LTiDi's repositories
SFMisCheck
Check for Salesforce Security Control Misconfiguration
AWSCognitoKiller
AWS Cognito Misconiguration Automation Check
BitBucketKiller
Enum, Check Vuln, Exploit BitBucket
Awesome-web3-Security
A curated list of web3Security materials and resources For Pentesters and Bug Hunters.
blackboxprotobuf-adv
Blackbox protobuf is a library for decoding and modifying arbitrary protobuf messages without the protobuf type definition.
Blind-XSS-SVG
Blind XSS SVG
CodeQL
《深入理解CodeQL》Finding vulnerabilities with CodeQL.
CVE-2022-29464
WSO2 RCE (CVE-2022-29464) exploit.
CVE-2022-36804
A real exploit for BitBucket RCE CVE-2022-36804
CVE-2023-23415
CVE-2023-23415
CVE-2023-28231
DHCP Server Remote Code Execution impact: 2008 R2 SP1 до Server 2019
extractor-java
CodeQL extractor for java, which don't need to compile java source
firebase-android-sdk
Firebase Android SDK
HackJava
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
hakoriginfinder
Tool for discovering the origin host behind a reverse proxy. Useful for bypassing cloud WAFs!
n0kovo_subdomains
An extremely effective subdomain wordlist of 3,000,000 lines, crafted by harvesting SSL certs from the entire IPv4 space.
odoo-research
Odoo. Open Source Apps To Grow Your Business.
protobuf_cipher
Python version for decode proto buffer data without the message definitio/struct
protoburp
Encode and Fuzz Custom Protobuf Messages in Burp Suite
scodescanner
SCodeScanner stands for Source Code scanner where the user can scans the source code for finding the Critical Vulnerabilities.
SecLists
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
SpringShell
Spring Core RCE