secjia Goto Github PK
Type: User
Type: User
自研JavaFX图形化漏洞扫描工具,支持ThinkPHP 2.x RCE,Thinkphp5 5.0.22/5.1.29RCE,ThinkPHP5 5.0.23RCE和ThinkPHP5 SQL注入漏洞和敏感信息泄露漏洞的漏洞检测,以及命令执行的功能。漏洞POC基本适用ThinkPHP全版本漏洞。
Attack and defend active directory using modern post exploitation adversary tradecraft activity
通过jsp注入valve内存马,可以忽略框架影响,通用tomcat789
一个挖洞工具 - A tool for finding vulnerabilities
IDApython Scripts for Analyzing Golang Binaries
PHP 扩展, 用于 PHP-FPM、FastCGI、LD_PRELOAD等模式下突破 disabled_functions
JAVA 插件化漏洞扫描器,Gui基于javafx。POC 目前集成 Weblogic、Tomcat、Shiro、Spring等。
A curated list of awesome search engines useful during Penetration testing, Vulnerability assessments, Red Team operations, Bug Bounty and more
针对 AWVS扫描器开发的批量扫描脚本,支持log4j漏洞专项,支持联动xray、burp、w13scan等被动批量
A collection of eBPF programs demonstrating bad behavior, presented at DEF CON 29
Hunts out CobaltStrike beacons and logs operator command output
“冰蝎”动态二进制加密网站管理客户端
BlackHat scrapy for download all the pdf file
一个基于docker,开箱即用的CTF竞赛平台
Linux eBPF backdoor over TCP. Spawn reverse shells, RCE, on prior privileged access. Less Honkin, More Tonkin.
Fix Burp Suite's horrible TLS stack & spoof any browser fingerprint
一个全新的敏感文件发现工具
计算验证码生成器,用于训练使用
GUI tool for investigating Java class files
🧰 A zero trust swiss army knife for working with X509, OAuth, JWT, OATH OTP, etc.
cms的exp利用框架
Cobalt Strike is a powerful threat emulation tool that provides a post-exploitation agent and covert channels ideal for Adversary Simulations and Red Team exercises. With Cobalt Strike, companies can emulate the tactics and techniques of a quiet long-term embedded threat actor in an IT network. Malleable C2 lets you change your network indicators to look like different malware each time. These tools complement Cobalt Strike's solid social engineering process, its robust collaboration capability, and unique reports designed to aid blue team training.
基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析
《深入理解CodeQL》Finding vulnerabilities with CodeQL.
Cobalt Strike team server password brute force tool
CVE-2021-22205& GitLab CE/EE RCE
Gitlab CI Lint API未授权 SSRF漏洞 (CVE-2021-22214)
CSharp CVE-2021-25646-GUI
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.