Startr4ck's Stars
Whoopsunix/JavaRce
Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
reers/ReerRouter
App URL router for iOS (Swift only). Register via Swift Macro
Groupguanfang/arkTS
VSCode鸿蒙ArkTS插件✨✍️支持各种补全/跳转⛺️支持codelinter检测代码错误🎵VSCode HarmonyOS ArkTS plugin for personal use ✨ supports source code navigation and completion ⛺️supports codelinter to detect errors
ReaJason/MemShellParty
Java 内存马开聚会 🎉
JoyChou93/java-sec-code
Java web common vulnerabilities and security code which is base on springboot and spring security
lemono0/FastJsonParty
FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本),主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用
phith0n/tls_proxy
A lightweight reverse proxy server that converts TLS traffic to TCP, allowing secure communication between clients and upstream servers.
wh1t3p1g/tabby
A CAT called tabby ( Code Analysis Tool )
kxcode/vulnhuntr-mod
Static Code Security Analysis Tool driven by LLM
binary-husky/gpt_academic
为GPT/GLM等LLM大语言模型提供实用化交互接口,特别优化论文阅读/润色/写作体验,模块化设计,支持自定义快捷按钮&函数插件,支持Python和C++等项目剖析&自译解功能,PDF/LaTex论文翻译&总结功能,支持并行问询多种LLM模型,支持chatglm3等本地模型。接入通义千问, deepseekcoder, 讯飞星火, 文心一言, llama2, rwkv, claude2, moss等。
kyrolabs/awesome-agents
🤖 Awesome list of AI Agents
Startr4ck/CVE_lists
Contribute to the security of open source software and record the security vulnerabilities encountered
cider-security-research/cicd-goat
A deliberately vulnerable CI/CD environment. Learn CI/CD security through multiple challenges.
danielmiessler/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
TEN-framework/TEN-Agent
TEN Agent is a conversational voice AI agent powered by TEN, integrating Deepseek, Gemini, OpenAI, RTC, and hardware like ESP32. It enables realtime AI capabilities like seeing, hearing, and speaking, and is fully compatible with platforms like Dify and Coze.
d2l-ai/d2l-zh
《动手学深度学习》:面向中文读者、能运行、可讨论。中英文版被70多个国家的500多所大学用于教学。
iliaishacked/sponge_examples
RICommunity/TAP
TAP: An automated jailbreaking method for black-box LLMs
ffhibnese/Model-Inversion-Attack-ToolBox
A comprehensive toolbox for model inversion attacks and defenses, which is easy to get started.
corca-ai/awesome-llm-security
A curation of awesome tools, documents and projects about LLM Security.
modelscope/agentscope
Start building LLM-empowered multi-agent applications in an easier way.
protectai/ai-exploits
A collection of real world AI/ML exploits for responsibly disclosed vulnerabilities
Clouditera/SecGPT
SecGPT网络安全大模型
CobblePot59/ADcheck
Assess the security of your Active Directory with few or all privileges.
it-ebooks-0/geektime-books
:books: 极客时间电子书
Startr4ck/impacket-rbcd
The original version of impact-ntlmrelayx only supported requests from machine accounts when playing through RBCD. Now I have made some small changes to enable it to support requests from user accounts.
kento996/xianzhi_assistant
这是一个基于先知社区知识构建的向量知识库
pkb1s/SharpRelay
0x727/UserRegEnum_0x727
域内普通域用户权限查找域内所有计算机上登录的用户
ANSSI-FR/AD-control-paths
Active Directory Control Paths auditing and graphing tools