foolb

foolb's Stars

• zincsearch/zincsearch

  ZincSearch . A lightweight alternative to elasticsearch that requires minimal resources, written in Go.

  Language:Go17.1k742

• wh1t3p1g/tabby

  A CAT called tabby ( Code Analysis Tool )

  Language:Java1.3k152

• golang101/golang101

  Go语言101 : 一个与时俱进的Go编程知识库

  Language:HTML4.7k446

• projectdiscovery/nuclei-templates

  Community curated list of templates for the nuclei engine to find security vulnerabilities.

  Language:JavaScript9.6k2.7k

• fortra/nanodump

  The swiss army knife of LSASS dumping

  Language:C1.8k243

• gh0stkey/Command2API

  Command2API - 万物皆可API

  Language:Python25542

• opensec-cn/conote-community

  Conote 综合安全测试平台社区版。

  Language:CSS37263

• f0ng/log4j2burpscanner

  CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks

  Language:Java810111

• Cybereason/Logout4Shell

  Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell

  Language:Java1.7k111

• Mr-xn/JNDIExploit-1

  一款用于 JNDI注入 利用的工具，大量参考/引用了 Rogue JNDI 项目的代码，支持直接植入内存shell，并集成了常见的bypass 高版本JDK的方式，适用于与自动化工具配合使用。（from https://github.com/feihong-cs/JNDIExploit）

  Language:Java291128

• welk1n/JNDI-Injection-Bypass

  Some payloads of JNDI Injection in JDK 1.8.0_191+

  Language:Java47582

• welk1n/JNDI-Injection-Exploit

  JNDI注入测试工具（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc）

  Language:Java2.6k726

• gpakosz/.tmux

  Oh my tmux! My self-contained, pretty & versatile tmux configuration made with 💛🩷💙🖤❤️🤍

  Language:Shell22.4k3.4k

• hvqzao/burp-wildcard

  Burp extension intended to compact Burp extension tabs by hijacking them to own tab.

  Language:Java12815

• Ascotbe/Medusa

  :cat2:Medusa是一个红队武器库平台，目前包括XSS平台、协同平台、CVE监控、免杀生成、DNSLOG、钓鱼邮件、文件获取等功能，持续开发中

  Language:Python2.2k338

• GhostPack/Seatbelt

  Seatbelt is a C# project that performs a number of security oriented host-survey "safety checks" relevant from both offensive and defensive security perspectives.

  Language:C#3.9k707

• taielab/Taie-Bugbounty-killer

  挖掘国内外漏洞平台必备的自动化捡钱赏金技巧，看了并去做了捡钱如喝水。

  41033

• FDlucifer/Proxy-Attackchain

  Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)

  Language:C#520106

• javaweb-sec/javaweb-sec

  Language:Java915165

• Ghost2097221/selfMimikatz

  自不量力的mimikatz分离计划

  Language:C++4413

• apsdehal/awesome-ctf

  A curated list of CTF frameworks, libraries, resources and softwares

  Language:JavaScript10k1.5k

• qazbnm456/awesome-web-security

  🐶 A curated list of Web Security materials and resources.

  11.6k1.7k

• 0xInfection/Awesome-WAF

  🔥 Web-application firewalls (WAFs) from security standpoint.

  Language:Python6.4k1.1k

• foobarto/redteam-notebook

  Collection of commands, tips and tricks and references I found useful during preparation for OSCP exam.

  430127

• nahamsec/Resources-for-Beginner-Bug-Bounty-Hunters

  A list of resources for those interested in getting started in bug bounties

  10.9k1.9k

• cainiao3389/yonyou-nc-exp

  用友NC-OA漏洞利用

  Language:Python8719

• 0Chencc/DaE

  CTFCrackTools 's BurpSuite Plugin - Decode and Encode

  Language:Java826

• Liqunkit/LiqunShield

  下架

  14121

• zcgonvh/EfsPotato

  Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).

  Language:C#742122

• API-Security/APIKit

  APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

  Language:Java2k173