missdiog's repositories
BestEdrOfTheMarket
Little AV/EDR bypassing lab for training & learning purposes
IoT-For-Beginners
12 Weeks, 24 Lessons, IoT for All!
book-searcher
Create and search books index, create your private library.
axel
Lightweight CLI download accelerator
ray
An open source framework that provides a simple, universal API for building distributed applications. Ray is packaged with RLlib, a scalable reinforcement learning library, and Tune, a scalable hyperparameter tuning library.
DongTai-openapi
DongTai-openapi is used to process probe registration, issue hook strategies, receive method call data/component data/error log/heartbeat data, issue vulnerability detection tasks, issue packet replay data, etc.
DongTai-webapi
DongTai-WebAPI is used to DongTai IAST user resource management
DongTai-web
dongtai web is the front-end project of "huoxian DongTaiIast" and is responsible for page display
DongTai-agent-java
Java Agent is a Java application probe of DongTai IAST, which collects method invocation data during runtime of Java application by dynamic hooks.
DongTai-engine
DongTai-engine used to analyze the method data collected by the probe, analyze whether there are vulnerabilities in API requests through the algorithm of taint tracking, and is also responsible for timing tasks, including: expired log cleaning, probe state maintenance, data packet replay processing, etc.
dongtai-core
Provides the Django Model class that the DongTai project depends on, the Django API abstract class of the DongTai project, the vulnerability detection engine, constants, documents, etc.
CDK
CDK is an open-sourced container penetration toolkit, offering stable exploitation in different slimmed containers without any OS dependency. It comes with penetration tools and many powerful PoCs/EXPs helps you to escape container and takeover K8s cluster easily.
wxappUnpacker
微信小程序反编译
w5
Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台,无需编写代码的安全自动化,使用 SOAR 可以让团队工作更加高效
jd_seckill
京东秒杀商品抢购,目前只支持茅台抢购,不支持其他商品!
CobaltStrike
CobaltStrike's source code
pc_wxapkg_decrypt
windows pc端wxpkg文件解密(非解包)
fucking-algorithm
刷算法全靠套路,认准 labuladong 就够了!English version supported! Crack LeetCode, not only how, but also why.
java-sec-code
Java web common vulnerabilities and security code which is base on springboot and spring security
Active-Directory-Exploitation-Cheat-Sheet
A cheat sheet that contains common enumeration and attack methods for Windows Active Directory.
ntlm_theft
A tool for generating multiple types of NTLMv2 hash theft files by Jacob Wilkin (Greenwolf)
SharpC2
.NET C2 Framework Proof of Concept
fuzzDicts
Web Pentesting Fuzz 字典,一个就够了。
geacon
Practice Go programming and implement CobaltStrike's Beacon in Go
learnjavabug
Java安全相关的漏洞和技术demo,其中包括原生Java、Fastjson、Jackson、Hessian2以及XML反序列化漏洞利用和Dubbo(Hessian2反序列化)、Shiro(PaddingOracleCBC)等框架的exploits,并且还有Java Security Manager绕过、Dubbo-Hessian2安全加固、RMI利用等等实践代码。