Quinn Yan's repositories
JavaSecInterview
打造最强的Java安全研究与安全开发面试题库,包含问题和详细的答案,帮助师傅们找到满意的工作
vulnerability-lab
漏洞研究☞OA/中间件/框架/路由器...
BlueBox
BlueBox Malware analysis Box and Cyber threat intelligence.
BokuLoader
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities. By: @0xBoku & @s4ntiago_p
bug-bounty
漏洞猎人
Cheatsheet-God
Penetration Testing Reference Bank - OSCP / PTP & PTX Cheatsheet
community_kit
Cobalt Strike is a post-exploitation framework designed to be extended and customized by the user community. Several excellent tools and scripts have been written and published, but they can be challenging to locate. Community Kit is a central repository of extensions written by the user community to extend the capabilities of Cobalt Strike. The Cobalt Strike team acts as the curator and provides this kit to showcase this fantastic work.
get_AV
Windows杀软在线对比辅助
How-to-Hack-Websites
開源的正體中文 Web Hacking 學習資源 - 程式安全 2021 Fall
l9explore
l9explore - Digs the dirt
log4shell-vulnerable-app
Spring Boot web application vulnerable to CVE-2021-44228, nicknamed Log4Shell.
Maryam
Maryam: Open-source Intelligence(OSINT) Framework
Microsoft-365-Defender-Hunting-Queries
Sample queries for Advanced hunting in Microsoft 365 Defender
moneta
Moneta is a live usermode memory analysis tool for Windows with the capability to detect malware IOCs
mortar
evasion technique to defeat and divert detection and prevention of security products (AV/EDR/XDR)
nodejs-goof
Super vulnerable todo list application
OmegaDSToolkit
A toolkit that brings together penetration testing tools such as wireless tools, web tools, password cracking tools, etc.
OSWE-2
Repo for OSWE related video content for @SecAura Youtube Channel
PoC-in-GitHub
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
ProcessInjection
This program is designed to demonstrate various process injection techniques
reviewboard
An extensible and friendly code review tool for projects and companies of all sizes.
rogue-jndi
A malicious LDAP server for JNDI injection attacks
seekr
A multi-purpose OSINT toolkit with a neat web-interface.
TartarusGate
TartarusGate, Bypassing EDRs
UserAdd
Bypass AV 用户添加
WhiteboxPentest
Whitebox source code review cheatsheet (Based on AWAE syllabus)