排序
Burp Suite扩展,用于将HTTP请求和响应按分组进行组织和管理,提升渗透测试和Web应用安全评估的效率
Burp Suite的GroupedHistoryPlugin扩展能够帮助您高效地组织和管理HTTP请求与响应,提升渗透测试和Web应用安全评估的工作效率。
10个月前GoPhantom 是一个为红队演练和安全研究设计的下一代荷载加载器(Payload Loader)生成器,具有免杀能力
GoPhantom is a next-generation payload loader generator designed for red team exercises and security research. It uses AES-256-GCM encryption, dynamic keys, dec
10个月前重掌主动权:企业该如何修复混乱的安全运营
Learn strategies to improve security operations in complex hybrid and multi-cloud environments. Discover how unified policies and automated platforms can help e
10个月前FOFA信息搜集助手(Chrome插件)
FOFA Google Plugin是一款基于FOFA API的安全研究和资产测绘工具,支持一键查询开放端口、服务类型等信息。适用于红队渗透人员及CTF选手。
10个月前RVScan 是一个功能强大的 Burp插件,它提供全面的路径发现、绕过技术、EHole指纹识别和可定制的扫描规则
Explore RVScan, a powerful Burp Suite extension for advanced path discovery, fingerprint recognition, and vulnerability scanning. Discover sensitive paths and i
9个月前一个高效的阿里云漏洞库爬虫工具,用于自动化爬取和处理CVE数据
Discover the powerful AliyunCVE_Crawler tool designed to automate the collection and processing of CVE (Common Vulnerabilities and Exposures) data from Alibaba
9个月前记一次hw中用到的某云waf绕过技巧
本文详细记录了一次使用Y函数绕过某云WAF的案例,包括注入点确定、绕过规则分析以及具体实施步骤。
9个月前50个文件上传绕过技巧,懂一半绝对高手!
Discover 50 file upload bypass methods and tricks to master Web security. Explore frontend, content detection, parsing, and protocol layer hacks.
9个月前AI 编程神器Cursor现高危漏洞,一条提示即可RCE
了解AI编程工具Cursor的高危漏洞CurXecute,及其如何通过精心构造的提示执行任意系统命令。探讨MCP协议的安全隐患和GitHub README文件潜在威胁。
9个月前网安人必备!开源网络安全工具TOP 10
Explore the top 10 open source security tools that every cybersecurity professional should know. From Nmap and Wireshark to Metasploit and BurpSuite, discover h
9个月前守护数字边界的利器:10款热门高级端点安全工具盘点
Explore the latest advanced endpoint security tools to safeguard your digital borders. Discover top picks like CrowdStrike Falcon and SentinelOne for real-time
9个月前实战攻防中的50条代码审计技巧!
了解并掌握实战攻防中至关重要的50条代码审计技巧,涵盖输入处理、核心安全机制等多方面内容。
9个月前