Stars
A Security Tool for Bug Bounty, Pentest and Red Teaming.
A JDBC proxy from ClickHouse to external databases
xxe oob receive file via web and ftp server
OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by t…
Prototype Pollution and useful Script Gadgets
Chrome Android and Windows 0day RCE+SBX.. DPRK
high performance coding with golang(Go 语言高性能编程,Go 语言陷阱,Gotchas,Traps)
TideFinger——指纹识别小工具,汲取整合了多个web指纹库,结合了多种指纹检测方法,让指纹检测更快捷、准确。
A curated list of awesome Go frameworks, libraries and software
The Prime Cross Site Request Forgery (CSRF) Audit and Exploitation Toolkit.
CodeQL extractor for java, which don't need to compile java source
PEASS - Privilege Escalation Awesome Scripts SUITE (with colors)
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens
Automatically Collect POC or EXP from GitHub by CVE ID.
Cloudflare, Sucuri, Incapsula real IP tracker.
List of Awesome Red Teaming Resources
Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.