standj7

standj7's Stars

• trimstray/the-book-of-secret-knowledge

  A collection of inspiring lists, manuals, cheatsheets, blogs, hacks, one-liners, cli/web tools and more.

  160k2.5k010.1k

• swisskyrepo/PayloadsAllTheThings

  A list of useful payloads and bypass for Web Application Security and Pentest/CTF

  Language:Python63.6k1.9k015.1k

• danielmiessler/SecLists

  SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.

  Language:PHP61.1k1.9k27624.2k

• ffuf/ffuf

  Fast web fuzzer written in Go

  Language:Go13.5k1635271.4k

• OJ/gobuster

  Directory/File, DNS and VHost busting tool written in Go

  Language:Go11k1652921.3k

• redcanaryco/atomic-red-team

  Small and highly portable detection tests based on MITRE's ATT&CK.

  Language:C10.3k3512852.9k

• nomi-sec/PoC-in-GitHub

  📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

  6.7k431301.2k

• Bypass007/Emergency-Response-Notes

  应急响应实战笔记，一个安全工程师的自我修养。

  5.3k13181.3k

• phith0n/Mind-Map

  各种安全相关思维导图整理收集

  4.5k28952k

• zer0yu/Awesome-CobaltStrike

  List of Awesome CobaltStrike Resources

  4.1k1013741

• aleenzz/Cobalt_Strike_wiki

  Cobalt Strike系列

  2.3k486590

• inonshk/31-days-of-API-Security-Tips

  This challenge is Inon Shkedy's 31 days API Security Tips.

  2.1k622332

• harsh-bothra/learn365

  This repository is about @harshbothra_'s 365 days of Learning Tweets & Mindmaps collection.

  1.6k1133403

• tennc/fuzzdb

  Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

  Language:HTML1.4k760627

• 0vercl0k/CVE-2021-31166

  Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.

  Language:Python821237139

• HXSecurity/DongTai-agent-java

  Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.

  Language:Java68722118198

• Snowming04/CobaltStrike4.0_related

  破解的cs4.0、cs4.0官方手册翻译和一些笔记

  39912273

• aaaddress1/Windows-APT-Warfare

  著作《Windows APT Warfare：惡意程式前線戰術指南》各章節技術實作之原始碼內容

  Language:C++38418167

• dockersamples/101-tutorial

  Language:JavaScript3391716224

• TuuuNya/fuzz_dict

  常用的一些fuzz及爆破字典，欢迎大神继续提供新的字典及分类。

  29281156

• hausec/ProxyLogon

  Language:Python29110476

• Shyujikou/binarybook

  Language:C23914093

• riptl/cve-2021-3449

  CVE-2021-3449 OpenSSL denial-of-service exploit 👨🏻‍💻

  Language:Go2266639

• Udyz/Proxylogon

  ProxyLogon Pre-Auth SSRF To Arbitrary File Write

  Language:Python12391538

• sirpedrotavares/Proxylogon-exploit

  proxylogon exploit - CVE-2021-26857

  Language:Python1127235

• zer0yu/How-to-Hack-Like-a-Pornstar

  《How to Hack Like a Pornstar》中文翻译

  814016

• EXP-Docs/CVE-2021-22192

  CVE-2021-22192 靶场： 未授权用户 RCE 漏洞

  Language:Ruby36014

• Funny-Systems-OSS/cloudsql-proxy-hardening

  Cloud SQL Proxy works with encrypted credential file.

  Language:Go10100

• xtiankisutsa/OSCP-Prep-1

  A comprehensive guide/material for anyone looking to get into infosec or take the OSCP exam

  Language:HTML2103

• sirpedrotavares/CVE-2021-26855

  CVE-2021-26855 exp

  Language:Go1101