Cryin / Paper
Web Security Technology & Vulnerability Analysis Whitepapers
☆540Updated 6 years ago
Alternatives and similar repositories for Paper:
Users that are interested in Paper are comparing it to the libraries listed below
- java source code static code analysis and danger function identify prog☆533Updated 5 years ago
- 在渗透测试中快速检测常见中间件、组件的高危漏洞。☆734Updated 2 years ago
- Static code auditing system☆460Updated 4 years ago
- PC客户端(C-S架构)渗透测试checklist / Client side(C-S) penetration checklist☆659Updated 3 years ago
- Collecting and writing PoC or EXP for vulnerabilities on some application☆393Updated 3 years ago
- 源代码漏洞の审计☆818Updated 6 months ago
- Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)☆1,299Updated 2 years ago
- 一个包含php,java,python,C#等各种语言版本的XXE漏洞Demo☆778Updated 2 years ago
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆446Updated 2 years ago
- 从wooyun中提取的payload,以及burp插件☆842Updated 2 years ago
- 记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获☆973Updated 6 years ago
- IAST 灰盒扫描工具☆444Updated 2 years ago
- 越权检测工具☆731Updated 2 years ago
- Weblogic环境搭建工具☆771Updated 4 years ago
- BCS(北京网络安全大会)2019 红队行动会议重点内容☆816Updated 5 years ago
- OpenRASP 漏洞测试环境☆305Updated last year
- Security Knowledge Structure(安全知识汇总)☆241Updated 6 years ago
- ☆798Updated 2 years ago
- Java漏洞学习笔记 Deserialization Vulnerability☆923Updated last year
- 通过BurpSuite来构建自己的爆破字典,可以通过字典爆破来发现隐藏资产。☆494Updated 11 months ago
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。☆867Updated 5 years ago
- 新漏洞感知项目 主要帮助大家 记录一些重大漏洞 漏洞方面的细节☆200Updated 5 years ago
- 自动扫描内网常见sql、no-sql数据库脚本(mysql、mssql、oracle、postgresql、redis、mongodb、memcached、elasticsearch),包含未授权访问及常规弱口令检测☆564Updated 7 years ago
- a webshell resides in the memory of java web server☆665Updated 6 years ago
- 信息安全方面面试清单☆290Updated 11 months ago