payI0ad

payI0ad's Stars

• mikesiko/PracticalMalwareAnalysis-Labs

  Binaries for the book Practical Malware Analysis

  1.2k342

• s0md3v/XSStrike

  Most advanced XSS scanner.

  Language:Python13.5k1.9k

• roundcube/roundcubemail

  The Roundcube Webmail suite

  Language:PHP6k1.6k

• tlamb96/kgb_messenger

  An Android CTF practice challenge

  Language:Java11116

• justmobilesec/mobile-challenges

  This repository houses diverse files and challenges centered around Just Mobile Security. With practical exercises and resources aimed at enhancing your understanding and skills in mobile security. From code samples to real-world challenges, this collection is designed to empower developers and security enthusiasts to navigate and strengthen the se

  7

• authenticationfailure/WheresMyBrowser.Android

  Where's My Browser? Learn hacking WebViews (Android Mobile App)

  Language:Java417

• r0ysue/MobileCTF

  体系化、实战化、step by step、目标清晰且具体的一个打怪升级、成长路径规划图

  Language:Java41345

• nascab/nascab-releases

  Language:JavaScript35651

• yeswehack/vulnerable-code-snippets

  Twitter vulnerable snippets

  Language:PHP957152

• W01fh4cker/LearnJavaMemshellFromZero

  【三万字原创】完全零基础从0到1掌握Java内存马，公众号：追梦信安

  73787

• neocotic/qrious

  Pure JavaScript library for QR code generation using canvas

  Language:JavaScript1.6k216

• PortSwigger/param-miner

  Language:Java1.3k170

• sdutjava1604/binary-introductory-books-for-beginners

  二进制入门书籍

  24775

• mengdebiao/vue-electron-notes

  Vue + Electron + MarkDown 跨平台桌面应用云笔记

  Language:Vue8428

• rubygems/rubygems.org

  The Ruby community's gem hosting service.

  Language:Ruby2.3k934

• Threekiii/Awesome-Redteam

  一个攻防知识仓库 Red Teaming and Offensive Security

  Language:Python3.7k659

• l4yton/RegHex

  A collection of regexes for every possbile use

  Language:Shell40469

• baidu-security/openrasp-testcases

  OpenRASP 漏洞测试环境

  Language:Java30568

• makuga01/dnsFookup

  DNS rebinding toolkit

  Language:JavaScript25139

• ToolJet/ToolJet

  Low-code platform for building business applications. Connect to databases, cloud storages, GraphQL, API endpoints, Airtable, Google sheets, OpenAI, etc and build apps using drag and drop application builder. Built using JavaScript/TypeScript. 🚀

  Language:JavaScript33.6k4.4k

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP60k24.1k

• x1337loser/Dependency-Confusion

  All About Dependency Confusion Attack, (Detecting, Finding, Mitigating)

  Language:Shell28034

• LangziFun/LangSrcCurise

  SRC子域名资产监控

  Language:Python1.3k238

• pmiaowu/HostCollision

  用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统

  Language:Java60162

• possib1e/ffuf

  ffuf平时使用习惯改造脚本

  Language:Python405

• knownsec/ksubdomain

  无状态子域名爆破工具

  Language:Go2.3k279

• ffuf/ffuf

  Fast web fuzzer written in Go

  Language:Go13k1.3k

• TheKingOfDuck/fuzzDicts

  You Know, For WEB Fuzzing ! 日站用的字典。

  Language:Python7.7k2.4k

• s0md3v/Arjun

  HTTP parameter discovery suite.

  Language:Python5.4k804

• bit4woo/python_sec

  python安全和代码审计相关资料收集 resource collection of python security and code review

  1.3k327