安全学习专用
主要用来转存一些很Nice的安全专用的工具
Type: Organization
2021 hw
404StarLink Project 2.0 - 推荐真正优质、有意义、有趣、坚持维护的开源项目
Personal skills and reflection in using docker 个人使用docker中的技巧及反思
A big list of Android Hackerone disclosed reports and other resources.
Android APP漏洞之战系列,主要讲述如何快速挖掘APP漏洞
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
业务风险枚举与规避知识(Business Risk Enumeration & Avoidance Kownledge)
burp插件开发指南
基于Frida的Android App隐私合规检测辅助工具
Java 大合集 , 包含多种框架的运用 , 微服务 , 压测 , 性能分析 , 文档 , 源码分析
CDK is an open-sourced container penetration toolkit, offering stable exploitation in different slimmed containers without any OS dependency. It comes with penetration tools and many powerful PoCs/EXPs helps you to escape container and takeover K8s cluster easily.
codeqlpy
CodeQLpy是一款基于CodeQL实现的半自动化代码审计工具,目前仅支持java语言。实现从源码反编译,数据库生成,脆弱性发现的全过程,可以辅助代码审计人员快速定位源码可能存在的漏洞。
通过正则搜索、批量反编译特定Jar包中的class名称
安全学习专用
CVE-2023-22515
利用github action定时爬取先知、安全客等的文章进行保存
A powerful browser crawler for web vulnerability scanners
PoC for PwnKit: Local Privilege Escalation Vulnerability in polkit’s pkexec (CVE-2021-4034)
批量无损检测
二进制文件漏洞检测
数据库自动取样工具 - The tool used to extract the information from databases quickly.
DecryptTools-综合解密
DNSLog-GO 是一款golang编写的监控 DNS 解析记录的工具,自带WEB界面
DomainWordsDict, Chinese words dict that contains more than 68 domains, which can be used as text classification、knowledge enhance task。涵盖68个领域、共计916万词的专业词典知识库,可用于文本分类、知识增强、领域词汇库扩充等自然语言处理应用。
Optimized DNS/HTTP Log Tool for pentesters, faster and easy to use.
红/蓝队环境自动化部署工具
Fake Protocol Server
FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本),主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.