yangbh's repositories

Hammer

A web vulnerability scanner framework

Language:RubyLicense:GPL-2.0Stargazers:136Issues:15Issues:2

crazy-email-recv-srv

模拟邮件服务器,批量注册利器

Language:PythonStargazers:2Issues:1Issues:0

Bridge

无回显漏洞测试辅助平台,平台使用Java编写,提供DNSLOG,HTTPLOG等功能,辅助渗透测试过程中无回显漏洞及SSRF等漏洞的验证和利用。

Language:JavaStargazers:1Issues:0Issues:0

pyAntiSSRF

anti ssrf by hijack requests

Language:PythonLicense:MITStargazers:1Issues:1Issues:0

ByteCodeDL

A declarative static analysis tool for jvm bytecode based Datalog like CodeQL

Language:ShellLicense:GPL-3.0Stargazers:0Issues:0Issues:0

codeql

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

Language:CodeQLLicense:MITStargazers:0Issues:0Issues:0

dpkt

fast, simple packet creation / parsing, with definitions for the basic TCP/IP protocols

Language:PythonLicense:NOASSERTIONStargazers:0Issues:1Issues:0

extractor-java

CodeQL extractor for java, which don't need to compile java source

Language:PythonStargazers:0Issues:0Issues:0
Language:JavaStargazers:0Issues:0Issues:0

ysoserial

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Language:JavaLicense:MITStargazers:0Issues:0Issues:0
Language:PythonStargazers:0Issues:0Issues:0
Language:PythonStargazers:0Issues:0Issues:0

FastjsonExploit

Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)

Language:JavaStargazers:0Issues:0Issues:0

Java_deserialize_vuln_lab

Java 反序列化学习的实验代码 Java_deserialize_vuln_lab

Language:JavaStargazers:0Issues:1Issues:0

mrva

mrva test

Stargazers:0Issues:1Issues:0

MySootScript

oh my soot !

Language:JavaLicense:MITStargazers:0Issues:0Issues:0

phpvul

php8 mysqli sql injections

Language:PHPLicense:MITStargazers:0Issues:0Issues:0

poc

poc from bugscan beebeeto

Language:PythonStargazers:0Issues:2Issues:0

rogue_mysql_server

一个支持 go, php, python, java, 原生命令行等多种语言下客户端的 mysql 恶意服务器

Language:GoStargazers:0Issues:0Issues:0

sarif-web-component

A React-based component for viewing SARIF files.

Language:TypeScriptLicense:MITStargazers:0Issues:0Issues:0

semgrep-rules

Semgrep rules registry

Language:SolidityLicense:NOASSERTIONStargazers:0Issues:0Issues:0

SootTutorial

A step-by-step tutorial for Soot (a Java static analysis framework)

Language:JavaLicense:GPL-3.0Stargazers:0Issues:0Issues:0

Spark

✨Spark is a web-based, cross-platform and full-featured Remote Administration Tool (RAT) written in Go that allows you control all your devices anywhere. Spark是一个Go编写的,网页UI、跨平台以及多功能的远程控制和监控工具,你可以随时随地监控和控制所有设备。

Language:GoLicense:NOASSERTIONStargazers:0Issues:0Issues:0

Struts2-Vuln-Demo

Struts2漏洞实例源码

Language:JavaStargazers:0Issues:0Issues:0

tabby

A CAT called tabby ( Code Analysis Tool )

Language:JavaLicense:Apache-2.0Stargazers:0Issues:0Issues:0

tabby-path-finder

A neo4j procedure for tabby (dev)

Language:JavaStargazers:0Issues:0Issues:0

Tai-e

An easy-to-learn/use static analysis framework for Java

License:LGPL-3.0Stargazers:0Issues:0Issues:0

vulhub

Pre-Built Vulnerable Environments Based on Docker-Compose

Language:DockerfileLicense:MITStargazers:0Issues:0Issues:0
Language:HTMLStargazers:0Issues:1Issues:0

ysomap

A helpful Java Deserialization exploit framework based on ysoserial

Language:JavaLicense:Apache-2.0Stargazers:0Issues:0Issues:0