13ug's repositories
ghauri
An advanced cross-platform tool that automates the process of detecting and exploiting SQL injection security flaws
XSStrike
Most advanced XSS scanner.
AllVideoPocsFromHackerOne
This script grab public report from hacker one and make some folders with poc videos
Packer-Fuzzer
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
Weaponize-Your-Burp
Weaponize Your Burp is a repository for automation your Bug Bounty Hunting mindset in Burp Suite
wcde
Implementation of the Web Cache Deception detection methodology presented in the paper "Web Cache Deception Escalates!"
sec-books-part1
:books: 网安类绝版图书
jquery-ui
CVE Collection of jQuery UI XSS Payloads
Fdict
一款面向企业的渗透测试字典生成工具。
SQLi-playground
It's a teaching material
xia_Liao
xia Liao(瞎料)burp插件 用于Windows在线进程/杀软识别 与 web渗透注册时,快速生成需要的资料用来填写,资料包含:姓名、手机号、身份证、统一社会信用代码、组织机构代码、银行卡,以及各类web语言的hello world输出和生成弱口令字典等。
gotestwaf
An open-source project in Golang to asess different API Security tools and WAF for detection logic and bypasses
Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
BountyHunterInChina
重生之我是赏金猎人系列,分享自己和团队在SRC、项目实战漏洞测试过程中的有趣案例
NEW_xp_CAPTCHA
xp_CAPTCHA(瞎跑 白嫖版) burp 验证码 识别 burp插件
RedTeam_BlueTeam_HW
红蓝对抗以及护网相关工具和资料,内存shellcode(cs+msf)和内存马查杀工具
Information_Security_Books
信息安全方面的书籍书籍
sqlinjection-training-app
A simple PHP application to learn SQL Injection detection and exploitation techniques.
blackhat-python3
Source code for the book "Black Hat Python" by Justin Seitz. The code has been fully converted to Python 3, reformatted to comply with PEP8 standards and refactored to eliminate dependency issues involving the implementation of deprecated libraries.
Vulnerable-Flask-App
Erlik 2 - Vulnerable-Flask-App
awesome-google-vrp-writeups
🐛 A list of writeups from the Google VRP Bug Bounty program
Vulnerable-Soap-Service
Erlik - Vulnerable Soap Service
Security-PPT
Security-related Slide Presentation & Security Research Report(大安全各领域各公司各会议分享的PPT以及各类安全研究报告)
wstg
The Web Security Testing Guide is a comprehensive Open Source guide to testing the security of web applications and web services.
HackReport
渗透测试报告/资料文档/渗透经验文档/安全书籍
Course-Hacking
Video Kursus Belajar Coding Dan Hacking Gratis
Bug_Bounty_writeups
BUG BOUNTY WRITEUPS - OWASP TOP 10 🔴🔴🔴🔴✔
EVplayer2Crack
EV加密播放器2 反录屏、截图破解