An yang's repositories
1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
1loc
What's your favorite JavaScript single LOC (line of code)?
Awesome-Asset-Discovery
List of Awesome Asset Discovery Resources
awesome-security
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
awesome-web-security
🐶 A curated list of Web Security materials and resources.
Chinese-LLaMA-Alpaca-2
中文 LLaMA-2 & Alpaca-2 大模型二期项目 (Chinese LLaMA-2 & Alpaca-2 LLMs)
dep-scan
Fully open-source security audit based on known vulnerabilities and advisories for project dependencies. Supports both local repos and container images. Integrates with various CI environments such as Azure Pipelines, CircleCI, and Google CloudBuild. No server is required!
django-prometheus
Export Django monitoring metrics for Prometheus.io
django-q
A multiprocessing distributed task queue for Django
echarts-handbook
Apache ECharts Handbook
fapro
Fake Protocol Server
Finger
一款红队在大量的资产中存活探测与重点攻击系统指纹探测工具
FIR
Fast Incident Response
grepmarx
A source code static analysis platform for AppSec enthusiasts.
hackerone-reports
Top disclosed reports from HackerOne
InfosecHouse
Infosec resource center for offensive and defensive security operations.
Intranet_Penetration_Tips
2018年初整理的一些内网渗透TIPS,后面更新的慢,所以整理出来希望跟小伙伴们一起更新维护~
jumpserver
JumpServer 是全球首款开源的堡垒机,是符合 4A 的专业运维安全审计系统。
linguist
Language Savant. If your repository's language is being reported incorrectly, send us a pull request!
murphysec
An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全,具备专业的软件成分分析(SCA)、漏洞检测、专业漏洞库。
OneForAll
OneForAll是一款功能强大的子域收集工具
PaddleHub
Awesome pre-trained models toolkit based on PaddlePaddle. (400+ models including Image, Text, Audio, Video and Cross-Modal with Easy Inference & Serving)
privateGPT
Interact privately with your documents using the power of GPT, 100% privately, no data leaks
pydictor
A powerful and useful hacker dictionary builder for a brute-force attack
ralph
Ralph is the CMDB / Asset Management system for data center and back office hardware.
rurality
开源运维平台设计及开发样例、CMS、RBAC、python开发教程、管理系统设计及开发样例、jenkinsfile(pipeline)/ansible使用教程,一切想到的,想不到的,应有尽有
secguide
面向开发人员梳理的代码安全指南
Security-PPT
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
sentry
Sentry is cross-platform application monitoring, with a focus on error reporting.
WanLi
使用Dirsearch, Subfinder, Ksubdomain, Httpx、nuclei工具进行快速目标资产检查并对目标资产进行敏感文件、敏感路径、漏洞验证检测。Use Dirsearch, Subfinder, Ksubdomain, Httpx, nuclei tools to quickly check target assets and perform sensitive files, sensitive paths, and vulnerability verification detection on target assets.