0x554simon's Stars
spring-projects/spring-framework
Spring Framework
google/tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
yaklang/yakit
Cyber Security ALL-IN-ONE Platform
r0ysue/r0capture
安卓应用层抓包通杀脚本
dstotijn/hetty
An HTTP toolkit for security research.
Col-E/Recaf
The modern Java bytecode editor
peng-zhihui/HDMI-PI
我设计的一个HDMI转MIPI模块,可以用于驱动各种手机屏幕当显示器用。
douyu/jupiter
Jupiter: Governance-oriented Microservice Framework.
zhzyker/exphub
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
cdk-team/CDK
📦 Make security testing of K8s, Docker, and Containerd easier.
grails/grails-core
The Grails Web Application Framework
apache/incubator-hugegraph
A graph database that supports more than 100+ billion data, high performance and scalability (Include OLTP Engine & REST-API & Backends)
bytedance/Elkeid
Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.
TrojanAZhen/BurpSuitePro-2.1
什么? 你想用免费的BurpSuitePro版本!!!
w5teams/w5
Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
tkestack/tke
Native Kubernetes container management platform supporting multi-tenant and multi-cluster
zhengjim/Chinese-Security-RSS
网络安全资讯的RSS订阅,网络安全博客的RSS订阅,网络安全公众号的RSS订阅
fnmsd/MySQL_Fake_Server
MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
pimps/JNDI-Exploit-Kit
JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps vulnerable to JNDI Injection)
knownsec/404StarLink-Project
Focus on promoting the evolution of tools in different aspects of security research.专注于推动安全研究各个领域工具化.(项目收录逐步迁移至 https://github.com/knownsec/404StarLink)
niranjan94/show-java
An APK (android application), JAR & Dex decompiler for android.
TheKingOfDuck/FileMonitor
文件变化实时监控工具(代码审计/黑盒/白盒审计辅助工具)
OWASP-Benchmark/BenchmarkJava
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
google/safehtml
Safe HTML for Go
pwntester/JRE8u20_RCE_Gadget
JRE8u20_RCE_Gadget
saveweb/review-2022
饿您饿饿年,你吃年终总结了馍?
Pa55w0rd/Enterprise_-Security_tools
企业安全建设中用到的开源or“免费”的工具
NCSC-NL/spring4shell
Operational information regarding the Spring4Shell vulnerability in the Spring Core Framework
sonatype-nexus-community/nexus-repository-helm
At the Helm, Helm Yeah, v k8s
MagicZer0/Jackson_RCE-CVE-2019-12384
CVE-2019-12384 漏洞测试环境