garymao Goto Github PK
Type: User
Type: User
NaiveSystems Analyze is a static analysis tool for code security and compliance.
**蚁剑是一款跨平台的开源网站管理工具。AntSword is a cross-platform website management toolkit.
**蚁剑后渗透框架
An experimental open-source attempt to make GPT-4 fully autonomous.
BinAbsInspector: Vulnerability Scanner for Binaries
A Bochs-based instrumentation project designed to log kernel memory references, to identify "double fetches" and other OS vulnerabilities
基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析
CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security
Elkeid is a Cloud-Native Host-Based Intrusion Detection solution project to provide next-generation Threat Detection and Behavior Audition with modern architecture.
一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静态检测功能。并且加入了很多功能以方便进行漏洞自动化挖掘。
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
State-of-the-art native debugging tool
A Java GUI Tool for Analyzing Jar
漏洞测试集:Java web common vulnerabilities and security code which is base on springboot and spring security
java source code static code analysis and danger function identify prog
Share Things Related to Java - Java安全漫谈笔记相关内容
Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。
Java漏洞靶场
Web Security Technology & Vulnerability Analysis Whitepapers
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Practical Cryptography for Developers: Hashes, MAC, Key Derivation, DHKE, Symmetric and Asymmetric Ciphers, Public Key Cryptosystems, RSA, Elliptic Curves, ECC, secp256k1, ECDH, ECIES, Digital Signatures, ECDSA, EdDSA
Interact with your documents using the power of GPT, 100% privately, no data leaks
收集一些比较优秀的开源安全项目,以帮助甲方安全从业人员构建企业安全能力。
针对于Spring框架的自动Java代码审计工具
An easy-to-learn/use static analysis framework for Java
Tai-e assignments for static program analysis
Taint is a PHP extension, used for detecting XSS codes
The Apache Tika toolkit detects and extracts metadata and text from over a thousand different file types (such as PPT, XLS, and PDF).
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.