2022-hw-poc

2022 护网行动 POC 整理

all-defense-tool

本项目集成了全网优秀的攻防工具项目，包含自动化利用，子域名、敏感目录、端口等扫描，各大中间件，cms漏洞利用工具以及应急响应等资料。

awesome-security-newsletters

Periodic cyber security newsletters that capture the latest news, summaries of conference talks, research, best practices, tools, events, vulnerabilities, and analysis of trending threats and attacks

cvemap

Navigate the CVE jungle with ease.

dzscan

Dzscan

evilginx2

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

exploitpcapcollection

collect some exploit traffic pcap

geminiprochat

Minimal web UI for GeminiPro.

github-monitor

对github新CVE，0DAY，RCE等的监控并推送到微信

gpt3_security_vulnerability_scanner

GPT-3 found hundreds of security vulnerabilities in this repo

hackjava

《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.

image

learn-web-hacking

Study Notes For Web Hacking / Web安全学习笔记

learngolang

《Golang学习资源大全-只有Go语言才能改变世界》Only Golang Can Change The World.

luckyluosecpage

blog

luckyluosecwiki

Config files for my GitHub profile.

nucleitp

自动整合全网Nuclei的漏洞POC，实时同步更新最新POC！

penetration-script

渗透测试脚本，为防忘记开设（垃圾桶）

road2coding

编程之路

s2-062

远程代码执行S2-062 CVE-2021-31805验证POC

sec-interview-4-2023

一个2023届毕业生在毕业前持续更新、收集的安全岗面试题及面试经验分享~

sec_profile

爬取secwiki和xuanwu.github.io/sec.today,分析安全信息站点、安全趋势、提取安全工作者账号(twitter,weixin,github等)

securityoperation

学习安全运营的记录 | The knowledge base of security operation

sks

Security Knowledge Structure(安全知识汇总)

srs

SRS is a simple, high-efficiency, real-time video server supporting RTMP, WebRTC, HLS, HTTP-FLV, SRT, MPEG-DASH, and GB28181.

tiny-xss-payloads

A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me

xss_payload

yarb

方便获取每日安全资讯的爬虫和推送程序