fengzhouc

FuzzPayloadGennerator

Burp之Intruder的物尽其用插件

burp_plugins

tools

WebRisks

写着玩

alumm0x.github.io

android-hello

android study

BehinderClientSource

冰蝎客户端源码-3.0-BETA6

build-web-application-with-golang

A golang ebook intro how to build a web with golang

burp-ysoserial

YSOSERIAL Integration with burp suite

CVE-2021-21300

CVE-2021-4034

CVE-2021-4034 1day

UselessAnalysis

没用的东西

webhook

造个webhook中间服务器，可以实现写其他东西

CobaltstrikeSource

Cobaltstrike4.1 Source

DongTai-agent-java

Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.

drawio-threatmodeling

Draw.io libraries for threat modeling diagrams

go_study

handleFileData

数据分类工具

jdwp-shellifier

JNDIExploit

A malicious LDAP server for JNDI injection attacks

momo-code-sec-inspector-java

IDEA静态代码安全审计及漏洞一键修复插件

myDicts

mysqlEvilServer

project-based-learning

Curated list of project-based tutorials

SpringBootVulExploit

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

subDomainsBrute

A fast sub domain brute tool for pentesters

Tampermonkey-js

油猴脚本

ThreatMap

网络威胁宏观图

VULS

webshell-detect-bypass

绕过专业工具检测的Webshell研究文章和免杀的Webshell