DauHoangTai

DauHoangTai's Stars

• Snailclimb/JavaGuide

  「Java学习+面试指南」一份涵盖大部分 Java 程序员所需要掌握的核心知识。准备 Java 面试，首选 JavaGuide！

  Language:Java146k4.5k1k45.5k

• s0md3v/Arjun

  HTTP parameter discovery suite.

  Language:Python5.1k87142780

• wy876/POC

  收集整理漏洞EXP/POC,大部分漏洞来源网络，目前收集整理了1000多个poc/exp，长期更新。

  3.4k14511717

• epinna/weevely3

  Weaponized web shell

  Language:Python3.2k131138604

• nicocha30/ligolo-ng

  An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

  Language:Go2.6k2382260

• threedr3am/learnjavabug

  Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。

  Language:Java2.6k746489

• onhexgroup/Conferences

  Conference presentation slides

  1.4k582235

• pd4d10/debugtron

  Debug in-production Electron based app

  Language:TypeScript1.4k1624105

• lem0nSec/ShellGhost

  A memory-based evasion technique which makes shellcode invisible from process start to end.

  Language:C1.1k93135

• projectdiscovery/mapcidr

  Utility program to perform multiple operations for a given subnet/CIDR ranges.

  Language:Go973254892

• fiddyschmitt/File-Tunnel

  Tunnel TCP connections through a file

  Language:C#849112971

• blendin/3snake

  Tool for extracting information from newly spawned processes

  Language:C718248110

• 4ra1n/mysql-fake-server

  MySQL Fake Server (纯Java实现，支持GUI版和命令行版，提供Dockerfile，支持多种常见JDBC利用)

  Language:Java6527675

• allyshka/Rogue-MySql-Server

  MySQL fake server for read files of connected clients

  Language:Python58260149

• ambionics/cnext-exploits

  Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()

  Language:Python3617449

• BeichenDream/Chunk-Proxy

  Language:Java2805340

• coffinxp/payloads

  2437066

• xnl-h4ck3r/knoxnl

  This is a python wrapper around the amazing KNOXSS API by Brute Logic

  Language:Python20742232

• chainreactors/zombie

  The most powerful bruteforcer / password sprayer TOOL

  Language:Go191111112

• exd0tpy/CTF-browser-challenges

  Collection of browser challenges

  Language:JavaScript12115

• fakhrizulkifli/Defeating-PHP-GD-imagecreatefromgif

  Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromgif()

  Language:PHP1208129

• CharanRayudu/Custom-Nuclei-Templates

  1153233

• hackthebox/business-ctf-2024

  Official writeups for Business CTF 2024: The Vault Of Hope

  Language:Solidity1154029

• Lotus6/FileMonitor

  Java命令行文件监控小工具(代码审计)

  922110

• codewhitesec/HttpRemotingObjRefLeak

  Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)

  Language:Python801214

• rapidwebltd/php-switch-scripts

  🔄 Scripts to aid in the setup of and switching between multiple PHP versions in Ubuntu 14.04 LTS or newer

  Language:Shell6910150

• cfreal/ten

  A (small) web exploit framework

  Language:Python67437

• BaadMaro/CTF

  CTF Writeups

  Language:JavaScript554010

• Peaky-XD/webshell

  A collection of webshell

  Language:PHP491012

• StroppaFR/mathrandomcrack

  Cracking V8 Math.random() from arbitrary bit leaks

  Language:Python10