Pinned Repositories
Android_Kernel_CVE_POCs
A list of my CVE's with POCs
Awesome
:computer: An awesome & curated list of best applications and tools for Windows.
binaryanalysisplatform.github.io
The BAP Blog
DumpFlash
DumpFlash
emba
EMBA - The firmware security analyzer
Emergency-Response-Notes
应急响应实战笔记,一个安全工程师的自我修养。
ossec-wui
OSSEC Web User Interface - Unmaintained!!
Pocsuite
Pocsuite is an open-sourced remote vulnerability testing framework developed by the Knownsec Security Team.
resources
A general collection of information, tools, and tips regarding CTFs and similar security competitions
Zigbee-Project
The zigbee demo project
yqyunjie's Repositories
yqyunjie/emba
EMBA - The firmware security analyzer
yqyunjie/ArmDevicesWeaponized
ARM设备武器化指南
yqyunjie/atomic-red-team
Small and highly portable detection tests based on MITRE's ATT&CK.
yqyunjie/ATTACK-Tools
Utilities for MITRE™ ATT&CK
yqyunjie/BLE-Security-Attack-Defence
✨ Purpose only! The dangers of Bluetooth Low Energy(BLE)implementations: Unveiling zero day vulnerabilities and security flaws in modern Bluetooth LE stacks.
yqyunjie/bluescan
A powerful Bluetooth scanner
yqyunjie/Captura
Capture Screen, Audio, Cursor, Mouse Clicks and Keystrokes
yqyunjie/codeql
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security (code scanning), LGTM.com, and LGTM Enterprise
yqyunjie/continuous-threat-modeling
A Continuous Threat Modeling methodology
yqyunjie/ddos-deflate
Fork of DDoS Deflate with fixes, improvements and new features.
yqyunjie/DependencyCheck
OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.
yqyunjie/dots_client
A C client for DDoS Open Threat Signaling (DOTS) protocol
yqyunjie/fail2ban
Daemon to ban hosts that cause multiple authentication errors
yqyunjie/firewalld
Stateful zoning firewall daemon with D-Bus interface
yqyunjie/git-hound
GitHound pinpoints exposed API keys on GitHub using pattern matching, commit history searching, and a unique result scoring system. A batch-catching, pattern-matching, patch-attacking secret snatcher.
yqyunjie/GmSSL
支持国密SM2/SM3/SM4/SM9/SSL的密码工具箱
yqyunjie/go-dots
go implementation of DOTS(DDoS Open Threat Signaling) https://datatracker.ietf.org/wg/dots/about/
yqyunjie/GScan
本程序旨在为安全应急响应人员对Linux主机排查时提供便利,实现主机侧Checklist的自动全面化检测,根据检测结果自动数据聚合,进行黑客攻击路径溯源。
yqyunjie/hyperscan
High-performance regular expression matching library
yqyunjie/infer
A static analyzer for Java, C, C++, and Objective-C
yqyunjie/kernel-exploits-1
My proof-of-concept exploits for the Linux kernel
yqyunjie/MISP
MISP (core software) - Open Source Threat Intelligence and Sharing Platform (formely known as Malware Information Sharing Platform)
yqyunjie/ngx_waf
A web application firewall module for nginx & nginx 防火墙模块
yqyunjie/optee_os
Trusted side of the TEE
yqyunjie/owasp-threat-dragon-desktop
An installable desktop variant of OWASP Threat Dragon
yqyunjie/peniot
PENIOT: Penetration Testing Tool for IoT
yqyunjie/pocsuite3
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
yqyunjie/ShiroExploit
Shiro550/Shiro721 一键化利用工具,支持多种回显方式
yqyunjie/steady
Analyses your Java and Python applications for open-source dependencies with known vulnerabilities, using both static analysis and testing to determine code context and usage for greater accuracy. https://eclipse.github.io/steady/
yqyunjie/w5
Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效