galaxylove's repositories
POC-bomber
利用大量高威胁poc/exp快速获取目标权限,用于渗透和红队快速打点
davinci-docker
Davinci Docker Deployment
1earn
ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup
JDumpSpider
HeapDump敏感信息提取工具
awesome-pentest-note
渗透测试☞经验/思路/总结/笔记
awesome-bug-bounty
bug bounty writeups
CVE-2021-4034
CVE-2021-4034 1day
davinci
Davinci is a DVsaaS (Data Visualization as a Service) Platform
volatility3
Volatility 3.0 development
camille
基于Frida的Android App隐私合规检测辅助工具
volatility
An advanced memory forensics framework
Log4j2Scan-1
Log4j2 RCE Passive Scanner plugin for BurpSuite
pocassist
全新的开源漏洞测试框架,实现poc在线编辑、运行、批量测试。使用文档:
JiYuTrainer
极域电子教室防控制软件, StudenMain.exe 破解
NotQuite0DayFriday
This is a repo which documents real bugs in real software to illustrate trends, learn how to prevent or find them more quickly.
TideFinger
TideFinger——指纹识别小工具,汲取整合了多个web指纹库,结合了多种指纹检测方法,让指纹检测更快捷、准确。
Tiny-XSS-Payloads
A collection of tiny XSS Payloads that can be used in different contexts. https://tinyxss.terjanq.me
FireKylin
火麒麟-网络安全应急响应工具(系统痕迹采集)
PHP
PHP训练靶场
pocassistdb
database of pocassist(漏洞库)
zzuthesis
郑州大学本科毕业设计(论文)和研究生学位论文(含 硕士和博士) LaTeX 模版。
MobileHackersWeapons
Mobile Hacker's Weapons / A collection of cool tools used by Mobile hackers. Happy hacking , Happy bug-hunting
dumpall
一款信息泄漏利用工具,适用于.git/.svn源代码泄漏和.DS_Store泄漏
w5
Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
Karkinos
Penetration Testing and Hacking CTF's Swiss Army Knife with: Reverse Shell Handling - Encoding/Decoding - Encryption/Decryption - Cracking Hashes / Hashing
RedTeaming2020
RedTeaming知识星球2020年安全知识汇总
shiro_attack
shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)
404StarLink2.0-Galaxy
404StarLink Project 2.0 - 推荐真正优质、有意义、有趣、坚持维护的开源项目