Stardustsky

SaiDict

弱口令,敏感目录,敏感文件等渗透测试常用攻击字典

Saistock

专门的股票分析项目

Pentest_Interview

个人准备渗透测试和安全面试的经验之谈，和去部分厂商的面试题，干货真的满满~

SaiEXP

最新漏洞POC或者EXP

ai_waf_v2_sk

AI_WAF_V2

CaptchaKiller

通用验证码识别项目

dirmap

一个高级web目录扫描工具，功能将会强于DirBuster、Dirsearch、cansina、御剑

CHAOS

:fire: CHAOS is a PoC that allow generate payloads and control remote operating systems.

CrossC2

generate CobaltStrike's cross-platform payload

CVE-2019-0708-PoC-Hitting-Path

It's only hitting vulnerable path in termdd.sys!!! NOT DOS

cve-2019-2618

Weblogic Upload Vuln(Need username password)-CVE-2019-2618

dumpDex

💯一款Android脱壳工具，需要xposed支持, 易开发已集成该项目。

fuzzDicts

Web Pentesting Fuzz 字典,一个就够了。

Learn-Web-Hacking

Study Notes For Web Hacking / Web安全学习笔记

libsvm

Linux_Security_Check

Linux基线检查

machine_learning_security

Source code about machine learning and security.

nuclei-templates

Community curated list of templates for the nuclei engine to find security vulnerabilities.

r0capture

安卓应用层抓包通杀脚本

Scanners-Box

A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑

security-research

This project hosts security advisories and their accompanying proof-of-concepts related to research conducted at Google which impact non-Google owned code.

seq2seq-web-attack-detection

sklearn-porter

Transpile trained scikit-learn estimators to C, Java, JavaScript and others.

SOC_Sankey_Generator

src

日常src平台域名收集

turnscan.js

Scanning LAN hosts from Chrome using ICE servers

vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

webshell

This is a webshell open source project

webshell-sample

收集自网络各处的 webshell 样本，用于测试 webshell 扫描器检测率。

xss-payload-list

🎯 Cross Site Scripting ( XSS ) Vulnerability Payload List