BATCarloX's Stars
Anduin2017/HowToCook
程序员在家做饭方法指南。Programmer's guide about how to cook at home (Simplified Chinese only).
projectdiscovery/nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
cckuailong/Learning
好文章收集整理
pxiaoer/tobeCTFer
CTFer成长之路
tarunkant/Gopherus
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
yaofeifly/PHP_Code_Challenge
总结一些php代码审计ctf练习题
Ignitetechnologies/CTF-Difficulty
This cheasheet is aimed at the CTF Players and Beginners to help them sort the CTF Challenges on the basis of Difficulties.
bowu678/php_bugs
PHP代码审计分段讲解
Ignitetechnologies/Web-Application-Cheatsheet
This cheatsheet is aimed at the CTF Players and Beginners to help them understand Web Application Vulnerablity with examples.
FlappyPig/CTF_SPECIAL_TRAINING_CAMP
《 CTF 特训营 》一书练习文件
swagkarna/Defeat-Defender-V1.2.0
Powerful batch script to dismantle complete windows defender protection and even bypass tamper protection ..Disable Windows-Defender Permanently....Hack windows. POC
swagkarna/Telegram_User_Number_Finder
Find the phone number of any telegram users
aleenzz/Cobalt_Strike_wiki
Cobalt Strike系列
9emin1/charlotte
c++ fully undetected shellcode launcher ;)
alphaSeclab/cobalt-strike
Resources About Cobalt Strike. 100+ Tools And 200+ Posts.
521xueweihan/HelloGitHub
:octocat: 分享 GitHub 上有趣、入门级的开源项目。Share interesting, entry-level open source projects on GitHub.
heroanswer/XSS_Cheat_Sheet_2020_Edition
xss漏洞模糊测试payload的最佳集合 2020版
darlinghq/darling
Darwin/macOS emulation layer for Linux
c0ny1/xxe-lab
一个包含php,java,python,C#等各种语言版本的XXE漏洞Demo
c0ny1/upload-fuzz-dic-builder
上传漏洞fuzz字典生成脚本
SkewwG/Bypass
过各waf注入上传等
7kbstorm/7kbscan-WebPathBrute
7kbscan-WebPathBrute Web路径暴力探测工具
TheKingOfDuck/fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
TEag1e/BurpCollector
通过BurpSuite来构建自己的爆破字典,可以通过字典爆破来发现隐藏资产。
maK-/parameth
This tool can be used to brute discover GET and POST parameters
1N3/IntruderPayloads
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
PortSwigger/param-miner
Snowming04/The-Hacker-Playbook-3-Translation
对 The Hacker Playbook 3 的翻译。
GitSquared/edex-ui
A cross-platform, customizable science fiction terminal emulator with advanced monitoring & touchscreen support.