chuangwen

chuangwen's Stars

• chuangwen/godlp

  sensitive information protection toolkit

  1

• bytedance/godlp

  sensitive information protection toolkit

  Language:Go964154

• Ullaakut/Gorsair

  Gorsair gives root access on remote docker containers that expose their APIs

  Language:Go85271

• dosec-cn/harbor-scanner

  一个免费的镜像漏洞扫描工具, 可以扫描镜像中已安装软件包的漏洞，支持中文漏洞库，可与 Harbor 无缝集成。

  10515

• dbsystel/trivy-vulnerability-explorer

  Web application that allows to load a Trivy report in json format and displays the vulnerabilities of a single target in an interactive data table.

  Language:TypeScript11639

• qax-os/goreporter

  A Golang tool that does static analysis, unit testing, code review and generate code quality report.

  Language:Go3.1k271

• zhengjim/camille

  基于Frida的Android App隐私合规检测辅助工具

  Language:JavaScript1.5k253

• aquasecurity/fanal

  Static Analysis Library for Containers

  Language:Go199100

• scumjr/dirtycow-vdso

  PoC for Dirty COW (CVE-2016-5195)

  Language:C493145

• krol3/devsecops-resources

  A list of resources blogs talks material about DevSecOps

  8734

• krol3/container-security-checklist

  Checklist for container security - devsecops practices

  1.5k220

• krol3/kubernetes-security-checklist

  Awesome resources about Security in Kubernetes

  4012

• neex/http2smugl

  Language:Go52873

• arthepsy/CVE-2021-4034

  PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec (CVE-2021-4034)

  Language:C1.1k306

• berdav/CVE-2021-4034

  CVE-2021-4034 1day

  Language:C2k512

• aquasecurity/trivy

  Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

  Language:Go24.1k2.4k

• IronCore864/k8s-security-demo

  Language:Go54

• aquasecurity/kube-bench

  Checks whether Kubernetes is deployed according to security best practices as defined in the CIS Kubernetes Benchmark

  Language:Go7.2k1.2k

• back2root/log4shell-rex

  PCRE RegEx matching Log4Shell CVE-2021-44228 IOC in your logs

  Language:Java29130

• welk1n/JNDI-Injection-Exploit

  JNDI注入测试工具（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc）

  Language:Java2.6k726

• mubix/CVE-2021-44228-Log4Shell-Hashes

  Hashes for vulnerable LOG4J versions

  15435

• huntresslabs/log4shell-tester

  Language:Java36079

• adilsoybali/Log4j-RCE-Scanner

  Remote command execution vulnerability scanner for Log4j.

  Language:Shell25455

• silentsignal/burp-log4shell

  Log4Shell scanner for Burp Suite

  Language:Kotlin48072

• fullhunt/log4j-scan

  A fully automated, accurate, and extensive scanner for finding log4j RCE CVE-2021-44228

  Language:Python3.4k740

• unixhot/waf

  使用Nginx+Lua实现的WAF（版本v1.0）

  Language:Lua1.4k509

• beego/beego

  beego is an open-source, high-performance web framework for the Go programming language.

  Language:Go31.7k5.6k

• disposable-email-domains/disposable-email-domains

  a list of disposable and temporary email address domains

  Language:Python3.3k582

• filecoin-project/lotus

  Reference implementation of the Filecoin protocol, written in Go

  Language:Go2.9k1.3k

• wallarm/gotestwaf

  An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses

  Language:Go1.6k219