4ut15m's starred repositories
SpringExploitGUI
一款Spring综合漏洞的利用工具,工具支持多个Spring相关漏洞的检测以及利用
xxl-jobExploitGUI
xxl-job最新漏洞利用工具
JNDI-Injection-Exploit-Plus
80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.
HikvisionExploitGUI
海康威视漏洞综合利用工具,支持一键上传哥斯拉等多种利用方式
NacosExploitGUI
Nacos漏洞综合利用GUI工具,集成了默认口令漏洞、SQL注入漏洞、身份认证绕过漏洞、反序列化漏洞的检测及其利用
ysoserial-su18
此项目为su18大佬的仓库镜像,如有问题可发issuse删库
ChatCopilot
ChatCopilot 是一款用 golang 实现的获取微信聊天记录并支持实时存储到数据库的工具,支持在 MacOS 上运行
nuclei-templates
nuclei-templates 4W+已校验
SecurityList
A list for Web Security and Code Audit
nuclei-templates
Community curated list of templates for the nuclei engine to find security vulnerabilities.
autoDecoder
Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。
codeql_compile
自动反编译闭源应用,创建codeql数据库
SearchAvailableExe
寻找可利用的白文件
interactsh
An OOB interaction gathering server and client library
seq2seq-web-attack-detection
The implementation of the Seq2Seq model for web attack detection. The Seq2Seq model is usually used in Neural Machine Translation. The main goal of this project is to demonstrate the relevance of the NLP approach for web security.
AVEvasionCraftOnline
An online AV evasion platform written in Springboot (Golang, Nim, C) supports embedded, local and remote loading of Shellocde methods.
TextClassify_with_BERT
使用BERT模型做文本分类;面向工业用途
graduation_design
毕业设计——基于监督学习的web入侵检测系统(0day收集器)
Machine-Learning-Based-Intrution-Detection-System
基于机器学习的入侵检测系统
No_X_Memory_ShellCode_Loader
无可执行权限加载 ShellCode。Loading ShellCode without executable permission.