Pinned Repositories
BurpSuite-Team-Extension
This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes through your Burpsuite instance will be replicated in the history of the other testers and vice-versa!
crawlergo
A powerful browser crawler for web vulnerability scanners
CVE-2017-12617
Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution
cvelist
Pilot program for CVE submission through GitHub
DInjector
Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL
HackJava
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
jspanda
client-side prototype pullution vulnerability scanner
JSPKiller
基于污点分析的JSP Webshell检测工具,模拟JVM的栈帧操作进行数据流分析,可以检测出各种变形的JSP Webshell
medusa
Binary instrumentation framework based on FRIDA
Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
icezhaoL's Repositories
icezhaoL/Mobile-Security-Framework-MobSF
Mobile Security Framework (MobSF) is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing, malware analysis and security assessment framework capable of performing static and dynamic analysis.
icezhaoL/WikiZim-SUC
icezhaoL/BurpSuite-Team-Extension
This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes through your Burpsuite instance will be replicated in the history of the other testers and vice-versa!
icezhaoL/crawlergo
A powerful browser crawler for web vulnerability scanners
icezhaoL/CVE-2017-12617
Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution
icezhaoL/cvelist
Pilot program for CVE submission through GitHub
icezhaoL/DInjector
Collection of shellcode injection techniques packed in a D/Invoke weaponized DLL
icezhaoL/HackJava
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
icezhaoL/jspanda
client-side prototype pullution vulnerability scanner
icezhaoL/JSPKiller
基于污点分析的JSP Webshell检测工具,模拟JVM的栈帧操作进行数据流分析,可以检测出各种变形的JSP Webshell
icezhaoL/medusa
Binary instrumentation framework based on FRIDA
icezhaoL/notify
Notify is a helper utility written in Go that allows you to pull results from burp collaborator instances and post them to Slack and Discord.
icezhaoL/phosphor
Phosphor: Dynamic Taint Tracking for the JVM
icezhaoL/soot
Soot - A Java optimization framework
icezhaoL/wordlists
Automated & Manual Wordlists provided by Assetnote