potats0

shiroPoc

javaSerializationTools

AgentMemShellScanner

清除基于java agent木马

cve_2020_14644

CasExp

Apereo CAS exploit tool

pyShell

a management tool

fastscan

lua-resty-coraza

solana-articles

apisix-coraza

s2-061

the s2-061 exploit code

wsh

windows socket helper dll injection

ShiroDemo

shiro 反序列化环境

Blogs

Blogs-1

宽字节安全团队的博客

goby-pocs

List of pocs for goby

lua-resty-ipmatcher2

yet another lua-resty-ipmatcher

antSword

AntSword is a cross-platform website management toolkit.

clashX

coraza

OWASP Coraza WAF is a golang modsecurity compatible web application firewall library

CVE-2020-1472

Exploit Code for CVE-2020-1472 aka Zerologon

CVE-2020-1473

PoC for Zerologon - all research credits go to Tom Tervoort of Secura

gns3-server

GNS3 server

gns3-web-ui

WebUI implementation for GNS3

letsmove

libcoraza

OWASP Coraza C connector

liburlcodec

redteam-research

Collection of PoC and offensive techniques used by the BlackArrow Red Team

rust-course

“连续六年成为全世界最受喜爱的语言，无 GC 也无需手动内存管理、极高的性能和安全性、过程/OO/函数式编程、优秀的包管理、JS 未来基石" — 工作之余的第二语言来试试 Rust 吧。<<Rust语言圣经>>拥有全面且深入的讲解、生动贴切的示例、德芙般丝滑的内容，甚至还有JS程序员关注的 WASM 和 Deno 等专题。这可能是目前最用心的 Rust 中文学习教程 / Book

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.