Pinned Repositories
azure-iot-middleware-freertos
Azure IoT Middleware for FreeRTOS
ctf-wiki
Come and join us, we need you!
devcontainer
docker
docker build repo for v2fly
godnslog
An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
hex0wn
Config files for my GitHub profile.
hex0wn.github.io
laravel-debug-rce
laravel debug rce caused by Ignition
learn-java-bug
hex0wn's Repositories
hex0wn/learn-java-bug
hex0wn/laravel-debug-rce
laravel debug rce caused by Ignition
hex0wn/azure-iot-middleware-freertos
Azure IoT Middleware for FreeRTOS
hex0wn/ctf-wiki
Come and join us, we need you!
hex0wn/devcontainer
hex0wn/docker
docker build repo for v2fly
hex0wn/godnslog
An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
hex0wn/hex0wn
Config files for my GitHub profile.
hex0wn/hex0wn.github.io
hex0wn/jackson
Main Portal page for the Jackson project
hex0wn/laravel-8.4.2-rce
hex0wn/lespas
Les Pas, photo album app for Nextcloud user
hex0wn/php-the-right-way
收集 PHP 最佳实践、编码规范和权威学习指南,方便 PHP 开发者阅读和查找
hex0wn/PoC
Proofs-of-concept
hex0wn/probe
hex0wn/ReSign
A burp extender that recalculate signature value automatically after you modified request parameter value.
hex0wn/rhizobia_P
PHP安全SDK及编码规范
hex0wn/taint_for_php7.0
1、sprintf、vsprintf这两个函数在使用%d时,存在强制转换为int型,但是,taint无法识别 针对此问题,我对sprintf和vsprintf的逻辑判断进行更改, 2、使用针对XSS的过滤函数时,sql注入的漏洞无法检测 在php_taint.h中新加了多个污染位置 3、使用base64_decode、json_decode、urldecode进行处理后的参数,无法检测漏洞 对这三个函数的返回结果分别进行hook
hex0wn/tmp
hex0wn/vtest
用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
hex0wn/waf-brain
Machine Learning WAF Based
hex0wn/waf-by-lstm
利用LSTM网络实现的在线WAF
hex0wn/webshell
This is a webshell open source project
hex0wn/Wooyun-Email-XSS-Dataset
Wooyun Email XSS Dataset