Pinned Repositories
Altman
the webshell tool开源网站管理工具——Altman
arachni
Web Application Security Scanner Framework
edu-dns-zone-transfer
script to scan edu.cn DNS Servers
jsniffer
a simple sniffer programme written in Java 1.2+ with Jpap.
MachineCodeCal
Get the hardware information such cpu id ,cpu sn,mac,motherboard sn etc, then calculate the machine code,this method is useful in Software Registration.
ntrace
Command-line security tool to detect Cross-Site Tracing vulnerabilities, written in node.
stackoverflow
a simple program written in c to display the stack overflow attack .
truth
UEFIMalAnalysis
A program written in Qt 4.6 to detect UEFI malicious code statically.
jiangzhw's Repositories
jiangzhw/truth
jiangzhw/Apollo-11
Original Apollo 11 Guidance Computer (AGC) source code for the command and lunar modules.
jiangzhw/APT-Hunter
jiangzhw/APT_CyberCriminal_Campagin
jiangzhw/assimilate
Assimilate is a series of scripts for using the Naïve Bayes algorithm to find potential malicious activity in HTTP headers
jiangzhw/awesome-threat-detection
A curated list of awesome threat detection and hunting resources
jiangzhw/awesome-threat-intelligence
A curated list of Awesome Threat Intelligence resources
jiangzhw/Clearcut
机器学习分析http代理日志识别恶意活动,一个基础教程,用了nlp的一些特种处理方式加上tf-idf进行特征选择,然后丢进随机森林直接开跑。 讲了日志分析的基本套路,想入手日志分析的可以学习接触一下。基本套路就是 1. 把数据格式化成特征(tfidf就在这里用)这样机器就能处理日志了 2. 选择特征 3. 选择一个模型,一般NLP系列都是先SVM来一发调参 4. 选择合适的评价函数衡量模型好坏,并通过cross validation选择最优参数。链接: https://speakerdeck.com/davidjbianco/getting-started-with-machine-learning-for-incident-detection
jiangzhw/exe2hex
Inline file transfer using in-built Windows tools (DEBUG.exe or PowerShell).
jiangzhw/flexidie
Source code and binaries of FlexiSpy from the Flexidie dump
jiangzhw/fwpass
常见安全设备默认密码
jiangzhw/hashcat
Advanced CPU-based password recovery utility
jiangzhw/HELK
The Hunting ELK
jiangzhw/ioc_writer
openioc to yara
jiangzhw/ip2region
准确率99.9%的ip地址定位库,0.0x毫秒级查询,数据库文件大小只有1.5M,提供了java,php,c,python,nodejs,golang查询绑定和Binary,B树,内存三种查询算法,妈妈再也不用担心我的ip地址定位!
jiangzhw/maltrail
Malicious traffic detection system
jiangzhw/OSTrICa
jiangzhw/RATDecoders
Python Decoders for Common Remote Access Trojans
jiangzhw/reading-notes
list some notes
jiangzhw/scansio-sonar-splunk
Python scripts to download, parse, and enrich scans.io study data and load into Splunk for research, threat intelligence gathering, and security operations.
jiangzhw/searchku
searchku 社工库
jiangzhw/shadowsocks-heroku
一键部署,随处可用的 免费shadowsocks-heroku
jiangzhw/signature-base
Signature base for my scanner tools
jiangzhw/threat_intel-1
Threat Intelligence APIs
jiangzhw/threat_note
DPS' Lightweight Investigation Notebook
jiangzhw/uestc
关于你电的python库
jiangzhw/wooyun-drops-all-articles-package
wooyun drops all article package
jiangzhw/wooyun_public
乌云公开漏洞、知识库爬虫和搜索 crawl and search for wooyun.org public bug(vulnerability) and drops
jiangzhw/wordbrutepress
Wordpress Brute Force Multithreading with standard and xml-rpc login
jiangzhw/ZeroAccess
ZeroAccess v3 toolkit 著名网络木马ZeroAccess源代码