The 404 Starlink Project was started by Knownsec 404Team in 2020. We aim to denfend network and promote the Instrumentalizing of security research in different fields through open source or open methods. Just like Starlink, this project will link researchers with different security background.
Not only large tools which break security barriers,various small tools that optimizing the daily experience are included. We will open all tools developed by 404 Team, and continue to collect pain points in the process of security research and penetration testing. The security field used to have various problems, like tools jumbled, different levels obvious, and open source be unmaintained. Through the 404 Starlink Project, we wish security field would become a better place where people like to communicate and progress together.
“404星链计划”是知道创宇404实验室于2020年8月开始的计划,旨在通过开源或者开放的方式,长期维护并推进涉及安全研究各个领域不同环节的工具化,就像星链一样,将立足于不同安全领域、不同安全环节的研究人员链接起来。
其中不仅限于突破安全壁垒的大型工具,也会包括涉及到优化日常使用体验的各种小工具,除了404本身的工具开放以外,也会不断收集安全研究、渗透测试过程中的痛点,希望能通过“404星链计划”改善安全圈内工具庞杂、水平层次不齐、开源无人维护的多种问题,营造一个更好更开放的安全工具促进与交流的技术氛围。
2020年11月,知道创宇404实验室正式推出星链计划2.0。通过星链计划核心社群成员作为核心,筛选优质、有意义、有趣、坚持维护的开源项目加入星链计划2.0,由404实验室核心成员及星链计划核心成员作为背书,将优质的开源项目汇聚成星河,为立足于不同安全领域的安全研究人员指明方向,代号Galaxy。
-
2021.5.10 GShark
GShark update v0.8.3
-
2021.5.9 Viper
Viper update v1.3.6
-
2021.5.6 fscan
fscan update v1.6.0
-
2021.4.22 404StarLink2.0-Galaxy
404StarLink2.0-Galaxy recordElkeid、fscan、As-Exploits。
-
2021.3.23 404StarLink2.0-Galaxy
404StarLink2.0-Galaxy record linglong、Viper、CodeReviewTools。
-
Reconnaissance 信息收集
- ksubdomain
- the fastest subdomain enumeration tool
- Zoomeye Tools
- the Chrome extension with Zoomeye
- Zoomeye-python
- ZoomEye API SDK
- ksubdomain
-
Vulnerability Assessment 漏洞探测
-
Penetration Test 攻击与利用
- ShellcodeLoader
- ShellcodeLoader of windows can bypass AV.
- ShellcodeLoader
-
Information analysis 信息分析
- KunLun-M
- Kunlun-Mirror. Focus on white box tools used by security researchers
- KunLun-M - phpunserializechain
- A demo tool based on codedb to find the php deserialization chain.
- KunLun-M - EntranceFinder
- A little tool to find the php entry page.
- KunLun-M
-
Back-penetration, intranet tools 后渗透、内网工具
- Portforward
- PortForward is a port forwarding tool developed using Golang.
- Portforward
-
Others 其他相关
-
Minitools
- bin_extractor
- A simple script for quickly mining sensitive information in binary files.
- CookieTest
- A script used to quickly test APIs or required parameters and cookies for a certain request.
- ipstatistics
- ipstatistics is a script based on the ipip library that is used to quickly filter the ip list.
- cidrgen
- cidrgen is based on cidr's subnet IP list generator
- bin_extractor
The 404 Starlink Project is a long-term project. We collect ideas from security research and penetration testing for a long time. If your idea is meaningful, the 404 Starlink Project will follow up with the tools and look forward to making security field become instrumentalizing.
“星链计划”将会是一个长期而持久的计划,本项目下长期收取有关安全研究、渗透测试过程中的痛点,欢迎社会各界的安全研究人员提供idea,如果idea有意义,那么Knownsec 404Team将会持续跟进相应的工具,期待通过“星链计划”让安全真正工具化。
如果有问题可以在各项目下提交issue,如果有不错的issue或者已有的工具推荐,可以提交星链计划的issue, 也可以添加下方的讨论组中参与讨论。
1、Github issue: https://github.com/knownsec/404StarLink-Project/issues
2、微信群:
微信群有两种添加方式:
(1) 联系Seebug的各位小伙伴拉你入群,如:
(2) 扫描一下二维码添加我的个人微信,并备注星链计划,会把大家拉到星链计划交流群中