Giters
Wie (0xCcSec)

0xCcSec

Geek Repo

2

followers

9

following

140

stars

Github PK Tool:Github PK Tool

Wie's starred repositories

vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

Language:DockerfileLicense:MITStargazers:17878Issues:579Issues:185

lua-nginx-module

Embed the Power of Lua into NGINX HTTP servers

Language:CStargazers:11335Issues:571Issues:1365

OneForAll

OneForAll是一款功能强大的子域收集工具

Language:PythonLicense:GPL-3.0Stargazers:8407Issues:102Issues:325

codeql

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

Language:CodeQLLicense:MITStargazers:7740Issues:238Issues:2286

SpringBootVulExploit

SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list

Language:JavaStargazers:5801Issues:99Issues:8

ShuiZe_0x727

信息收集自动化工具

Language:PythonLicense:GPL-3.0Stargazers:3785Issues:45Issues:173

soot

Soot - A Java optimization framework

Language:JavaLicense:LGPL-2.1Stargazers:2889Issues:101Issues:1196

http

自己提炼的关于《HTTP权威指南》每章的知识点总结!

License:MITStargazers:2878Issues:132Issues:9

Inspeckage

Android Package Inspector - dynamic analysis with api hooks, start unexported activities and more. (Xposed Module)

Language:JavaLicense:Apache-2.0Stargazers:2823Issues:120Issues:91

JSFinder

JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.

Language:PythonStargazers:2645Issues:22Issues:25

learnjavabug

Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。

Language:JavaLicense:MITStargazers:2607Issues:75Issues:6

HackJava

《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.

Stargazers:2606Issues:32Issues:9

java-sec-code

Java web common vulnerabilities and security code which is base on springboot and spring security

Language:JavaStargazers:2421Issues:44Issues:29

cfr

This is the public repository for the CFR Java decompiler

Language:JavaLicense:MITStargazers:2061Issues:52Issues:299

wooyun-payload

从wooyun中提取的payload,以及burp插件

Language:JavaStargazers:839Issues:18Issues:1

DongTai-agent-java

Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.

Language:JavaLicense:Apache-2.0Stargazers:684Issues:22Issues:118

JavaID

java source code static code analysis and danger function identify prog

Language:PythonStargazers:533Issues:10Issues:2

--Java

代码审计知识点整理-Java

Stargazers:514Issues:3Issues:0

gadgetinspector

一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静态检测功能。并且加入了很多功能以方便进行漏洞自动化挖掘。

Language:JavaLicense:MITStargazers:443Issues:9Issues:0

SootTutorial

A step-by-step tutorial for Soot (a Java static analysis framework)

Language:JavaLicense:GPL-3.0Stargazers:431Issues:7Issues:18

Kcon2021Code

Language:JavaStargazers:270Issues:6Issues:0

CryptoFucker

A xposed plugin for intercepting crypto parameters from apk files.

Language:JavaStargazers:251Issues:6Issues:5

code2sec.com

xmind\code\articles for my personal blog 个人博客上的资源备份存储,也是个人分享的汇总

Language:PythonStargazers:245Issues:10Issues:1

codeql

GitHub Satellite 2020 workshops on finding security vulnerabilities with CodeQL for Java/JavaScript.

Stargazers:208Issues:5Issues:2

log-agent

利用agent hock指定的class,在jar运行周期内,用于跟踪被执行的方法,辅助做一些事情,比如挖洞啊

Language:JavaStargazers:126Issues:6Issues:1

assets-from-spf

A Python script to parse net blocks & domain names from SPF record

Language:PythonLicense:MITStargazers:82Issues:4Issues:1

FindClassInJars

个人用于在自动化挖掘gadget时,方便查找gadget chains中class所在jar包,以助于便捷审计测试gadget有效性的那么一个小工具。

Language:JavaStargazers:60Issues:4Issues:1

springboot-acl-bypass

springboot getRequestURI acl bypass

Language:JavaStargazers:37Issues:2Issues:1

headless-burp

Provides a suite of Burp extensions and a maven plugin to automate security tests using BurpSuite.

Language:JavaStargazers:25Issues:3Issues:0

java-servlet-specification-4.0

Java Servlet Specification 4.0 中译本 (Servlet规范中文版)

Stargazers:23Issues:2Issues:0