Sqlmap 官网
sqlmap is an open source penetration testing tool that automates the process of detecting and exploiting SQL injection flaws and taking over of database servers. It comes with a powerful detection engine, many niche features for the ultimate penetration tester and a broad range of switches lasting from database fingerprinting, over data fetching from the database, to accessing the underlying file system and executing commands on the operating system via out-of-band connections.
- 2022-05-01 - 收藏
OWASP ZAP 官网
ZAP则是OWASP里的工具类项目,也是旗舰项目,全称是OWASP Zed attack proxy,是一款web application 集成渗透测试和漏洞工具,同样是免费开源跨平台的。
- 2022-05-01 - 收藏
TCPDUMP 官网
This is the home web site of tcpdump, a powerful command-line packet analyzer; and libpcap, a portable C/C++ library for network traffic capture. Here you can find the latest stable version of tcpdump and libpcap, as well as current development versions, a complete documentation, and information about how to report bugs or contribute patches.
- 2022-05-01 - 收藏
Apktool 官网
A tool for reverse engineering 3rd party, closed, binary Android apps. It can decode resources to nearly original form and rebuild them after making some modifications. It also makes working with an app easier because of the project like file structure and automation of some repetitive tasks like building apk, etc.https://ibotpeaches.github.io/Apktool/
- 2022-05-01 - 收藏
PortSwigger 官网
PortSwigger offers tools for web application security, testing, & scanning. Choose from a range of security tools, & identify the very latest vulnerabilities.
- 2022-05-01 - 收藏
Burp Suite 官网
Get Burp Suite. The class-leading vulnerability scanning, penetration testing, and web app security platform. Try for free today.
- 2022-05-01 - 收藏
