forlife's repositories
Web-Security-Learning
Web-Security-Learning
AngelSword
Python3编写的CMS漏洞检测框架
awesome-web-security
🐶 A curated list of Web Security materials and resources.
Bugscan
Bugscan Web Vulnerability Scaner Online System
CVE-2017-5645
CVE-2017-5645 - Apache Log4j RCE due Insecure Deserialization
getQQNumberAndPwd
揭秘钓鱼网站是如何盗取你们的账号密码的(以qq为例)
IIS_exploit
Buffer overflow in the ScStoragePathFromUrl function in the WebDAV service in Internet Information Services (IIS) 6.0 in Microsoft Windows Server 2003 R2 allows remote attackers to execute arbitrary code via a long header beginning with "If: <http://" in a PROPFIND request, as exploited in the wild in July or August 2016.
javascript
JavaScript Style Guide
materials
技术资料
NagaScan
NagaScan is a distributed passive scanner for Web application.
passmaker
可以自定义规则的密码字典生成器
PayloadsAllTheThings
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
pentest_study
从零开始内网渗透学习
pentest_tools
收集一些小型实用的工具
PhrackCTF-Platform-Personal
CTF platfrom developed by Jarvis from Phrack Team. 做一个功能最全的CTF平台。
pydictor
A powerful and useful hacker dictionary builder for a brute-force attack
Rogue-MySql-Server
MySQL fake server for read files of connected clients
Some-PoC-oR-ExP
各种漏洞poc、Exp的收集或编写
UsbMiceDataHacker
USB鼠标流量包取证工具 , 主要用于绘制鼠标移动以及拖动轨迹
VulApps
快速搭建各种漏洞环境(Various vulnerability environment)
WebShell
Webshell && Backdoor Collection
webshell-1
This is a webshell open source project