AJDecade's Stars
gojue/ecapture
Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.
shadow1ng/fscan
一款内网综合扫描工具,方便一键自动化、全方位漏扫扫描。
payloadbox/xss-payload-list
🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List
TideSec/BypassAntiVirus
远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。
cdk-team/CDK
📦 Make security testing of K8s, Docker, and Containerd easier.
hahwul/dalfox
🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.
hantmac/Mastering_Go_ZH_CN
《Mastering GO》中文译本,《玩转 GO》。
mrd0x/BITB
Browser In The Browser (BITB) Templates
1y0n/AV_Evasion_Tool
掩日 - 免杀执行器生成工具
PiotrDabkowski/Js2Py
JavaScript to Python Translator & JavaScript interpreter written in 100% pure Python🚀 Try it online:
tr0uble-mAker/POC-bomber
利用大量高威胁poc/exp快速获取目标权限,用于渗透和红队快速打点
megaease/easeprobe
A simple, standalone, and lightweight tool that can do health/status checking, written in Go.
editso/fuso
一款体积小, 快速, 稳定, 高效, 轻量的内网穿透, 端口转发工具 支持多连接,级联代理,传输加密 (A small volume, fast, stable, efficient, and lightweight intranet penetration, port forwarding tool supports multiple connections, cascading proxy, and transmission encryption)
phith0n/JavaThings
Share Things Related to Java - Java安全漫谈笔记相关内容
ASTTeam/CodeQL
《深入理解CodeQL》Finding vulnerabilities with CodeQL.
lqqyt2423/go-mitmproxy
mitmproxy implemented with golang. 用 Golang 实现的中间人攻击(Man-in-the-middle),解析、监测、篡改 HTTP/HTTPS 流量。
shimmeris/SCFProxy
A proxy tool based on cloud function.
broken5/bscan
LeadroyaL/fastjson-blacklist
Tas9er/ByPassBehinder4J
冰蝎Java WebShell自动化免杀生成
HXSecurity/DongTai-agent-java
Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.
LandGrey/spring-boot-upload-file-lead-to-rce-tricks
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
czz1233/GBByPass
冰蝎 哥斯拉 WebShell bypass
lovechoudoufu/cobaltstrike4.4_cdf
cobaltstrike4.x版本破解、去除checksum8特征、bypass BeaconEye、修复错误路径泄漏stage、增加totp双因子认证
ASTTeam/SAST
《深入理解SAST静态应用安全测试》Static Application Security Testing.
baidu-security/openrasp-testcases
OpenRASP 漏洞测试环境
PDWR/AVKiller
利用图形化识别技术快速关闭目标机器上的杀毒软件
RyanJarv/cdn-proxy
Bypass CDN and WAF restrictions using CDN re-fronting.
hudangwei/codemillx
codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)
atlassion/brute-selenium
通过selenium实现Web登陆界面爆破