Claradoll/Security_Learning

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Claradoll/Security_Learning)

Claradoll / Security_Learning

☆22

Alternatives and similar repositories for Security_Learning

Users that are interested in Security_Learning are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

keven1z / XXEDemo
View on GitHub
收集了java XXE漏洞的demo及修复方式
☆19Mar 11, 2024Updated 2 years ago
P0wfuu / rasp-bypass-benchmark
View on GitHub
☆21Nov 11, 2022Updated 3 years ago
Wker666 / Cheetah
View on GitHub
用来存储Cheetah的脚本文件
☆12Mar 31, 2021Updated 5 years ago
ASTTeam / Semgrep
View on GitHub
《深入理解Semgrep》Finding vulnerabilities with Semgrep.
☆60Jul 20, 2023Updated 2 years ago
Boogipop / JavaSec
View on GitHub
JavaSec
☆47Mar 18, 2024Updated 2 years ago
AI Agents on DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
wangsz05 / LearnDemo
View on GitHub
☆16Oct 30, 2022Updated 3 years ago
webraybtl / StudyCodeQLpy
View on GitHub
☆19Jul 6, 2023Updated 2 years ago
lz520520 / java-object-searcher
View on GitHub
☆22Feb 21, 2025Updated last year
no-one-sec / github-action-secrets-stealer
View on GitHub
GitHub Action安全工具，可以将Action Secrets还原拿到明文，用于证明Secrets并不是绝对的安全。（测试通过，放心使用，再有问题来issues区锤我...）
☆24Sep 12, 2022Updated 3 years ago
Seven1an / TomcatMemshellScanner
View on GitHub
支持Tomcat内存马查杀的JSP脚本
☆67Jun 16, 2025Updated 11 months ago
DVKunion / Trickster
View on GitHub
白嫖国外临时主机 🐶
☆60May 16, 2024Updated 2 years ago
EddieIvan01 / secure-cookie-faker
View on GitHub
Security tool to encode/decode Golang web-frameworks' client-side session cookie which use `gorilla/securecookie` or `gorilla/sessions`, …
☆36Oct 7, 2019Updated 6 years ago
hughink / Thinkphp-All-vuln
View on GitHub
☆19Aug 28, 2022Updated 3 years ago
BytecodeDL / soot-fact-generator
View on GitHub
generate facts from bytecode (source is https://github.com/plast-lab/doop-mirror/tree/master/generators)
☆23Nov 24, 2024Updated last year
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
darkr4y / freerdp-pth
View on GitHub
AppImage bundled version xfreerdp with pass the hash function
☆15Apr 17, 2018Updated 8 years ago
G73st / Windows-Scheduled-Tasks
View on GitHub
Go 调用DLL添加计划任务维持权限
☆16Nov 13, 2022Updated 3 years ago
yqcs / ipProxy
View on GitHub
自动采集代理IP池工具
☆17May 30, 2022Updated 3 years ago
LtmThink / CVE-2024-21733
View on GitHub
一个验证对CVE-2024-21733
☆26Aug 16, 2024Updated last year
WAY29 / javaGGC
View on GitHub
javaGGC for generate commons.collections gadget chain
☆12Nov 10, 2021Updated 4 years ago
X1cT34m / NCTF2024
View on GitHub
NCTF 2024 challenges and writeups
☆10Apr 11, 2025Updated last year
W01fh4cker / LearnFastjsonVulnFromZero-Improvement
View on GitHub
【两万字原创】零基础学fastjson漏洞（提高篇），公众号：追梦信安
☆212Dec 7, 2023Updated 2 years ago
guchangan1 / CodeVulnScan
View on GitHub
CodeVulnScan 是一款基于正则表达式的代码安全审计工具，专为红队成员快速定位sink设计。它能够快速扫描目标代码库，定位潜在的漏洞 Sink 点，提升代码审计效率。
☆65Feb 11, 2026Updated 3 months ago
Medicean / as_bypass_php_disable_functions
View on GitHub
antsword bypass PHP disable_functions
☆209Nov 18, 2022Updated 3 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
waderwu / javaDeserializeLabs
View on GitHub
javaDeserializeLabs
☆70Apr 18, 2023Updated 3 years ago
whwlsfb / BurpCrypto-JsLibrary
View on GitHub
BurpCrypto officially confirms the supported JS library (BurpCrypto官方确认支持的JS库).
☆12Sep 21, 2021Updated 4 years ago
doyensec / r2pickledec
View on GitHub
Pickle decompiler plugin for Radare2
☆18Aug 6, 2023Updated 2 years ago
evi1ox / cobalt_strike_bot
View on GitHub
☆35Jul 5, 2020Updated 5 years ago
bewhale / JavaSec
View on GitHub
Java安全学习记录
☆215Aug 27, 2022Updated 3 years ago
zwjjustdoit / CVE-2021-34371.jar
View on GitHub
CVE-2021-34371.jar
☆32Sep 6, 2021Updated 4 years ago
h00klod0er / JSFindAPI
View on GitHub
JSFindAPI是一款自动从html页面中获取js链接，并自动访问js提取js中的api路径，然后自动进行api未授权测试的插件，同时也可被动监听，当访问js时自动提取api进行访问，提取api接口主要根据AJAX，XMLHttpRequest，axios，Vue.js等…
☆34Oct 20, 2025Updated 7 months ago
Y4er / ysoserial
View on GitHub
ysoserial修改版，着重修改ysoserial.payloads.util.Gadgets.createTemplatesImpl使其可以通过引入自定义class的形式来执行命令、内存马、反序列化回显。
☆767Jan 11, 2024Updated 2 years ago
tabby-sec / tabby-path-finder
View on GitHub
A neo4j procedure for tabby
☆135May 17, 2025Updated last year
Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
su18 / MemoryShell
View on GitHub
JavaWeb MemoryShell Inject/Scan/Killer/Protect Research & Exploring
☆659Jun 25, 2021Updated 4 years ago
peterdocter / quarkspwdump
View on GitHub
Quarks PwDump is a native Win32 tool to extract credentials from Windows operating systems.
☆12Jun 25, 2015Updated 10 years ago
unam4 / java_gadget_flow
View on GitHub
一些总结出来的gadget的flow，后续合适和加入新的flow
☆68Dec 6, 2025Updated 5 months ago
waderwu / extractor-java
View on GitHub
CodeQL extractor for java, which don't need to compile java source
☆347Nov 25, 2022Updated 3 years ago
Zacarx / JavaSinkTracer_MCP
View on GitHub
基于函数级污点分析的 Java 源代码漏洞审计工具JavaSinkTracer，通过 Model Context Protocol (MCP) 为 AI 助手提供安全分析能力。
☆110Oct 7, 2025Updated 7 months ago
sp4zcmd / RedTeamer
View on GitHub
红方人员作战执行手册
☆11Feb 22, 2020Updated 6 years ago
qingchenhh / qc_poc
View on GitHub
漏洞poc
☆111Jan 4, 2026Updated 4 months ago