Pinned Repositories
awesome-bug-bounty
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
bypass403
CVE-2019-3396
Confluence Widget Connector path traversal (CVE-2019-3396)
ForCve
GoFinger
指纹识别工具
Java_Vulnerability_Code_Demo
DEMO
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Struts2_vulnerability_Environment
Struts2漏洞环境
Vulnerability_Environment
Vulnerability Environment For Webapp
x-f1v3's Repositories
x-f1v3/awesome-bug-bounty
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
x-f1v3/SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
x-f1v3/MyPapers
Repository for hosting my research papers
x-f1v3/linux
linux安全检查
x-f1v3/mjet
MOGWAI LABS JMX exploitation toolkit
x-f1v3/System
x-f1v3/Struts2_vulnerability_Environment
Struts2漏洞环境
x-f1v3/Micro8
x-f1v3/AwesomeXSS
Awesome XSS stuff
x-f1v3/ForCve
x-f1v3/awesome-burp-extensions
A curated list of amazingly awesome Burp Extensions
x-f1v3/marshalsec
x-f1v3/HackBar
HackBar plugin for Burpsuite v1.0
x-f1v3/FastJson-JdbcRowSetImpl-RCE
JNDI加载RMIServer,对FastJson的反序列化攻击,附漏洞环境 & 利用Exp。护网杯CTF比赛原型题目“easy_web”。
x-f1v3/RobotsDisallowed
A harvest of the Disallowed directories from the robots.txt files of the world's top websites.
x-f1v3/POC-EXP
收集或编写各种漏洞PoC、ExP
x-f1v3/LFISuite
Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner
x-f1v3/ysoserial-cve-2018-2628
Some codes for bypassing Oracle WebLogic CVE-2018-2628 patch
x-f1v3/fuzzdb
Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.
x-f1v3/awesome-pentest
A collection of awesome penetration testing resources, tools and other shiny things
x-f1v3/PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
x-f1v3/web-hacking-101-zh
:book: [译] Web Hacking 101 中文版
x-f1v3/Rogue-MySql-Server
MySQL fake server for read files of connected clients
x-f1v3/xss.swf
a tiny tool for swf hacking, just browse it:)