章鱼哥's starred repositories
developer2gwy
公务员从入门到上岸,最佳程序员公考实践教程
sec_profile
爬取secwiki和xuanwu.github.io/sec.today,分析安全信息站点、安全趋势、提取安全工作者账号(twitter,weixin,github等)
Attack_Code
文章 Attack Code 的详细全文。安全和开发总是具有伴生属性,尤其是云的安全方向,本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always have concomitant attributes, and this is especially true with the security direction of the cloud. This article is an introduction to cloud security that I hope will help readers.
llvm-ir-tutorial
LLVM IR入门指南
ExcessivePermissionAttack
Take Over the Whole Cluster: Attacking Kubernetes via Excessive Permissions of Third-party Applications
kernel-security-learning
Anything about kernel security. CTF kernel pwn, kernel exploit, kernel fuzz and kernel defense paper, kernel debugging technique, kernel CVE debug.
security_test_guide
安全测试导论
domain_hunter_pro
domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等
burpFakeIP
服务端配置错误情况下用于伪造ip地址进行测试的Burp Suite插件
frida-all-in-one
《FRIDA操作手册》by @hluwa @r0ysue
ARL-Finger-ADD-Go
ARL(灯塔)批量添加指纹
hackingthe.cloud
An encyclopedia for offensive and defensive security knowledge in cloud native technologies.
AppInfoScanner
一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具,可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如:Title、Domain、CDN、指纹信息、状态信息等。
hackerone-reports
Top disclosed reports from HackerOne
sec-books-part1
:books: 网安类绝版图书
offlinepost
读过的安全文章离线归档 | begin in 2023.11.23
Intranet_Penetration_Tips
2018年初整理的一些内网渗透TIPS,后面更新的慢,所以整理出来希望跟小伙伴们一起更新维护~
RedTeamNotes
红队笔记
AD-Pentest-Notes
用于记录内网渗透(域渗透)学习 :-)
Sec-Interview
网络安全面试总结
RedTeam_BlueTeam_HW
红蓝对抗以及护网相关工具和资料,内存shellcode(cs+msf)和内存马查杀工具