Ma1tobiose's repositories
-Baseline-check
windows和linux基线检查,配套自动化检查脚本。纯手打。
ARL
ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产,构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产,发现存在的薄弱点和攻击面。
aws-sso-cli
Interactively switch between SSO credentials. Supports multiple instances of AWS SSO.
cloud-custodian
Rules engine for cloud security, cost optimization, and governance, DSL in yaml for policies to query, filter, and take actions on resources
codeql-java-queries
Personal LGTM CodeQL queries
Evaluation_tools
等级保护测评工具
genshin-impact-helper
Auto get Genshin Impact daily bonus by GitHub Actions. 米游社原神自动每日签到
goby-pocs
List of pocs for goby
HummerRisk
HummerRisk 是云原生安全平台,包括混合云安全治理和容器云安全检测。
InsecureShop
An Intentionally designed Vulnerable Android Application built in Kotlin.
java-sec-code
Java web common vulnerabilities and security code which is base on springboot and spring security
JavaLearnVulnerability
Java漏洞学习笔记 Deserialization Vulnerability
olist213_Information_Security_Books
150本信息安全方面的书籍书籍(持续更新)
openvas-scanner
This repository contains the scanner component for Greenbone Vulnerability Management (GVM). If you are looking for the whole OpenVAS framework please take a look at https://community.greenbone.net/t/frequently-asked-questions-faq/5558.
railsgoat
A vulnerable version of Rails that follows the OWASP Top 10
scalpel
scalpel是一款命令行漏洞扫描工具,支持深度参数注入,拥有一个强大的数据解析和变异算法,可以将常见的数据格式(json, xml, form等)解析为树结构,然后根据poc中的规则,对树进行变异,包括对叶子节点和树结构 的变异。变异完成之后,将树结构还原为原始的数据格式。 原理:https://mp.weixin.qq.com/s/U_llBwC05vb84U9wb8NZog
seecode-audit
Distributed white box code scanning tool 🔥
Simulate-fishing
针对企业钓鱼软件攻击模拟
TraceAttacker-V1.1
改造版hvv小脚本,在原有基础上增加了微步标签、场景、恶意IP查询。
uptime-kuma
A fancy self-hosted monitoring tool