to^'s repositories
Awesome-web3-Security
A curated list of web3Security materials and resources For Pentesters and Bug Hunters.
Burp-Suite-Certified-Practitioner-Exam-Study
Burp Suite Certified Practitioner Exam Study
client-side-prototype-pollution
Prototype Pollution and useful Script Gadgets
CodeqlLearn
记录学习codeql的过程
content-type-research
Content-Type Research
DeFiHackLabs
Reproduce DeFi hacked incidents using Foundry.
DeFiVulnLabs
To learn common smart contract vulnerabilities using Foundry!
dotnet-deserialization
dotnet 反序列化学习笔记
extractor-java
CodeQL extractor for java, which don't need to compile java source
Godzilla-Suo5MemShell
使用 Godzilla 一键注入 Suo5 内存马
HTTP-Smuggling-Lab
Use HTTP Smuggling Lab to learn HTTP Smuggling.
Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
JavaSecurityLearning
记录一下 Java 安全学习历程
NET-Deserialize
总结了十篇.Net反序列化文章,持续更新
php_filter_chains_oracle_exploit
A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.
remote-method-guesser
Java RMI Vulnerability Scanner
static-toolbox
A collection of statically compiled tools like Nmap and Socat.
Java-Js-Engine-Payloads
Java Js Engine Payloads All in one
java-object-searcher
java内存对象搜索辅助工具