Pinned Repositories
0ctf_2016_unserialize
0CTF 2016 Unserialize
arthas
Alibaba Java Diagnostic Tool Arthas/Alibaba Java诊断利器Arthas
ATTCK-PenTester-Book
ATTCK-PenTester-Book
awd_auto_attack_framework
AWD 自动化攻击框架
BJDCTF2020
A CTF freshman competition organized by Hangzhou Normal University, Jiangsu University of Science and Technology, and Jiangsu University
CNVD-2020-10487-Tomcat-Ajp-lfi
Tomcat-Ajp协议文件读取漏洞
codeql-queries
My CodeQL queries collection
CodeqlNote
Codeql学习笔记
CTF-
CTFTraining
CTF Training 经典赛题复现环境
P3rh4ps's Repositories
P3rh4ps/0ctf_2016_unserialize
0CTF 2016 Unserialize
P3rh4ps/arthas
Alibaba Java Diagnostic Tool Arthas/Alibaba Java诊断利器Arthas
P3rh4ps/ATTCK-PenTester-Book
ATTCK-PenTester-Book
P3rh4ps/awd_auto_attack_framework
AWD 自动化攻击框架
P3rh4ps/BJDCTF2020
A CTF freshman competition organized by Hangzhou Normal University, Jiangsu University of Science and Technology, and Jiangsu University
P3rh4ps/CNVD-2020-10487-Tomcat-Ajp-lfi
Tomcat-Ajp协议文件读取漏洞
P3rh4ps/codeql-queries
My CodeQL queries collection
P3rh4ps/CodeqlNote
Codeql学习笔记
P3rh4ps/CTF-
P3rh4ps/CTFTraining
CTF Training 经典赛题复现环境
P3rh4ps/CVE-2020-11651-CVE-2020-11652-EXP
CVE-2020-11651&&CVE-2020-11652 EXP
P3rh4ps/django-blog
django搭建博客
P3rh4ps/exploits
Pwn stuff.
P3rh4ps/JNDIExploit
一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。
P3rh4ps/JNDIMonitor
一个LDAP请求监听器,摆脱dnslog平台
P3rh4ps/learnjavabug
Java安全相关的漏洞和技术demo,其中包括原生Java、Fastjson、Jackson、Hessian2以及XML反序列化漏洞利用和Dubbo(Hessian2反序列化)、Shiro(PaddingOracleCBC)等框架的exploits,并且还有Java Security Manager绕过、Dubbo-Hessian2安全加固、RMI利用、tomcat漏洞利用等等实践代码。
P3rh4ps/MyCTFChallenges
P3rh4ps/OneForAll
OneForAll是一款功能强大的子域收集工具
P3rh4ps/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
P3rh4ps/PHP-Audit-Labs
一个关于PHP的代码审计项目
P3rh4ps/PoC
Our PoC for the vulnerable products
P3rh4ps/SpringBootVulExploit
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 checklist
P3rh4ps/Static-Analysis-and-Automated-Code-Audit
静态分析及代码审计自动化相关资料收集
P3rh4ps/txyl