su18's Stars
Vu1nT0tal/IoT-vulhub
IoT固件漏洞复现环境
leveryd/go-sec-code
Go相关的安全研究
tom0li/Apache-backdoor
Apache-backdoor Apache 中间件模块后门
xiaopan233/Java_agent_without_file
Java agent without file 无文件的Java agent
lijiejie/eyes.sh
Optimized DNS/HTTP Log Tool for pentesters, faster and easy to use.
NationalSecurityAgency/ghidra
Ghidra is a software reverse engineering (SRE) framework
pwndbg/pwndbg
Exploit Development and Reverse Engineering with GDB Made Easy
Y4er/dotnet-deserialization
dotnet 反序列化学习笔记
Puliczek/awesome-list-of-secrets-in-environment-variables
🦄🔒 Awesome list of secrets in environment variables 🖥️
mrd0x/BITB
Browser In The Browser (BITB) Templates
synacktiv/QLinspector
Finding Java gadget chains with CodeQL
gojue/ecapture
Capturing SSL/TLS plaintext without a CA certificate using eBPF. Supported on Linux/Android kernels for amd64/arm64.
findbugsproject/findbugs
The new home of the FindBugs project
thanhminhmr/JavaCIA
Java Change Impact Analysis, a library that parse 2 consecutive versions of a Java project and produce some advices about where (not) to do regression testing on your program.
BeichenDream/InjectJDBC
注入JVM进程 动态获取目标进程连接的数据库
zkqiang/hangzhou-house-guide
杭州购房指南,根据个人购房经历,总结而成的一篇买房攻略,涉及新房摇号和二手房选购,包含大量杭州城市规划资料。
Yara-Rules/rules
Repository of yara rules
FeeiCN/Security-PPT
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
VirusTotal/yara
The pattern matching swiss knife
chaitin/veinmind-tools
veinmind-tools 是由长亭科技自研,基于 veinmind-sdk 打造的容器安全工具集
r3change/jdwp-shellifier
Lz1y/jdwp-shellifier
修改利用方式为通过对Sleeping的线程发送单步执行事件,达成断点,从而可以直接获取上下文、执行命令,而不用等待断点被击中。
Ryze-T/Sylas
数据库综合利用工具
Le0nsec/SecCrawler
一个方便安全研究人员获取每日安全日报的爬虫和推送程序,目前爬取范围包括先知社区、安全客、Seebug Paper、跳跳糖、奇安信攻防社区、棱角社区以及绿盟、腾讯玄武、天融信、360等实验室博客,持续更新中。
modernizing/modernization
summary for code analysis and auto-refactor。《代码分析与自动化重构》 - 如何自己动手设计源码解析、构建代码的代码模型、可视化代码、以及如何进行自动化的重构和守护。
trickest/cve
Gather and update all available and newest CVEs with their PoC.
gaasedelen/lighthouse
A Coverage Explorer for Reverse Engineers
OSUSecLab/MiniCrawler
A keyword based crawler for WeChat Mini-apps
SummerSec/SPATool
静态程序分析工具 主要生成方法的CFG和.java文件的AST
SPuerBRead/Bridge
无回显漏洞测试辅助平台,平台使用Java编写,提供DNSLOG,HTTPLOG等功能,辅助渗透测试过程中无回显漏洞及SSRF等漏洞的验证和利用。