https://www.toutiao.com/article/7245192205025935910/?log_from=7cb9a7eea82d3_1689954915189

作者：Yunying

如有侵權(quán)，請聯(lián)系刪除

0x11 EXP編寫框架及工具

二進制EXP編寫工具:

https://github.com/t00sh/rop-tool

CTF Pwn 類題目腳本編寫框架:

https://github.com/Gallopsled/pwntools

an easy-to-use io library for pwning development:

https://github.com/zTrix/zio

跨平臺注入工具:

https://github.com/frida/frida

哈希長度擴展攻擊EXP：

https://github.com/citronneur/rdpy

0x12 隱寫

隱寫檢測工具：

https://github.com/abeluck/stegdetect

0x13 各類安全資料

data_hacking合集:

https://github.com/ClickSecurity/data_hacking

mobile-security-wiki:

https://github.com/exploitprotocol/mobile-security-wiki

書籍《reverse-engineering-for-beginners》:

https://github.com/veficos/reverse-engineering-for-beginners

一些信息安全標準及設(shè)備配置:

https://github.com/luyg24/IT_security

APT相關(guān)筆記:

https://github.com/kbandla/APTnotes

Kcon資料:

https://github.com/knownsec/KCon

《DO NOT FUCK WITH A HACKER》:

https://github.com/citypw/DNFWAH

各類安全腦洞圖：

https://github.com/phith0n/Mind-Map

信息安全流程圖：

https://github.com/SecWiki/sec-chart/tree/294d7c1ff1eba297fa892dda08f3c05e90ed1428

0x14 各類CTF資源

近年ctf writeup大全：

https://github.com/ctfs/write-ups-2016
https://github.com/ctfs/write-ups-2015
https://github.com/ctfs/write-ups-2014

fbctf競賽平臺Demo:

https://github.com/facebook/fbctf

ctf Resources:

https://github.com/ctfs/resources

ctf及黑客資源合集:

https://github.com/bt3gl/My-Gray-Hacker-Resources

ctf和安全工具大合集:

https://github.com/zardus/ctf-tools

ctf向 python工具包：

https://github.com/P1kachu/v0lt

0x15 各類編程資源

大禮包（什么都有）：

https://github.com/bayandin/awesome-awesomeness

bash-handbook:

https://github.com/denysdovhan/bash-handbook

python資源大全:

https://github.com/jobbole/awesome-python-cn

git學習資料:

https://github.com/xirong/my-git

安卓開源代碼解析

https://github.com/android-cn/android-open-project

python框架，庫，資源大合集:

https://github.com/vinta/awesome-python

JS 正則表達式庫（用于簡化構(gòu)造復雜的JS正則表達式）:

https://github.com/VerbalExpressions/JSVerbalExpressions

0x16 Python

python 正則表達式庫（用于簡化構(gòu)造復雜的python正則表達式）:

https://github.com/VerbalExpressions/

python任務(wù)管理以及命令執(zhí)行庫:

https://github.com/pyinvoke/invoke

python exe打包庫:

https://github.com/pyinstaller/pyinstaller

Veil-Evasion免殺項目：

https://github.com/Veil-Framework/Veil-Evasion

py3 爬蟲框架:

https://github.com/orf/cyborg

一個提供底層接口數(shù)據(jù)包編程和網(wǎng)絡(luò)協(xié)議支持的python庫:

https://github.com/CoreSecurity/impacket

python requests 庫:

https://github.com/kennethreitz/requests

python 實用工具合集:

https://github.com/mahmoud/boltons

python爬蟲系統(tǒng):

https://github.com/binux/pyspider

0x17 福利

微信自動搶紅包動態(tài)庫：

https://github.com/east520/AutoGetRedEnv

微信搶紅包插件（安卓版

https://github.com/geeeeeeeeek/WeChatLuckyMoney

hardsed神器:

https://github.com/yangyangwithgnu/hardseed

0x18 甲方安全工程師生存指南

web索引及日志搜索工具：

https://github.com/thomaspatzke/WASE

開源日志采集器：

https://github.com/wgliang/logcool

掃描CS結(jié)構(gòu)的web debuger

https://github.com/Kozea/wdb

恢復sqlite數(shù)據(jù)庫刪除注冊信息：

https://github.com/aramosf/recoversqlite/

gps欺騙檢測工具:

https://github.com/zxsecurity/gpsnitch

應(yīng)急處置響應(yīng)框架:

https://github.com/biggiesmallsAG/nightHawkResponse

web安全開發(fā)指南:

https://github.com/FallibleInc/security-guide-for-developers

各個知名廠商漏洞測試報告模板：

https://github.com/juliocesarfort/public-pentesting-reports

linux下惡意代碼檢測包：

https://github.com/rfxn/linux-malware-detect

操作系統(tǒng)運行指標可視化框架：

https://github.com/facebook/osquery

惡意代碼分析系統(tǒng)：

https://github.com/cuckoosandbox/cuckoo

定期搜索及存儲web應(yīng)用：

https://github.com/Netflix/Scumblr

事件響應(yīng)框架：

https://github.com/google/grr

綜合主機監(jiān)控檢測平臺：

https://github.com/ossec/ossec-hids

分布式實時數(shù)字取證系統(tǒng)：

https://github.com/mozilla/mig

Microsoft & Unix 文件系統(tǒng)及硬盤取證工具：

https://github.com/sleuthkit/sleuthkit

0x19 蜜罐

SSH蜜罐：

https://github.com/desaster/kippo

蜜罐集合資源：

https://github.com/paralax/awesome-honeypots

kippo進階版蜜罐：

https://github.com/micheloosterhof/cowrie

SMTP 蜜罐：

https://github.com/awhitehatter/mailoney

web應(yīng)用程序蜜罐：

https://github.com/mushorg/glastopf

數(shù)據(jù)庫蜜罐：

https://github.com/jordan-wright/elastichoney

web蜜罐：

https://github.com/atiger77/Dionaea

0x20 遠控

用gmail充當C&C服務(wù)器的后門：

https://github.com/byt3bl33d3r/gcat

開源的遠控：

https://github.com/UbbeLoL/uRAT

c#遠控：

https://github.com/hussein-aitlahcen/BlackHole