greg-wu's repositories
Binary-Learning
滴水逆向初、中级学习笔记,不定时更新,自用仓库,不喜勿喷;感谢滴水,有如此完整体系的学习视频,白嫖党嫖了一波...感谢滴水的老师,听课受益匪浅。
BurpCrypto
BurpCrypto is a collection of burpsuite encryption plug-ins, support AES/RSA/DES/ExecJs(execute JS encryption code in burpsuite).
CPlusPlusThings
C++那些事
crawlergo
A powerful dynamic crawler for web vulnerability scanners
damit5.github.io
个人部分知识总结
deserizationEcho
反序列化回显测试代码
English-level-up-tips
An advanced guide to learn English that might benefit you a lot 🎉 . 可能是让你受益匪浅的英语进阶指南。
ETF
基金,ETF拯救世界,网格交易策略,在线网格计算器
f5-bigip-rce-cve-2020-5902
F5 BIG-IP RCE CVE-2020-5902 automatic check tool
hacktricks
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
Java-Tutorial
【Java工程师面试复习指南】本仓库涵盖大部分Java程序员所需要掌握的核心知识,整合了互联网上的很多优质Java技术文章,力求打造为最完整最实用的Java开发者学习指南,如果对你有帮助,给个star告诉我吧,谢谢!
JavaLearnVulnerability
Java漏洞学习笔记 Deserialization Vulnerability
JNDI-Injection-Exploit
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
JNDIExploit
A malicious LDAP server for JNDI injection attacks
JSP-Webshells
Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
ksubdomain
无状态子域名爆破工具
learnjavabug
Java安全相关的漏洞和技术demo,其中包括原生Java、Fastjson、Jackson、Hessian2以及XML反序列化漏洞利用和Dubbo(Hessian2反序列化)、Shiro(PaddingOracleCBC)等框架的exploits,并且还有Java Security Manager绕过、Dubbo-Hessian2安全加固、RMI利用等等实践代码。
Log4j2-RCE-Scanner
BurpSuite Extension: Log4j RCE Scanner
Neo-reGeorg
Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
Packer-Fuzzer
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
ppspider
web spider built by puppeteer, support task-queue and task-scheduling by decorators,support nedb / mongodb, support data visualization; 基于puppeteer的web爬虫框架,提供灵活的任务队列管理调度方案,提供便捷的数据保存方案(nedb/mongodb),提供数据可视化和用户交互的实现方案
ShiroExploit
Shiro550/Shiro721 一键化利用工具,支持多种回显方式
ShuiZe_0x727
信息收集自动化工具
SpringBootVulExploit
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 checklist
Web-Fuzzing-Box
Web Fuzzing Box - Web 模糊测试字典与一些Payloads,主要包含:弱口令暴力破解、目录以及文件枚举、Web漏洞...字典运用于实战案例:https://gh0st.cn/archives/2019-11-11/1
webshell
This is a webshell open source project
wxappUnpacker
小程序反编译(支持分包)