A tool for searching specific file contents during internal network penetration testing to find vulnerabilities.
JavaSecLab is a comprehensive Java vulnerability platform that provides various tools and resources for understanding and fixing Java security flaws.
dirsx 是一款能够自动化过滤扫描结果的目录扫描工具
Burp plugin for automated SSRF, Redirect, and SQLi vulnerability detection with custom matching parameters.
A repository containing web and API vulnerability checklists, ideas, and tips from Twitter.
A JAR file analysis tool for batch analysis, SCA vulnerability analysis, method call relationship search, and more.
A visual platform for generating memory shells for common middleware frameworks in Java.
A high-speed tool for passively gathering URLs, optimized for efficient web asset discovery without active scanning.
A curated list of search engines useful for penetration testing, vulnerability assessments, and bug bounty hunting.
FscanPlus is an enhanced and customized version of the Fscan tool for improved scanning capabilities.
A Burp plugin for quickly detecting potential SQL injection requests and marking them to enhance testing efficiency.
半自动漏洞挖掘工具,通过静态分析和LLM验证代码的安全路径。
