n1f2c3

followers

following

stars

可别

健康

且行且珍惜's repositories

2021_Hvv

2021 hw

000

Awesome-Bugbounty-Writeups

A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference

Language:Python000

awesome-electronjs-hacking

A curated list of awesome resources about Electron.js (in)security

000

awesome-threat-intelligence

A curated list of Awesome Threat Intelligence resources

Apache-2.0000

Binary-Learning

滴水逆向初、中级学习笔记，不定时更新，自用仓库，不喜勿喷；感谢滴水，有如此完整体系的学习视频，白嫖党嫖了一波...感谢海东老师，听课受益匪浅。

000

china-operator-ip

**运营商IPv4/IPv6地址库-每日更新

Language:ShellMIT000

Detours

Detours is a software package for monitoring and instrumenting API calls on Windows. It is distributed in source code form.

Language:C++MIT000

DongTai-agent-java

“火线～洞态IAST”是一款专为甲方安全人员、代码审计工程师和0 Day漏洞挖掘人员量身打造的辅助工具，可用于集成devops环境进行漏洞检测、作为代码审计的辅助工具和自动化挖掘0 Day。

Language:JavaGPL-3.0000

DumpsterDiver

Tool to search secrets in various filetypes.

Language:PythonMIT000

exploits

Language:JavaScriptBSD-2-Clause000

gore

GoRE - Package gore is a library for analyzing Go binaries

Language:GoAGPL-3.0000

hooker

🔥🔥hooker是一个基于frida实现的逆向工具包。为逆向开发人员提供统一化的脚本包管理方式、通杀脚本、自动化生成hook脚本、内存漫游探测activity和service和其他任意对象。

Language:JavaScript000

InScan

边界打点后的自动化渗透工具

Language:Go000

insuperRCE

浪潮云 ClusterEngineV4.0 前台getshell

Language:Python000

kiterunner

Contextual Content Discovery Tool

Language:GoAGPL-3.0000

kube-scan

kube-scan: Octarine k8s cluster risk assessment tool

Language:GoMIT000

malware-samples

Malware samples, analysis exercises and other interesting resources.

000

no-sandbox

No Sandbox - Applications That Run Chromium and Chrome Without The Sandbox. TL;DR exploits in these browser based applications are already sandboxed escaped: https://no-sandbox.io/

GPL-3.0000

OA-Seeyou

note

Language:Java000

OffensiveNim

My experiments in weaponizing Nim (https://nim-lang.org/)

Language:NimBSD-2-Clause000

OpenSearch-Dashboards

Open source visualization dashboards for OpenSearch.

Language:TypeScriptApache-2.0000

pd-actions

Continuous recon and vulnerability assessment using Github Actions.

MIT000

qiling

Qiling Advanced Binary Emulation Framework

Language:PythonGPL-2.0000

sandbox-attacksurface-analysis-tools

Set of tools to analyze Windows sandboxes for exposed attack surface.

Language:C#Apache-2.0000

scant3r

ScanT3r - Bug Bounty Automation Tool

Language:PythonGPL-3.0000

SecondaryDevCobaltStrike

二次开发过后的CobaltStrike,版本为4.1.在原来CobaltStrike的基础上修改多处特征,解决流量查杀问题.

000

SecondaryDevCobaltStrike-1

二次开发过后的CobaltStrike,版本为4.1.在原来CobaltStrike的基础上修改多处特征,解决流量查杀问题.

000

sslscan

sslscan tests SSL/TLS enabled services to discover supported cipher suites

Language:CGPL-3.0000

swagger-hack

自动化爬取并自动测试所有swagger接口

Language:Python000

weblogic_cmd_plus

weblogic full vulnerability exploit tool, support T3/XMLDecoder vulnerability scanning .

000