FeatherStark

GIOP-Protocol-Analysis

CVE-2023-21716

HttpPacket_V2

Language Switch to JDK8

BugFactory_Forks

CodeFuse-Query

Query-Based Code Analysis Engine

CodeQLpy

CodeQLpy是一款基于CodeQL实现的半自动化代码审计工具，目前仅支持java语言。实现从源码反编译，数据库生成，脆弱性发现的全过程，可以辅助代码审计人员快速定位源码可能存在的漏洞。

CVE-2019-7609

exploit CVE-2019-7609(kibana RCE) on right way by python2 scripts

CVE-2021-22005

CVE-2021-22005 - VMWare vCenter Server File Upload to RCE

CVE-2022-2992

Authenticated Remote Command Execution in Gitlab via GitHub import

CVE-2023-51385

CVE-2024-21793

CVE-2024-27130

PoC for CVE-2024-27130

CVE-2024-VUL

CVE-POC-ALL

from https://github.com/secdev-01/cve

CyberChef-ZH-CN

The Cyber Swiss Army Knife - a web app for encryption, encoding, compression and data analysis

docs

github-slideshow

A robot powered training repository :robot:

Hardware

HttpPacket

JavaSecArticleCollection

Learning_summary

对于安全学习的一些总结，更新ing，期待 Fork & Star！

LearnJavaMemshellFromZero

【三万字原创】完全零基础从0到1掌握Java内存马

nemo_go

Nemo是用来进行自动化信息收集的一个简单平台，通过集成常用的信息收集工具和技术，实现对内网及互联网资产信息的自动收集，提高隐患排查和渗透测试的工作效率，用Go语言完全重构了原Python版本。

oracle-product-docker-images

Official source of container configurations, images, and examples for Oracle products and projects

poc-proxycommand-vulnerable

Proof of conept to exploit vulnerable proxycommand configurations on ssh clients

seleniumhq.github.io

Official Selenium website and documentation

SPATool

静态程序分析工具 主要生成方法的CFG和.java文件的AST

tabby

A CAT called tabby ( Code Analysis Tool )

VulnerabilityPoC

weblogic_jar