Pinned Repositories
AD-Attack-Defense
Attack and defend active directory using modern post exploitation adversary tradecraft activity
akabe1-semgrep-rules
My collection of Semgrep rules for vulnerability detection on source code (swift, java)
AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
AllThingsSSRF
This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
android-examples
:shipit: [Examples] Simple basic isolated apps, for budding android devs.
android-kernel-exploitation
Android Kernel Exploitation
Android-Penetration-Testing
Android-Reports-and-Resources
A big list of Android Hackerone disclosed reports and other resources.
Android-Security-Exploits-YouTube-Curriculum
🔓A curated list of modern Android exploitation conference talks.
awesome-api-security
A collection of awesome API Security tools and resources.
ethan-1106's Repositories
ethan-1106/akabe1-semgrep-rules
My collection of Semgrep rules for vulnerability detection on source code (swift, java)
ethan-1106/AllAboutBugBounty
All about bug bounty (bypasses, payloads, and etc)
ethan-1106/Android-Security-Exploits-YouTube-Curriculum
🔓A curated list of modern Android exploitation conference talks.
ethan-1106/Android-Vulnerability-Mining
Android APP漏洞之战系列,主要讲述如何快速挖掘APP漏洞
ethan-1106/appmon
[Mobile App Monitor for BB]
ethan-1106/BucketLoot
BucketLoot is an automated S3-compatible bucket inspector that can help users extract assets, flag secret exposures and even search for custom keywords as well as Regular Expressions from publicly-exposed storage buckets by scanning files that store data in plain-text.
ethan-1106/Certified-Kubernetes-Security-Specialist
Curated resources help you prepare for the CNCF/Linux Foundation CKS 2021 "Kubernetes Certified Security Specialist" Certification exam. Please provide feedback or requests by raising issues, or making a pull request. All feedback for improvements are welcome. thank you.
ethan-1106/Commodity-Injection-Signatures
Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XSLT
ethan-1106/game-hacking
Tutorials, tools, and more as related to reverse engineering video games.
ethan-1106/ghidra-scripts
A collection of my Ghidra scripts to facilitate reverse engineering and vulnerability research.
ethan-1106/HackersCave4StaticAndroidSec
A comprehensive resource for Android static analysis and vulnerability assessment. Tutorials, tools, and resources for identifying and mitigating security vulnerabilities in Android applications.
ethan-1106/HackJava
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
ethan-1106/java-sec-code
Java web common vulnerabilities and security code which is base on springboot and spring security
ethan-1106/k8s-tutorials
k8s tutorials | k8s 教程
ethan-1106/medusa
Binary instrumentation framework based on FRIDA
ethan-1106/MobileCTF
体系化、实战化、step by step、目标清晰且具体的一个打怪升级、成长路径规划图
ethan-1106/my-re0-k8s-security
:atom: [WIP] 整理过去的分享,从零开始的Kubernetes攻防 🧐
ethan-1106/papers_and_slides
ethan-1106/Payloads
Payload Arsenal for Pentration Tester and Bug Bounty Hunters
ethan-1106/recon-pipeline
An automated target reconnaissance pipeline.
ethan-1106/reconftw
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
ethan-1106/related_work
Slides and videos from my public speeches / conferences
ethan-1106/semgrep-rules
Semgrep rules registry
ethan-1106/semgrep-rules-android-security
A collection of Semgrep rules derived from the OWASP MASTG specifically for Android applications.
ethan-1106/silent-spring
Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
ethan-1106/vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
ethan-1106/waf-bypass
Check your WAF before an attacker does
ethan-1106/wafer
ethan-1106/Weblogic
Weblogic Serialization Vulnerability
ethan-1106/XSStrike
Most advanced XSS scanner - Customization