tuhao's repositories
awesome-data-security-cn
awesome data security methodology and practice
GPTSecurity
塑造未来的安全领域智能革命
awesome-devsecops
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
awesome-privacy-chinese
[WIP]国内隐私合规技术交流
Awesome-Red-Teaming
List of Awesome Red Teaming Resources
awesome-yara
A curated list of awesome YARA rules, tools, and people.
awesome-zero-trust-cn
awesome zero trust methodology and practice
Benchmark
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
django-todo
A multi-user, multi-group todo/ticketing system for Django projects. Includes CSV import and integrated mail tracking.
DNSLog-Platform-Golang
DNSLOG平台 golang 一键启动版
godoc-repair
godoc repairman - repair code documentation with godoc format
Hacking-with-Go
Golang for Security Professionals
IPinfo
整合多接口的IP查询工具。
maching-learning-for-web_security
web安全机器学习入门
pentest-wiki
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
PHP-Audit-Labs
一个关于PHP的代码审计项目
SSRF-Testing
SSRF (Server Side Request Forgery) testing resources
ThinkPHP-Vuln
关于ThinkPHP框架的历史漏洞分析集合
vulnerable-node
A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of security analyzers tools tools
vulscan-1
vulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...