Pinned Repositories
1000php
1000个PHP代码审计案例(2016.7以前乌云公开漏洞)
404forest
个人 Blog,写文做总结。
actsctrLogAnalyse
Android-SSL-TrustKiller
Bypass SSL certificate pinning for most applications
Google_Interview
https://github.com/xitu/gold-miner/blob/master/TODO/google.interview.university.md 学习笔记
jackhammer
Jackhammer - One Security vulnerability assessment/management tool to solve all the security team problems.
MachineLearningInAction
机器学习实践笔记与代码
poc_plugin
poc plugin sdk
zimbra_login_fuzz
zimbra email usr and password fuzz
peval's Repositories
peval/404forest
个人 Blog,写文做总结。
peval/android-database-sqlcipher
Android SQLite API based on SQLCipher
peval/ant-design-pro
👨🏻💻👩🏻💻 Use Ant Design like a Pro!
peval/Benchmark
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
peval/blackboxprotobuf
Blackbox protobuf is a Burp Suite extension for decoding and modifying arbitrary protobuf messages without the protobuf type definition.
peval/BurpCustomizer
Because just a dark theme wasn't enough!
peval/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
peval/closure-library
Google's common JavaScript library
peval/DOMPurify
DOMPurify - a DOM-only, super-fast, uber-tolerant XSS sanitizer for HTML, MathML and SVG. DOMPurify works with a secure default, but offers a lot of configurability and hooks. Demo:
peval/electron
:electron: Build cross-platform desktop apps with JavaScript, HTML, and CSS
peval/electronegativity
Electronegativity is a tool to identify misconfigurations and security anti-patterns in Electron applications.
peval/faraday
协作渗透测试和漏洞管理平台
peval/ftw
Framework for Testing WAFs (FTW!)
peval/gosec
Golang security checker
peval/Hawkeye
GitHub 泄露监控系统(GitHub Sensitive Information Leakage Monitor Spider)
peval/htcap
htcap is a web application scanner able to crawl single page application (SPA) in a recursive manner by intercepting ajax calls and DOM changes.
peval/interview
📚 C/C++面试知识总结
peval/MyBookshelf
An Open-Source Android App for books management
peval/NoXss
Faster xss scanner,support reflected-xss and dom-xss
peval/openpyxl_test
peval/pacu
The AWS exploitation framework, designed for testing the security of Amazon Web Services environments.
peval/practical-cryptography-for-developers-book
实用的开发人员密码学 Practical Cryptography for Developers: Hashes, MAC, Key Derivation, DHKE, Symmetric and Asymmetric Ciphers, Elliptic Curves, Digital Signatures
peval/redsocks
transparent TCP-to-proxy redirector
peval/sec-chart
安全思维导图集合
peval/security-advisories
A database of PHP security advisories
peval/Specs
The CocoaPods Master Repo
peval/swf_json_csrf
peval/trusted-types
A browser API that aims to prevent DOM-Based Cross Site Scripting in modern web applications.
peval/tsunami-security-scanner
Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.
peval/v2rayNG