blackw4tch's Stars
shadowsocks/shadowsocks
hiyouga/LLaMA-Factory
Efficiently Fine-Tune 100+ LLMs in WebUI (ACL 2024)
ffuf/ffuf
Fast web fuzzer written in Go
semgrep/semgrep
Lightweight static analysis for many languages. Find bug variants with patterns that look like source code.
tennc/webshell
This is a webshell open source project
AlessandroZ/LaZagne
Credentials recovery project
vvbbnn00/WARP-Clash-API
该项目可以让你通过订阅的方式使用Cloudflare WARP+,自动获取流量。This project enables you to use Cloudflare WARP+ through subscription, automatically acquiring traffic.
github/codeql
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
deathmarine/Luyten
An Open Source Java Decompiler Gui for Procyon
gh0stkey/Web-Fuzzing-Box
Web Fuzzing Box - Web 模糊测试字典与一些Payloads
leibnitz27/cfr
This is the public repository for the CFR Java decompiler
joernio/joern
Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc
shmilylty/netspy
netspy是一款快速探测内网可达网段工具(深信服深蓝实验室天威战队强力驱动)
Y4tacker/JavaSec
a rep for documenting my study, may be from 0 to 0.1
doyensec/inql
InQL is a robust, open-source Burp Suite extension for advanced GraphQL testing, offering intuitive vulnerability detection, customizable scans, and seamless Burp integration.
swisskyrepo/GraphQLmap
GraphQLmap is a scripting engine to interact with a graphql endpoint for pentesting purposes. - Do not use for illegal testing ;)
Stardustsky/SaiDict
弱口令,敏感目录,敏感文件等渗透测试常用攻击字典
ly4k/PwnKit
Self-contained exploit for CVE-2021-4034 - Pkexec Local Privilege Escalation
CodeIntelligenceTesting/jazzer
Coverage-guided, in-process fuzzing for the JVM
mstrobel/procyon
Procyon is a suite of Java metaprogramming tools, including a rich reflection API, a LINQ-inspired expression tree API for runtime code generation, and a Java decompiler.
eeeeeeeeee-code/e0e1-wx
微信小程序辅助渗透-自动化
aleenzz/MSSQL_SQL_BYPASS_WIKI
MSSQL注入提权,bypass的一些总结
team-ide/teamide
Team IDE 集成MySql、Oracle、金仓、达梦、神通等数据库、SSH、FTP、Redis、Zookeeper、Kafka、Elasticsearch、Mongodb、小工具等管理工具
adysec/nuclei_poc
Nuclei POC,每日更新 | 自动整合全网Nuclei的漏洞POC,实时同步更新最新POC,保存已被删除的POC。通过批量克隆Github项目,获取Nuclei POC,并将POC按类别分类存放,使用Github Action实现(已有11wPOC,已校验有效性并去重)
scopion/dic
渗透字典,框架信息泄露,备份文件泄露,配置文件泄露。字典
go-gost/gost-ui
web ui for GOST API management
luke-goddard/LFI-Fuzzer-Burp-Suite
Local File Inclusion Burp-Suite Intruder Payload Generator Plugin
theshi-1128/ABJ-Attack
Figure it out: Analyzing-based Jailbreak Attack on Large Language Models
Sweetaroo/VulDetectBench
A Novel Benchmark evaluating the Deep Capability of Vulnerability Detection with Large Language Models
r3x5ur/unveilr