m1anbao Goto Github PK
Type: User
Type: User
暂停维护 | ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
Checklist of the most important security countermeasures when designing, testing, and releasing your API
x64 Assembly HalosGate direct System Caller to evade EDR UserLand hooks
一个各类漏洞POC知识库
一个红队知识仓库
Connection-less Powershell Persistent and Resilient Backdoor
白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目
Cobalt Strike系列
CVE-2021-4034 1day
Web path scanner
应急响应实战笔记,一个安全工程师的自我修养。
Fiora:漏洞PoC框架的图形版,快捷搜索PoC、一键运行Nuclei
GoldenEye Layer 7 (KeepAlive+NoCache) DoS Test Tool
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
Java安全研究与安全开发面试题库,同是也是常见知识点的梳理和总结,包含问题和详细的答案,计划定期更新
:palm_tree:Kernel privilege escalation vulnerability collection, with compilation environment, demo GIF map, vulnerability details, executable file (提权漏洞合集)
基于Pocsuite3、goby编写的漏洞poc&exp存档
用于探测Log4j漏洞, 将它POC的威力最大化, POC验证成功后会立即收到目前机器的系统主机名、时间、版本号、用户名、环境变量以及Log4j路径、java版本号、中间件信息等信息.
evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
OneForAll是一款功能强大的子域收集工具
Burp被动扫描流量转发插件
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
继承大量poc检查 包含oa 如 泛微 通达 致远 万户 等。
:trollface: A hex editor for WeChat/QQ/TIM - PC版微信/QQ/TIM防撤回补丁(我已经看到了,撤回也没用了)
A malicious LDAP server for JNDI injection attacks
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list
Unexpected information 是用于标记请求包中的一些敏感信息、JS接口和一些特殊字段的BurpSuite 插件。
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.