su18's Stars
soot-oss/SootUp
A new version of Soot with a completely overhauled architecture
Bywalks/K8s-Mind-Map
K8S安全攻防思维导图 | Docker安全攻防思维导图
passer-W/shc_bypass
内存加载shellcode绕过waf
overnote/over-golang
Golang相关:[审稿进度80%]Go语法、Go并发**、Go与web开发、Go微服务设施等
Firebasky/ScanShiro
一个批量扫描shiro漏洞的工具,支持AES/CMG
testanull/ProxyNotShell-PoC
Ivan1ee/NET-Deserialize
总结了20+.Net反序列化文章,持续更新
TheKingOfDuck/evilzip
evilzip lets you create a zip file(with password) that contains files with directory traversal characters in their embedded path.
juanjolmm/java-secure-file-upload
Java library used to upload files following the security steps described by OWASP
corener/JavaPassDump
JavaPassDump
StarCrossPortal/scalpel
scalpel是一款命令行漏洞扫描工具,支持深度参数注入,拥有一个强大的数据解析和变异算法,可以将常见的数据格式(json, xml, form等)解析为树结构,然后根据poc中的规则,对树进行变异,包括对叶子节点和树结构 的变异。变异完成之后,将树结构还原为原始的数据格式。
dotCMS/core
Headless/Hybrid Content Management System for Enterprises
sf197/MemoryShellHunter
Java Agent memory horse scanner combined with Call Graph modus
Firebasky/FastInfosetBP
xml转换成FastInfoset格式的插件
emadshanab/Acomplete-guide-to-dir-brute-force-admin-panel-and-API-endpoints
Y4tacker/JavaSec
a rep for documenting my study, may be from 0 to 0.1
pandening/Java-debug-tool
Java dynamic debug tool
LubyRuffy/myip
互联网侧调试访问者信息的工具
LubyRuffy/goflow
just like pipeline for data
LubyRuffy/cheatsheet
华顺信安技术羊皮卷
LubyRuffy/gorestful
用函数直接生成前后端分离的restful框架
LubyRuffy/rproxy
自动化的代理服务器
0xsyr0/OSCP
OSCP Cheat Sheet
sp4zcmd/WeblogicExploit-GUI
Weblogic漏洞利用图形化工具 支持注入内存马、一键上传webshell、命令执行
kezibei/fastjson_payload
aalhour/awesome-compilers
:sunglasses: Curated list of awesome resources on Compilers, Interpreters and Runtimes
bytedance/appshark
Appshark is a static taint analysis platform to scan vulnerabilities in an Android app.
gophish/gophish
Open-Source Phishing Toolkit
SecurityRiskAdvisors/cmd.jsp
A super small jsp webshell with file upload capabilities.
akullpp/awesome-java
A curated list of awesome frameworks, libraries and software for the Java programming language.