in our issue tracker on GitLab.com
kali - Custom Kali Linux

SQL

tang_poetry - 全唐诗数据库

Scala

shadowsocksr-android - A ShadowsocksR client for Android
shard - A command line tool to detect shared passwords
shadowsocks-android - A shadowsocks client for Android

Shell

dirtshell - Provide a sort of shell-ish interface to make file directory traversal quicker and easier.
snuff - Automate ARP poisoning, ssltrip, and ettercap.
pwnbox - Docker container with tools for binary reverse engineering and exploitation.
takeover.sh - Wipe and reinstall a running Linux system via SSH, without rebooting. You know you want to.
checksec.sh - Checksec.sh
gitDigger -
docker-bench-security - The Docker Bench for Security is a script that checks for dozens of common best-practices around deploying Docker containers in production.
htshells - Self contained htaccess shells and attacks
venom - venom (metasploit) shellcode generator/compiler/listener
HT-WPS-Breaker - HT-WPS Breaker (High Touch WPS Breaker)
ctf-tools - Some setup scripts for security research tools.
openvas-docker - A Docker container for Openvas
openvpn-as -
lnmp - LEMP stack/LAMP stack/LNMP stack installation scripts for CentOS/Redhat Debian and Ubuntu
intellij-colors-solarized - Solarized Colorscheme for IntelliJ IDEA
dnsmasq-china-list - Chinese-specific configuration to improve your favorite DNS server. Best partner for chnroutes.
ArchStrike - An Arch Linux repository for security professionals and enthusiasts. Done the Arch Way and optimized for i686, x86_64, ARMv6, ARMv7 and ARMv8.
Pa-th-zuzu - Checks for PATH substitution vulnerabilities and logs the commands executed by the vulnerable executables
NSA_b_gone - A Linux shell script to improve your privacy online
pentestpackage - a package of Pentest scripts I have made or commonly use
awesome-iocs - A collection of sources of indicators of compromise
yodo - Local Privilege Escalation
algo - 1-click IPSEC VPN in the Cloud
socat-shell - Socat can be used to establish a reverse shell with bash tab completion and full shell functionality
h4ck - a collection of writeups and tools related to ~embedded device ~hacking
serverspeeder - 锐速破解版
ufw - Debian package for ufw, patched to work without connection tracking
interview - 笔试面试知识整理
lamp - Install LAMP(Linux + Apache + MySQL/MariaDB/Percona + PHP ) for CentOS/Debian/Ubuntu
HiWiFi_Smart_Toolbox - 极路由器root后一键工具箱
port-scan-automation - Automate NMAP Scans and Generate Custom Nessus Policies Automatically
IT_security -
corekube - CoreOS + Kubernetes + OpenStack - The simplest way to deploy a POC Kubernetes cluster using a Heat template
Firefox-Security-Toolkit - A tool that transforms Firefox browsers into a penetration testing suite
Woobuntu -
kali-scripts - Some usefull scripts for KaliLinux
Arch-quick-install-and-config - This program can quick install or config Arcn Linux

TypeScript

outbound-rules - Reinventing the wheel; Content-Security-Policy

Vala

deepin-terminal - Deepin Terminal written by vala

Vim script

vim-galore - 🎓 All things Vim!
asyncrun.vim - Run Async Shell Commands in Vim 8.0 and Output to Quickfix Window

VimL

BlxVimrc - My vimrc

Visual Basic

winmanipulate - A simple tool to manipulate window objects in Windows
tkinter-designer - A Gui Designer for Tkinter of Python embedding in VB6, Muliti-Language(English Included) supported.

License

To the extent possible under law, imcoder1 has waived all copyright and related or neighboring rights to this work.

Files

imcoder1.md

Latest commit

History

imcoder1.md

File metadata and controls

Awesome Stars

Contents

Assembly

Batchfile

C

C#

C++

CSS

CoffeeScript

Erlang

Go

Groff

Groovy

HTML

Hack

Haskell

Inno Setup

Java

JavaScript

Makefile

OCaml

Objective-C

Others

PHP

PLSQL

Perl

Perl6

PowerShell

Python

Ruby

SQL

Scala

Shell

TypeScript

Vala

Vim script

VimL

Visual Basic

License