Pinned Repositories
execjs
参考PyExecJS,提供GO调用javascript的能力
go-cves
收录go语言编写的项目、框架和组件出现的cve,或者一些相关的利用方式的文章
go-mitm
a mitm proxy for http/https written in go
go-sec-code
Go-sec-code is a project for learning Go vulnerability code.
goot
a dataflow analysis framework implemented in Go, like soot
goutil
💪 Helper Utils For Go: int, string, array/slice, map, struct, dump, convert/format, error, web/http, cli/flag, OS/ENV, filesystem, system, test/assert, time and more. Go 常用的一些工具函数,数字,字符串,数组,Map,文件,错误,时间日期,特殊处理,格式化,常用信息获取等等
LibAFL-Learn
一个中文版本的 LibAFL 笔记,主要内容是 LibAFL 原理相关的内容,同时也附加一些 LibAFL 使用方面的 tips ,方便查阅和参考。
logi
Logi is a LDAP/MySQL server focusing on pingback deserialize recon and exploit.
my-ctf-challenges
Archive of some ctf challenges, provided by me.
pyyso
pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550, CommonsBeanutils1 no cc, JRMPClient, high version JDK Bypass, Fake MySQL for JDBC attack
cokeBeer's Repositories
cokeBeer/pyyso
pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550, CommonsBeanutils1 no cc, JRMPClient, high version JDK Bypass, Fake MySQL for JDBC attack
cokeBeer/go-sec-code
Go-sec-code is a project for learning Go vulnerability code.
cokeBeer/go-cves
收录go语言编写的项目、框架和组件出现的cve,或者一些相关的利用方式的文章
cokeBeer/goot
a dataflow analysis framework implemented in Go, like soot
cokeBeer/LibAFL-Learn
一个中文版本的 LibAFL 笔记,主要内容是 LibAFL 原理相关的内容,同时也附加一些 LibAFL 使用方面的 tips ,方便查阅和参考。
cokeBeer/execjs
参考PyExecJS,提供GO调用javascript的能力
cokeBeer/logi
Logi is a LDAP/MySQL server focusing on pingback deserialize recon and exploit.
cokeBeer/go-mitm
a mitm proxy for http/https written in go
cokeBeer/my-ctf-challenges
Archive of some ctf challenges, provided by me.
cokeBeer/goutil
💪 Helper Utils For Go: int, string, array/slice, map, struct, dump, convert/format, error, web/http, cli/flag, OS/ENV, filesystem, system, test/assert, time and more. Go 常用的一些工具函数,数字,字符串,数组,Map,文件,错误,时间日期,特殊处理,格式化,常用信息获取等等
cokeBeer/ReconAIzer
A Burp Suite extension to add OpenAI (GPT) on Burp and help you with your Bug Bounty recon to discover endpoints, params, URLs, subdomains and more!
cokeBeer/Smap
a drop-in replacement for Nmap powered by shodan.io
cokeBeer/argument-injection-vectors
A curated list of argument injection vectors
cokeBeer/cent
Community edition nuclei templates, a simple tool that allows you to organize all the Nuclei templates offered by the community in one place
cokeBeer/codeql-go
The CodeQL extractor and libraries for Go.
cokeBeer/cokeBeer
cokeBeer/eagle
🦅 A microservice framework for Go
cokeBeer/gitleaks
Protect and discover secrets using Gitleaks 🔑
cokeBeer/hertzbeat
An open source, real-time monitoring system with custom-monitor and agentless. Web, database, os, middleware, cloudnative, network and more.
cokeBeer/java-benchmarks
cokeBeer/JNDIEXP
JDNI在java高版本的利用工具,FUZZ利用链
cokeBeer/OneForAll
OneForAll是一款功能强大的子域收集工具
cokeBeer/paascloud-config
cokeBeer/public-bugbounty-programs
Community curated list of public bug bounty and responsible disclosure programs.
cokeBeer/scalpel
scalpel是一款命令行扫描器,支持深度参数注入,拥有一个强大的数据解析和变异算法,可以将常见的数据格式(json, xml, form等)解析为树结构,然后根据poc中的规则,对树进行变异,包括对叶子节点和树结构 的变异。变异完成之后,将树结构还原为原始的数据格式。 原理:https://mp.weixin.qq.com/s/U_llBwC05vb84U9wb8NZog
cokeBeer/SSRF-Testing
SSRF (Server Side Request Forgery) testing resources
cokeBeer/Tai-e
An easy-to-learn/use static analysis framework for Java
cokeBeer/test
test
cokeBeer/ysomap
A helpful Java Deserialization exploit framework.
cokeBeer/ysoserial
ysoserial修改版,着重修改ysoserial.payloads.util.Gadgets.createTemplatesImpl使其可以通过引入自定义class的形式来执行命令、内存马、反序列化回显。