liming's starred repositories
feroxbuster
A fast, simple, recursive content discovery tool written in Rust.
SpringSpider
Spring Actuator端点的BurpSuite被动扫描插件。
dirsearch_bypass403
目录扫描+JS文件中提取URL和子域+403状态绕过+指纹识别
vulnerability-Checklist
This repository contain a lot of web and api vulnerability checklist , a lot of vulnerability ideas and tips from twitter
ClassHound
利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
BigBountyRecon
BigBountyRecon tool utilises 58 different techniques using various Google dorks and open source tools to expedite the process of initial reconnaissance on the target organisation.
onos-helm-charts
Helm charts for ONOS (µONOS Architecture)
JavaFileDict
Java应用的一些配置文件字典,来源于公开的字典与平时收集
bruteforce-lists
Some files for bruteforcing certain things.
JDumpSpider
HeapDump敏感信息提取工具
heapdump_shiro_vuln
A heapdump leaks Shiro key causing RCE vulnerability environment.
Unidbg_FindKey
KeyFinder 是一个Unidbg插件,通过内存检索的方式查找AES的密钥,增强Unidbg分析和还原算法的能力。
TerraformGoat
TerraformGoat is HXSecurity research lab's "Vulnerable by Design" multi cloud deployment tool.
s3-bucket-scanner
Scanner for public s3 buckets
mod0BurpUploadScanner
HTTP file upload scanner for Burp Proxy
IDASignsrch
IDA_Signsrch in Python
frida-java-bridge
Java runtime interop from Frida
frida_hook_libart
Frida hook some jni functions
uber-apk-signer
A cli tool that helps signing and zip aligning single or multiple Android application packages (APKs) with either debug or provided release certificates. It supports v1, v2 and v3 Android signing scheme has an embedded debug keystore and auto verifies after signing.