溯光 (TrackRay) 3 beta⚡渗透测试框架(资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap)
-
Updated
Dec 16, 2023 - Java
#
pentest
Here are 38 public repositories matching this topic...
jSQL Injection is a Java application for automatic SQL database injection.
java docker devops spring-boot hacking spock hibernate sql-injection pentest kali-linux ctf-tools sonarcloud
-
Updated
Mar 14, 2026 - Java
一个想让你测试加密流量像测试明文一样简单高效的 Burp 插件。 A Burp plugin that makes testing encrypted traffic as simple and efficient as testing plaintext.
-
Updated
Feb 9, 2026 - Java
🐱💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks
security exploit log4j hacking cybersecurity poc pentesting writeups bugbounty cve pentest payload red-team bugbounty-writeups security-writeups cve-2021-44228 bugbounttips cve-2021-45046 cve-2021-45105
-
Updated
Jan 15, 2022 - Java
A public open sourced tool. Log4J scanner that detects vulnerable Log4J versions (CVE-2021-44228, CVE-2021-45046, etc) on your file-system within any application. It is able to even find Log4J instances that are hidden several layers deep. Works on Linux, Windows, and Mac, and everywhere else Java runs, too! TAG_OS_TOOL, OWNER_KELLY, DC_PUBLIC
log4j scanner detector cybersecurity pentest sca vulnerability-scanner cve-2021-44228 log4shell cve-2021-45046 cve-2021-45105
-
Updated
Mar 10, 2022 - Java
Functional enhancement based on nuclei. 基于 nuclei 的功能增强。
-
Updated
May 22, 2025 - Java
PETEP (PEnetration TEsting Proxy) is an open-source Java application for traffic analysis & modification using TCP/UDP proxies. PETEP is a useful tool for performing penetration tests of applications with various application protocols. ⚡
tls ssl security tcp proxy udp mitm hacking tcp-proxy penetration-testing pentesting pentest mitmproxy hacking-tool ethical-hacking hacking-tools hackingtools pentesting-tools penetration-testing-tools ethical-hacking-tools
-
Updated
Dec 1, 2023 - Java
Burp Suite extension to passively scan for applications revealing server error messages
-
Updated
Dec 15, 2023 - Java
AStools is a powerful Android security tool designed as an LSPosed module. It's crafted for ethical hacking and security testing, offering features like SSL pinning bypass and AES encryption key hooking.
-
Updated
Dec 7, 2023 - Java
Burp extension to passively scan for applications revealing software version numbers
-
Updated
May 30, 2024 - Java
JSONPath extension for BurpSuite
-
Updated
Nov 2, 2025 - Java
Burp Extension for BFAC (Advanced Backup-File Artifacts Testing for Web-Applications)
-
Updated
Aug 9, 2021 - Java
Burp Suite extension for parsing Swagger web service definition files
-
Updated
Jul 15, 2025 - Java
Burp Suite plugin identifies insertion points for GWT (Google Web Toolkit) requests
-
Updated
Sep 24, 2015 - Java
Burp Extender to add unique form tokens to scanner requests.
-
Updated
Nov 5, 2024 - Java
🎯 VISTA — AI-Powered Security Testing Assistant for Burp Suite. Real-time traffic analysis, 12 expert vulnerability templates, 80+ payloads, WAF detection & bypass. Supports OpenAI, Azure, and OpenRouter (FREE). Zero dependencies.
java xss owasp penetration-testing openai sqli bug-bounty web-security pentest ssrf security-tools vulnerability-scanner security-testing ai-security idor waf-bypass burp-suite ai-powered burpsuite-extension burp-extension
-
Updated
Feb 22, 2026 - Java
Continuation of the ZAP Neonmarker add-on previously by Juha Kivekäs
-
Updated
Mar 1, 2026 - Java
Improve this page
Add a description, image, and links to the pentest topic page so that developers can more easily learn about it.
Add this topic to your repo
To associate your repository with the pentest topic, visit your repo's landing page and select "manage topics."