laochen's starred repositories
awesome-chatgpt-prompts-zh
ChatGPT 中文调教指南。各种场景使用指南。学习怎么让它听你的话。
excalidraw
Virtual whiteboard for sketching hand-drawn like diagrams
CodeFormer
[NeurIPS 2022] Towards Robust Blind Face Restoration with Codebook Lookup Transformer
joplin-plugin-enhancement
joplin plugin to enhance my daily usage
Bashfuscator
A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.
CVE-2022-1388
POC for CVE-2022-1388
log4j-payload-generator
Log4j jndi injects the Payload generator
Cloud-Bucket-Leak-Detection-Tools
六大云存储,泄露利用检测工具
suricata-rules
Suricata IDS rules 用来检测红队渗透/恶意行为等,支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等
redteam_vul
红队作战中比较常遇到的一些重点系统漏洞整理。
shiro-check
Shiro反序列化回显利用、内存shell、检查 Burp插件
burp_find_shiro
通过burp代理流量寻找shiro站点
FastjsonScan
一个简单的Fastjson反序列化检测burp插件
AllThingsSSRF
This is a collection of writeups, cheatsheets, videos, books related to SSRF in one single location
CS-checklist
PC客户端(C-S架构)渗透测试checklist / Client side(C-S) penetration checklist
31-days-of-API-Security-Tips
This challenge is Inon Shkedy's 31 days API Security Tips.
MySQL_Fake_Server
MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize