tuhao's repositories
awesome-devsecops
An authoritative list of awesome devsecops tools with the help from community experiments and contributions.
awesome-hacking-lists
hacking tools awesome lists
Awesome-Red-Teaming
List of Awesome Red Teaming Resources
awesome-yara
A curated list of awesome YARA rules, tools, and people.
Benchmark
OWASP Benchmark is a test suite designed to verify the speed and accuracy of software vulnerability detection tools. A fully runnable web app written in Java, it supports analysis by Static (SAST), Dynamic (DAST), and Runtime (IAST) tools that support Java. The idea is that since it is fully runnable and all the vulnerabilities are actually exploitable, it’s a fair test for any kind of vulnerability detection tool. For more details on this project, please see the OWASP Benchmark Project home page.
BlueLotus_XSSReceiver
XSS平台 CTF工具 Web安全工具
DDit-Rapid-Development-Framework
帮助企业快速开发的.net项目框架 Help companies develop the.net project framework
django-todo
A multi-user, multi-group todo/ticketing system for Django projects. Includes CSV import and integrated mail tracking.
DNSLog-Platform-Golang
DNSLOG平台 golang 一键启动版
gdpr-checklist
The GDPR Checklist
hacking-reading-list
做了一次尝试,把我的云笔记内容搬到 Github 上,看来还不错
Hacking-with-Go
Golang for Security Professionals
IPinfo
整合多接口的IP查询工具。
maching-learning-for-web_security
web安全机器学习入门
pentest-wiki
PENTEST-WIKI is a free online security knowledge library for pentesters / researchers. If you have a good idea, please share it with others.
PHP-Audit-Labs
一个关于PHP的代码审计项目
SSRF-Testing
SSRF (Server Side Request Forgery) testing resources
ThinkPHP-Vuln
关于ThinkPHP框架的历史漏洞分析集合
vulnerable-node
A very vulnerable web site written in NodeJS with the purpose of have a project with identified vulnerabilities to test the quality of security analyzers tools tools
vulscan-1
vulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...
windows-kernel-exploits
windows-kernel-exploits Windows平台提权漏洞集合