AJDecade's Stars
frohoff/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Mr-xn/Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
projectdiscovery/naabu
A fast port scanner written in go with a focus on reliability and simplicity. Designed to be used in combination with other tools for attack surface discovery in bug bounties and pentests
hanc00l/wooyun_public
This repo is archived. Thanks for wooyun! 乌云公开漏洞、知识库爬虫和搜索 crawl and search for wooyun.org public bug(vulnerability) and drops
internetwache/GitTools
A repository with 3 tools for pwn'ing websites with .git repositories available
FeeiCN/Security-PPT
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
tarunkant/Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
knownsec/ksubdomain
无状态子域名爆破工具
LoRexxar/Kunlun-M
KunLun-M是一个完全开源的静态白盒扫描工具,支持PHP、JavaScript的语义扫描,基础安全、组件安全扫描,Chrome Ext\Solidity的基础扫描。
zhzyker/dismap
Asset discovery and identification tools 快速识别 Web 指纹信息,定位资产类型。辅助红队快速定位目标资产信息,辅助蓝队发现疑似脆弱点
safe6Sec/Fastjson
Fastjson姿势技巧集合
threedr3am/JSP-WebShells
Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
bit4woo/python_sec
python安全和代码审计相关资料收集 resource collection of python security and code review
xdavidhu/awesome-google-vrp-writeups
🐛 A list of writeups from the Google VRP Bug Bounty program
client9/libinjection
SQL / SQLI tokenizer parser analyzer
safe6Sec/PentestDB
各种数据库的利用姿势
jiangsir404/Audit-Learning
记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获
Kevin-fqh/learning-k8s-source-code
k8s、docker源码分析、读书笔记
safe6Sec/CodeqlNote
Codeql学习笔记
safe6Sec/GolangBypassAV
研究利用golang各种姿势bypassAV
wumansgy/goEncrypt
go语言封装的各种对称加密和非对称加密,可以直接使用,包括3重DES,AES的CBC和CTR模式,还有RSA非对称加密,ECC椭圆曲线的加密和数字签名
r0eXpeR/fingerprint
各种工具指纹收集分享
jeansgit/RedTeam
RedTeam资料收集整理
NEALWE/AWD_FrameWork
近乎无解的AWD框架
m4p1e/php-exploit
some fun php exploits