aw-junaid/cybersec-projects

# 网络安全项目         # 与我联系： # 目录 ## 进攻性项目 - [基础蜜罐 — 用于捕获和记录攻击者。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Basic%20honeypo) - [简单密码破解器 — 字典/暴力破解用于学习](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Simple%20password%20cracker) - [网络流量嗅探工具 — 捕获和分析数据包。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Sniff%20network%20traffic) - [基础键盘记录器（实验环境）— 学习按键捕获机制。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Basic%20keylogger) - [网络钓鱼活动模拟器 — 创建安全的培训模拟。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Phishing%20campaign%20simulator) - [Wi-Fi 安全测试器 — 评估家庭 Wi-Fi 弱点。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Wi-Fi%20security%20tester) - [网络漏洞扫描器 — 扫描开放端口和服务。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Network%20vulnerability%20scanner) - [使用 GPU 的密码破解 — 使用 GPU 加速破解。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Password%20cracking%20with%20GPUs) - [浏览器安全测试扩展 — 注入/扫描页面。](https://github.com/aw-junaid/cybersecprojects/tree/main/Projects/Offensive/Browser%20extension%20for%20security%20testing) - [子域名枚举工具 — 暴力破解和 DNS 发现。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Subdomain%20enumeration%20tool) - [目录暴力破解工具 — 基于字典的自动化发现。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Directory%20brute-force%20tool) - [XSS 查找器 — 检测反射型/存储型跨站脚本。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/XSS%20finder) - [SQLi 测试器 — 安全检测和利用注入向量。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/SQLi%20tester) - [CSRF 检查器 — 检测跨站请求伪造点。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/CSRF%20checker) - [反向 Shell 框架 — 在实验环境中生成/监听 Shell。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Reverse%20shell%20framework) - [漏洞利用模板库 — 可重用的漏洞利用骨架。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Exploit%20template%20library) - [Shell 上传工具 — 上传有效载荷到测试主机。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Shell%20upload%20tool) - [简单勒索软件模拟器 — 沙箱中的行为分析。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Simple%20ransomware%20simulator) - [恶意软件混淆实践 — 测试打包/混淆技术。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Malware%20obfuscation%20practice) - [Rootkit 实践（实验环境）— 创建并移除良性 Rootkit。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Rootkit%20practice) - [内核后门检测/创建（实验）— 研究内核持久化。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Kernel%20backdoor) - [隐写术编码器/解码器 — 在图像/音频中隐藏数据。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Steganography%20encoder) - [DNS 欺骗模拟器 — 练习检测/攻击方法。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/DNS%20spoofing%20simulator) - [ARP 欺骗/中间人攻击工具（实验）— 学习 MITM 流量拦截。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/ARP%20spoof-mitm%20tool) - [数据包注入工具 — 构建和发送自定义数据包。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Packet%20injection%20tool) - [创建自定义有效载荷 — 模块化有效载荷生成器。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Create%20custom%20payloads) - [固件逆向工程 — 在嵌入式固件中发现漏洞。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Firmware%20reverse-engineering) - [IoT 设备模糊测试工具 — 对 IoT 协议进行模糊测试。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/IoT%20device%20fuzzing%20tool) - [蓝牙协议测试器 — 扫描/利用蓝牙服务。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Bluetooth%20Protocol%20Tester) - [移动应用漏洞扫描器 — 对应用进行静态/动态测试。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Mobile%20app%20vulnerability%20scanner) - [Web 应用爬虫 + 漏洞关联器 — 发现攻击路径。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Web%20app%20crawler%20+%20vuln%20correlator) - [自动化漏洞扫描器集成 — 编排多个扫描器。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Automated%20vulnerability%20scanner%20integration) - [社会工程工具包 — 用于测试的电子邮件/SMS 模板模拟器。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Social%20engineering%20toolkit) - [暗网抓取器（研究）— 聚合威胁情报数据。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Dark%20web%20scraper) - [USB 植入模拟器 — 在实验环境中模拟恶意 USB 行为。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/USB%20implant%20simulator) - [二进制逆向工程练习 — 解包和分析二进制文件。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Binary%20reverse-engineering) - [密码喷洒自动化 — 测试凭证重用模式。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Password%20spraying%20automation) - [凭证转储分析器 — 解析并理解泄露数据。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Credential%20dump%20analyzer) - [侧信道攻击实验 — 定时/功耗分析研究。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Side-channel%20attack) - [TLS 降级与中间人攻击测试 — 检查 TLS 弱点。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/TLS%20downgrade) - [智能合约审计工具（进攻视角）— 检测漏洞。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Smart%20contract%20audit) - [区块链渗透测试框架 — 测试合约功能和流程。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Blockchain%20pentest%20harness) - [硬件故障注入实验 — 观察故障模式漏洞。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Hardware%20fault%20injection%20lab) - [云配置错误利用脚本 — 针对不安全的云配置。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Cloud%20misconfiguration%20exploit) - [API 滥用/模糊测试工具 — 测试 REST/GraphQL 滥用案例。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/API%20abuse) - [Web Socket 渗透测试工具 — 测试实时通道的问题。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Web%20sockets%20pentest%20tool) - [CSRF 攻击演示套件 — 为训练创建级联 CSRF 攻击。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/CSRF%20exploit%20demo%20kit) - [自动化钓鱼页面生成器 — 仅限实验环境的快速模板。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Automate%20phishing%20page%20builder) - [ROP 链生成助手 — 创建返回导向型有效载荷。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/ROP%20chain%20builder%20helper) - [二进制仪器工具包 — 挂钩并操纵进程。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Binary%20instrumentation%20toolkit) - [漏洞利用 PoC 仓库 — 收集概念验证。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Vulnerability%20PoC%20repository) - [网络跳板实验脚本 — 模拟横向移动。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Network%20pivoting%20lab) - [日志绕过模拟器 — 在安全环境中研究绕过技术。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Log%20evasion%20simulator) - [漏洞利用链工作流 — 自动化多步骤漏洞利用序列。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Exploit%20chaining%20workflow) - [密码管理器攻击模拟 — 测试保险库导出/弱点。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Password%20manager%20attack) - [IDS/IPS 绕过测试 — 构建绕过检测的载荷。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/IDS) - [无线协议模糊测试 — 测试 Zigbee/LoRa/802.11 帧。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Wireless%20protocol%20fuzzing) - [C2（命令与控制）迷你框架 — 实验 C2 功能。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/C2) - [混淆与打包研究工具包 — 研究打包器效果。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Obfuscation) - [红/蓝演练场景生成器 — 创建真实的演练。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Offensive/Red) # 防御性项目 - [数字取证分析实验室 — 捕获和分析取证工件。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/Digital%20forensic%20analysis%20lab) - [基础恶意软件分析沙箱 — 安全运行并观察恶意软件。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/Basic%20malware%20analysis) - [TLS 设置与加固指南 — 安全通信配置。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/TLS%20setup) - [双因素身份验证演示实现 — 测试流程与绕过方法。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/Two-factor%20authentication) - [Snort/Suricata IDS 设置 — 基本入侵检测部署。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/Snort) - [配置防火墙规则自动化 — 模板与测试脚本。](<_URL_65/>) - [基于主机的监控脚本 — 文件/完整性/进程监视。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/Host-based%20monitoring) - [取证时间线生成器 — 将工件关联到时间线。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/Forensic%20timeline%20builder) - [恶意软件行为分析器 — 行为 IOC 提取器。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/Malware%20behavior%20analyzer) - [全磁盘加密演示与密钥管理 — 最佳实践。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/Full-disk%20encryption) - [Rootkit 检测与移除工具包 — 启发式扫描器。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/Rootkit%20detection) - [安全 Web 应用模板 — 强化启动应用。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/secure-webapp) - [安全 API 身份验证示例 — JWT/OAuth 最佳实践。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/secure-api-auth) - [SIEM 仪表板用于日志 — 摄入并可视化安全事件。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/siem-dashboard) - [使用 ML 的威胁检测 — 异常检测原型。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/ml-threat-detection) - [日志聚合与解析工具 — 标准化并搜索日志。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/log-aggregator) - [漏洞管理仪表板 — 跟踪发现的生命周期。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/Vulnerability%20management%20dashboard) - [云安全态势工具 — 检测错误配置和高风险权限。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/cloud-cspm) - [容器安全强化脚本 — 扫描并强制执行镜像。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/container-security-suite) - [微服务安全检查清单与测试 — 保护服务间通信。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/microservices-security) - [SCADA/ICS 安全研究实验室 — 安全模拟工业协议。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/ics-security-lab) - [安全 CI/CD 流水线示例 — 签名、扫描和门禁。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/ci-secure-pipeline) - [数据泄露预防演示 — 检测外泄模式。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/dlp-demo) - [蜜网 — 分布式蜜罐与集中日志记录。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/honeynet) - [威胁情报收集与丰富流水线 — 丰富 IOC。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/ti-pipeline) - [勒索软件检测剧本 — 检测/预防加密活动。](https://github.com/aw-junaid/cybersec-projects/tree/main/Projects/Defensive/ransomwatch)

标签：Bash, CIDR输入, Cloudflare, DNS通配符暴力破解, GitHub 项目, MITRE ATT&CK, Python, Shell, TGT, Twitch 直播, Web 安全, YAML, YouTube 教程, 个人品牌, 云资产清单, 学习项目, 安全培训, 安全实验, 安全库, 安全演示, 实战演练, 实践项目, 实验环境, 密码学, 应用安全, 手动系统调用, 技术分享, 技术博客, 攻防演练, 数字取证, 数据可视化, 数据展示, 无后门, 日志审计, 模拟攻击, 漏洞分析, 社交媒体推广, 社会工程, 红队, 网络安全, 网络调试, 自动化, 自动化脚本, 请求拦截, 路径探测, 逆向工具, 逆向工程, 隐私保护