warcraft23

the-art-of-command-line

Master the command line, in one page

learn-regex

Learn regex the easy way

masscan

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

bcc

BCC - Tools for BPF-based Linux IO analysis, networking, monitoring, and more

vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

vuls

Agent-less vulnerability scanner for Linux, FreeBSD, Container, WordPress, Programming language libraries, Network devices

404StarLink

404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目

bpftrace

High-level tracing language for Linux eBPF

zmap

ZMap is a fast single packet network scanner designed for Internet-wide network surveys.

pspy

Monitor linux processes without root permissions

exphub

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

go-fastdfs

go-fastdfs 是一个简单的分布式文件系统(私有云存储)，具有无中心、高性能，高可靠，免维护等优点，支持断点续传，分块上传，小文件合并，自动同步，自动修复。Go-fastdfs is a simple distributed file system (private cloud storage), with no center, high performance, high reliability, maintenance free and other advantages, support breakpoint continuation, block upload, small file merge, automatic synchronization, automatic repair.(similar fastdfs).

awesome-ebpf

A curated list of awesome projects related to eBPF.

GScan

本程序旨在为安全应急响应人员对Linux主机排查时提供便利，实现主机侧Checklist的自动全面化检测，根据检测结果自动数据聚合，进行黑客攻击路径溯源。

java-sec-code

Java web common vulnerabilities and security code which is base on springboot and spring security

Elkeid

Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practices.

linglong

一款甲方资产巡航扫描系统。系统定位是发现资产，进行端口爆破。帮助企业更快发现弱口令问题。主要功能包括: 资产探测、端口爆破、定时任务、管理后台识别、报表展示

BlueLotus_XSSReceiver

pamspy

Credentials Dumper for Linux using eBPF

CORScanner

🎯 Fast CORS misconfiguration vulnerabilities scanner

webshells

Various webshells. We accept pull requests for additions to this collection.

masnmapscan-V1.0

一款用于资产探测的端口扫描工具。整合了masscan和nmap两款扫描器，masscan扫描端口，nmap扫描端口对应服务，二者结合起来实现了又快又好地扫描。

Miscellaneous

百宝箱

Juggler

A system that may trick hackers. 针对黑客的拟态欺骗系统。

AssetManage

ptrace

a PoC for Linux to get around agents that log commands being executed, without root privilege. Linux低权限模糊化执行的程序名和参数，避开基于execve系统调用监控的命令日志

SecurityBaselineCheck

fastjson-rce-exploit

exploit for fastjson remote code execution vulnerability

Awsome-shells

Collection of reverse shells

DocRE-Rec

This repository is the PyTorch implementation of our DocRE model with reconstruction in AAAI 2021 Paper "Document-Level Relation Extraction with Reconstruction".