Tom4t0's Stars
fiddyschmitt/File-Tunnel
Tunnel TCP connections through a file
lijiejie/BBScan
A fast vulnerability scanner helps pentesters pinpoint possibly vulnerable targets from a large number of web servers
0x727/FingerprintHub
侦查守卫(ObserverWard)的指纹库
alipay/ant-application-security-testing-benchmark
xAST评价体系,让安全工具不再“黑盒”. The xAST evaluation benchmark makes security tools no longer a "black box".
Ridter/atexec-pro
Fileless atexec, no more need for port 445
cncf/tag-security
🔐CNCF Security Technical Advisory Group -- secure access, policy control, privacy, auditing, explainability and more!
h4wkst3r/SCMKit
Source Code Management Attack Toolkit
l3yx/jdwp-codeifier
基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)
Sysinternals/ProcDump-for-Linux
A Linux version of the ProcDump Sysinternals tool
Ridter/RelayX
NTLM relay test.
pascal-lab/Tai-e-assignments
Tai-e assignments for static program analysis
Clouditera/SecGPT
SecGPT网络安全大模型
google/sanitizers
AddressSanitizer, ThreadSanitizer, MemorySanitizer
pascal-lab/Tai-e
An easy-to-learn/use static analysis framework for Java
krahets/hello-algo
《Hello 算法》:动画图解、一键运行的数据结构与算法教程。支持 Python, Java, C++, C, C#, JS, Go, Swift, Rust, Ruby, Kotlin, TS, Dart 代码。简体版和繁体版同步更新,English version ongoing
zeek/zeek
Zeek is a powerful network analysis framework that is much different from the typical IDS you may know.
OWASP-Benchmark/BenchmarkJava
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
phith0n/vueinfo
Extract website information from Vue
BishopFox/CVE-2023-3519
RCE exploit for CVE-2023-3519
pen4uin/java-memshell-generator
一款支持高度自定义的 Java 内存马生成工具|A highly customizable Java memory-shell generation tool.
kyo-w/router-router
Java web路由内存分析工具
Stealerium/Stealerium
Stealer + Clipper + Keylogger
veo/wsMemShell
WebSocket 内存马/Webshell,一种新型内存马/WebShell技术
achuna33/Memoryshell-JavaALL
收集内存马打入方式
BeichenDream/GodzillaMemoryShellProject
jaywcjlove/reference
为开发人员分享快速参考备忘清单(速查表)
RedTeamPentesting/resocks
mTLS-Encrypted Back-Connect SOCKS5 Proxy
yaklang/yaklang
A programming language exclusively designed for cybersecurity
DataDog/dd-trace-java
Datadog APM client for Java
OpenLiberty/open-liberty
Open Liberty is a highly composable, fast to start, dynamic application server runtime environment