f0ur0four's Stars
Contrast-Security-OSS/joogle
A static analysis API for finding deserialization attack gadgets
public-apis/public-apis
A collective list of free APIs
nicolasff/pysha1
Exploiting SHA-1-signed messages
hugsy/jdwp-shellifier
limitedeternity/HeapLAB
Udemy – Linux Heap Exploitation
wyzxxz/shiro_rce_tool
shiro 反序列 命令执行辅助检测工具
welk1n/JNDI-Injection-Bypass
Some payloads of JNDI Injection in JDK 1.8.0_191+
jailctf/pyjailbreaker
Python sandbox escape wiki + payload generator
Whoopsunix/PPPYSO
proof-of-concept for generating Java deserialization payload | Proxy MemShell
drtychai/browser-exploitation
A collection of curated resources and CVEs I use for research.
c0ny1/FastjsonExploit
Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)
Ice1187/TW-Security-and-CTF-Resource
台灣資安 / CTF 學習資源整理
cranelab/exploit-development
esoteric
pwang00/Cryptographic-Attacks
Repository containing implementation of attacks on modern public key cryptosystems and symmetric key ciphers.
laluka/bypass-url-parser
bypass-url-parser
jvdsn/crypto-attacks
Python implementations of cryptographic attacks and utilities.
Ivan1ee/Sharp4SoapShell
4个 .soap 版本的WebShell(持续更新维护),优点:可以运行于子目录,突破了过去只能运行于根目录的限制。4个脚本分别支持调用cmd.exe/哥斯拉/冰蝎/天蝎 客户端。
ByamB4/Common-CTF-Challenges
Common CTF Challenges is a collection of tools and resources to help individuals improve their Capture the Flag (CTF) skills. Our tools cover a wide range of challenges, from cryptography to reverse engineering.
xy-241/CS-Notes
My Second Brain for Computer Science related stuff. Zero bullshit, short and sweet.
BlockApex/Audit-Reports
Security Audit reports by BlockApex
botesjuan/Burp-Suite-Certified-Practitioner-Exam-Study
Burp Suite Certified Practitioner Exam Study
CHYbeta/Code-Audit-Challenges
Code-Audit-Challenges
jthack/ffufai
AI-powered ffuf wrapper
l3m0n/Bypass_Disable_functions_Shell
一个各种方式突破Disable_functions达到命令执行的shell
attackercan/regexp-security-cheatsheet
Y4tacker/JavaSec
a rep for documenting my study, may be from 0 to 0.1
QAX-A-Team/WeblogicEnvironment
Weblogic环境搭建工具
ambionics/wrapwrap
Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.
practical-tutorials/project-based-learning
Curated list of project-based tutorials
dionach/CMSmap
CMSmap is a python open source CMS scanner that automates the process of detecting security flaws of the most popular CMSs.