yangbh

Pinned Repositories

Bridge
无回显漏洞测试辅助平台，平台使用Java编写，提供DNSLOG，HTTPLOG等功能，辅助渗透测试过程中无回显漏洞及SSRF等漏洞的验证和利用。
Language:Java1 0 00
ByteCodeDL
A declarative static analysis tool for jvm bytecode based Datalog like CodeQL
Language:Shell0 0 00
codeql
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Language:CodeQL0 0 00
crazy-email-recv-srv
模拟邮件服务器，批量注册利器
Language:Python2 1 01
dpkt
fast, simple packet creation / parsing, with definitions for the basic TCP/IP protocols
Language:Python0 1 00
extractor-java
CodeQL extractor for java, which don't need to compile java source
Language:Python0 0 00
Hammer
A web vulnerability scanner framework
Language:Ruby136 15 2101
pyAntiSSRF
anti ssrf by hijack requests
Language:Python1 1 00
ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Language:Java0 0 00

yangbh's Repositories

yangbh/Hammer
A web vulnerability scanner framework
Language:Ruby136 15 2101
yangbh/crazy-email-recv-srv
模拟邮件服务器，批量注册利器
Language:Python2 1 01
yangbh/Bridge
无回显漏洞测试辅助平台，平台使用Java编写，提供DNSLOG，HTTPLOG等功能，辅助渗透测试过程中无回显漏洞及SSRF等漏洞的验证和利用。
Language:Java1 0 00
yangbh/pyAntiSSRF
anti ssrf by hijack requests
Language:Python1 1 00
yangbh/ByteCodeDL
A declarative static analysis tool for jvm bytecode based Datalog like CodeQL
Language:Shell0 0 00
yangbh/codeql
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Language:CodeQL0 0 00
yangbh/dpkt
fast, simple packet creation / parsing, with definitions for the basic TCP/IP protocols
Language:Python0 1 00
yangbh/extractor-java
CodeQL extractor for java, which don't need to compile java source
Language:Python0 0 00
yangbh/fastjson-blacklist
Language:Java0 0 00
yangbh/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Language:Java0 0 00
yangbh/Bugscan_exploits
Language:Python
yangbh/fastjson_gadgets_scanner
Language:Python0 0
yangbh/FastjsonExploit
Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
Language:Java0 0
yangbh/Java_deserialize_vuln_lab
Java 反序列化学习的实验代码 Java_deserialize_vuln_lab
Language:Java1 0
yangbh/mrva
mrva test
1 0
yangbh/MySootScript
oh my soot !
Language:Java0 0
yangbh/phpvul
php8 mysqli sql injections
Language:PHP0 0
yangbh/poc
poc from bugscan beebeeto
Language:Python2 0
yangbh/rogue_mysql_server
一个支持 go, php, python, java, 原生命令行等多种语言下客户端的 mysql 恶意服务器
Language:Go0 0
yangbh/sarif-web-component
A React-based component for viewing SARIF files.
Language:TypeScript0 0
yangbh/semgrep-rules
Semgrep rules registry
Language:Solidity0 0
yangbh/SootTutorial
A step-by-step tutorial for Soot (a Java static analysis framework)
Language:Java0 0
yangbh/Spark
✨Spark is a web-based, cross-platform and full-featured Remote Administration Tool (RAT) written in Go that allows you control all your devices anywhere. Spark是一个Go编写的，网页UI、跨平台以及多功能的远程控制和监控工具，你可以随时随地监控和控制所有设备。
Language:Go0 0
yangbh/Struts2-Vuln-Demo
Struts2漏洞实例源码
Language:Java0 0
yangbh/tabby
A CAT called tabby ( Code Analysis Tool )
Language:Java0 0
yangbh/tabby-path-finder
A neo4j procedure for tabby (dev)
Language:Java0 0
yangbh/Tai-e
An easy-to-learn/use static analysis framework for Java
yangbh/vulhub
Pre-Built Vulnerable Environments Based on Docker-Compose
Language:Dockerfile0 0
yangbh/yangbh.github.io
blog
Language:HTML1 0
yangbh/ysomap
A helpful Java Deserialization exploit framework based on ysoserial
Language:Java0 0