Pinned Loading

1. xnmap xnmap Public

   该脚本是一款专为靶场渗透测试设计的自动化 Nmap 扫描工具，能够高效地进行端口枚举、服务版本检测、操作系统识别、漏洞扫描等安全评估任务。

   Shell 10 1

2. hackmyvm-cli hackmyvm-cli Public

   A command-line tool for interacting with HackMyVM, supporting machine listing, downloading, and flag submission with session persistence.

   Python 17 1

3. BurpInjector BurpInjector Public

   一款高效的 Burp Suite 插件，专注于检测 URL 路径与 XFF 头部潜在的 SQL 注入漏洞，并集成接口自动采集。

   Python 25

4. exsi-exploit exsi-exploit Public

   Personal ESXi/vCenter post-exploitation toolkit. VM enumeration and guest command execution via vSphere API.

   Python 6

5. BurpBackupScanner BurpBackupScanner Public

   A high-performance backup file scanner for Burp Suite that intelligently generates dynamic dictionaries based on real-time traffic and Host analysis.

   Java 6

6. suBrute suBrute Public

   A high-performance, zero-dependency POSIX sh script for local su brute-forcing. Optimized for Alpine Linux, BusyBox, and restricted environments where Python/Expect are unavailable.

   Shell 10 6