liming's starred repositories
feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
uber-apk-signer
A cli tool that helps signing and zip aligning single or multiple Android application packages (APKs) with either debug or provided release certificates. It supports v1, v2 and v3 Android signing scheme has an embedded debug keystore and auto verifies after signing.
frida_hook_libart
Frida hook some jni functions
JDumpSpider
HeapDump敏感信息提取工具
BigBountyRecon
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
bruteforce-lists
Some files for bruteforcing certain things.
dirsearch_bypass403
目录扫描+JS文件中提取URL和子域+403状态绕过+指纹识别
ClassHound
利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
TerraformGoat
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
mod0BurpUploadScanner
HTTP file upload scanner for Burp Proxy
frida-java-bridge
Java runtime interop from Frida
JavaFileDict
Java应用的一些配置文件字典,来源于公开的字典与平时收集
SpringSpider
Spring Actuator端点的BurpSuite被动扫描插件。
Unidbg_FindKey
KeyFinder 是一个Unidbg插件,通过内存检索的方式查找AES的密钥,增强Unidbg分析和还原算法的能力。
IDASignsrch
IDA_Signsrch in Python
heapdump_shiro_vuln
A heapdump leaks Shiro key causing RCE vulnerability environment.
onos-helm-charts
Helm charts for ONOS (µONOS Architecture)
s3-bucket-scanner
Scanner for public s3 buckets