Lists (6)
Sort Name ascending (A-Z)
Starred repositories
"chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability rules, supports decompile, custom rule, and is compatible with …
一个简单而轻量级的 Hexo 主题。 | A simple, lightweight Hexo theme.
🌵 A responsive, clean and simple theme for Hexo.
网络安全类公众号推荐,欢迎大家推荐
攻防演练过程中,我们通常会用浏览器访问一些资产,但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等,该插件能让我们发现未授权/敏感信息/越权/登陆接口等。
芋道管理后台,基于 Vue3 + Element Plus 实现,支持 RBAC 动态权限、数据权限、SaaS 多租户、Flowable 工作流、三方登录、支付、短信、商城、CRM、ERP、AI 大模型等功能。
Shiro反序列化利用工具,支持新版本(AES-GCM)Shiro的key爆破,配合ysoserial,生成回显Payload
RansomwareSim is a simulated ransomware
bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
Kyhvedn / CVE-2018-3192
Forked from m00zh33/CVE-2018-3191CVE-2018-3191-PoC
Top disclosed reports from HackerOne
🔥 Java enterprise application development framework for full scenario: Restrained, Efficient, Open, Ecologicalll!!! 300% higher concurrency 50% memory savings Startup is 10 times faster. Packing 90…
建议使用新版:https://github.com/jar-analyzer/jar-analyzer
Puredns is a fast domain resolver and subdomain bruteforcing tool that can accurately filter out wildcard subdomains and DNS poisoned entries.
A python script that finds endpoints in JavaScript files
项目是根据LandGrey/SpringBootVulExploit清单编写,目的hvv期间快速利用漏洞、降低漏洞利用门槛。
2024最新悄咪咪收集的10000+个Telegram群合集,附全网最有趣好用的机器人BOT🤖【电报百科全书】
Server-Side Template Injection and Code Injection Detection and Exploitation Tool
RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration.