Pinned Repositories
openstar
lua waf,nginx+lua,openresty,luajit,waf+,cdn,nginx
trackscorer's Repositories
trackscorer/openstar
lua waf,nginx+lua,openresty,luajit,waf+,cdn,nginx
trackscorer/ApolloScanner
自动化巡航扫描框架(可用于红队打点评估)
trackscorer/auth-analyzer
trackscorer/Awesome-WAF
🔥 A curated list of awesome web application firewall (WAF) stuff.
trackscorer/bounty-targets-data
This repo contains hourly-updated data dumps of Hackerone/Bugcrowd scopes that are eligible for reports
trackscorer/cutter
A Qt and C++ GUI for radare2 reverse engineering framework
trackscorer/dirsearch
Web path scanner
trackscorer/h1domains
HackerOne "in scope" domains for all your fuzzing needs
trackscorer/Jackalope
Binary, coverage-guided fuzzer for Windows, macOS, Linux and Android
trackscorer/JavaSec
a rep for documenting my study, may be from 0 to 0.1
trackscorer/JDBC-Attack
JDBC Connection URL Attack
trackscorer/jexboss
JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
trackscorer/JNDIExploit
对原版https://github.com/feihong-cs/JNDIExploit 进行了实用化修改
trackscorer/masscan
TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.
trackscorer/MySQL_Fake_Server
MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
trackscorer/oss-website
The Open Security Summit 2021 is focused on the collaboration between, Developers and Application Security
trackscorer/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
trackscorer/polaris-java
Lightweight Java SDK used as Proxyless Service Governance
trackscorer/QBDI
A Dynamic Binary Instrumentation framework based on LLVM.
trackscorer/reverse-shell
Reverse Shell as a Service
trackscorer/reverse-shell-generator
Hosted Reverse Shell generator with a ton of functionality. -- (Great for CTFs)
trackscorer/rogue_mysql_server
A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.
trackscorer/spring-jndi
trackscorer/SpringBootVulExploit
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list
trackscorer/ssh-auditor
The best way to scan for weak ssh passwords on your network
trackscorer/ssh-scanner
ssh password guessing,ssh登录密码破解
trackscorer/svg
trackscorer/vtest
用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
trackscorer/xsshunter
The XSS Hunter service - a portable version of XSSHunter.com
trackscorer/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.