w4n95

w4n95's Stars

• brendan-rius/c-jwt-cracker

  JWT brute force cracker written in C

  Language:C2.4k263

• AntSwordProject/AntSword-Labs

  Awesome environment for antsword tests

  Language:Dockerfile17420

• SwagXz/encrypt-labs

  前端加密对抗练习靶场，包含非对称加密、对称加密、加签以及禁止重放的测试场景，比如AES、DES、RSA，用于渗透测试练习

  Language:PHP31426

• pr0v3rbs/FirmAE

  Towards Large-Scale Emulation of IoT Firmware for Dynamic Analysis

  Language:Python685123

• arkane-systems/mousejiggler

  Mouse Jiggler is a very simple piece of software whose sole function is to "fake" mouse input to Windows, and jiggle the mouse pointer back and forth.

  Language:C#1.1k188

• tarunkant/Gopherus

  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers

  Language:Python2.9k379

• Cryin/JavaID

  java source code static code analysis and danger function identify prog

  Language:Python532117

• c0ny1/upload-fuzz-dic-builder

  上传漏洞fuzz字典生成脚本

  Language:Python1.2k259

• wuba/Antenna

  Antenna是58同城安全团队打造的一款辅助安全从业人员验证网络中多种漏洞是否存在以及可利用性的工具。其基于带外应用安全测试(OAST)通过任务的形式，将不同漏洞场景检测能力通过插件的形式进行集合，通过与目标进行out-bind的数据通信方式进行辅助检测。

  Language:JavaScript71576

• Chanzi-keji/chanzi

  "chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability rules, supports decompile, custom rule, and is compatible with the technology stacks of Servlet&filter, Spring,struts,Dubbo,Thrift, jax-rs,jax-ws,JFinal,Netty,MyBatis,and JSP.

  33712

• obheda12/GitDorker

  A Python program to scrape secrets from GitHub through usage of a large repository of dorks.

  Language:Python2.3k421

• Naturehi666/searchall

  强大的敏感信息搜索工具

  Language:Go84971

• Seven1an/SocksHunter

  一款高效的 Socks5 代理采集与使用工具

  Language:Go10825

• woodpecker-framework/woodpecker-framework-release

  高危漏洞精准检测与深度利用框架

  1.4k146

• NickstaDB/SerializationDumper

  A tool to dump Java serialization streams in a more human readable form.

  Language:Java1k125

• j3ers3/Hello-Java-Sec

  ☕️ Java Security，安全编码和代码审计

  Language:Java1.4k224

• JoyChou93/java-sec-code

  Java web common vulnerabilities and security code which is base on springboot and spring security

  Language:Java2.4k664

• c0ny1/java-object-searcher

  java内存对象搜索辅助工具

  Language:Java79586

• su18/JDBC-Attack

  JDBC Connection URL Attack

  Language:Java39743

• threedr3am/JSP-WebShells

  Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势

  Language:Java1.4k325

• horsicq/Detect-It-Easy

  Program for determining types of files for Windows, Linux and MacOS.

  Language:JavaScript7.9k743

• outlaws-bai/Galaxy

  一个想让你测试加密流量像测试明文一样简单高效的 Burp 插件。 A Burp plugin that makes testing encrypted traffic as simple and efficient as testing plaintext.

  Language:Java81759

• alibaba/cobar

  a proxy for sharding databases and tables

  Language:Java3.2k1.2k

• datawhalechina/leedl-tutorial

  《李宏毅深度学习教程》（李宏毅老师推荐👍，苹果书🍎），PDF下载地址：https://github.com/datawhalechina/leedl-tutorial/releases

  Language:Jupyter Notebook14.3k3k

• jar-analyzer/jar-analyzer

  Jar Analyzer - 一个JAR包分析工具，批量分析，SCA漏洞分析，方法调用关系搜索，字符串搜索，Spring组件分析，信息泄露检查，CFG程序分析，JVM栈帧分析，进阶表达式搜索，字节码指令级的动态调试分析，反编译JAR包一键导出，一键提取序列化数据恶意代码，一键分析BCEL字节码

  Language:Java1.3k114

• Ackites/KillWxapkg

  自动化反编译微信小程序，小程序安全评估工具，发现小程序安全问题，自动解密，解包，可还原工程目录，支持Hook，小程序修改

  Language:Go4.2k905

• Whoopsunix/JavaRce

  Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式

  Language:Java47954

• BeichenDream/GodzillaMemoryShellProject

  Language:Java26033

• d2l-ai/d2l-zh

  《动手学深度学习》：面向中文读者、能运行、可讨论。中英文版被70多个国家的500多所大学用于教学。

  Language:Python65.3k11.2k

• bit4woo/knife

  A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅

  Language:Java1.7k200