AITTAK 是一个特制的红队AI中转站平台,部署在客户端与 AI API 上游之间,用于记录请求行为、通过监控用户Prompt及工具调用结果检测敏感信息泄露、以及通过在SSE注入工具调用实现任意命令执行。
☆49May 19, 2026Updated last month
Alternatives and similar repositories for AITTAK
Users that are interested in AITTAK are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ghost-bits-encoder 是一个面向 Woodpecker 的辅助插件,围绕 Ghost Bits / Unicode 高位包装思路,提供通用编解码、JSON 相关编码、URL 相关编码以及若干专项辅助能力。☆52May 15, 2026Updated 2 months ago
- ☆19May 1, 2026Updated 2 months ago
- 在学习过程中的一些记录☆25Oct 5, 2025Updated 9 months ago
- Wrap Gemini CLI, Antigravity, ChatGPT Codex, Claude Code, Qwen Code, iFlow as an OpenAI/Gemini/Claude/Codex compatible API service, allow…☆44Jul 2, 2026Updated last week
- 在Android Studio上搭建一套2026年最新的APP渗透环境,文章从去年年底开始构建共计耗时一个月(中间因为Android某些版本兼容性推翻了几次),这篇文章发出来了就是全部成功了🌟。☆109Jun 12, 2026Updated last month
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Java 字节码 facts-only 分析引擎,基于 jar-analyzer-engine 开发,把 JAR/WAR 解析成结构化 SQLite 事实库供 AI 代码审计☆17Jul 8, 2026Updated last week
- 用友的一些反序列化链子以及1day,二开了狼组的YongYouNcTool,改了一下逻辑以及poc☆132Oct 12, 2024Updated last year
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆11Mar 18, 2019Updated 7 years ago
- 让"WAF绕过"变得简单☆437Jan 26, 2025Updated last year
- TongWebEJB漏洞利用工具☆26Apr 24, 2026Updated 2 months ago
- ☆42Apr 29, 2026Updated 2 months ago
- idea插件,快速生成反序列化中常用的方法,比如setFieldValue、createTemplatesImpl等☆29Oct 2, 2024Updated last year
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆227Jun 8, 2024Updated 2 years ago
- java-agent内存马一键注入服务器维权工具,支持自定义路径、校验和内存马内容。☆132Nov 4, 2025Updated 8 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- 记录一些代码审计过的源码☆183Feb 26, 2025Updated last year
- Extract website information from Vue☆284Aug 29, 2023Updated 2 years ago
- 《深入JDBC安全:特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…☆590Feb 7, 2026Updated 5 months ago
- 专注于代码审计skill,最小化轻量化skill,只负责安全边界。☆963Jun 16, 2026Updated 3 weeks ago
- Project Muteki (無敵): autonomous multi-model CTF-solving AI agent swarm☆259Jul 3, 2026Updated last week
- 强化学习 + 端口扫描☆126Feb 23, 2025Updated last year
- ☆25Mar 1, 2025Updated last year
- AutoBypass403-BurpSuite 插件二开重构,优化执行逻辑☆306Oct 12, 2024Updated last year
- ProxyCraft 是一款轻量级、高性能的命令行代理工具,本身为 HTTP 代理协议,支持 HTTPS/HTTP2/SSE 特性,用于进行本地抓包分析。它专为开发人员、安全测试人员和网络管理员设计,提供便捷的流量观察、分析和调试能力。☆15Jan 22, 2026Updated 5 months ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- "chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability ru…☆489Feb 1, 2026Updated 5 months ago
- 一个普通的BOF用来BypassUAC☆22Apr 6, 2024Updated 2 years ago
- 使用C简单重构Beacon,适配CobaltStrike客户端☆104Feb 6, 2026Updated 5 months ago
- Leveraging LLM to generate Java deserialization chains☆87Mar 12, 2026Updated 4 months ago
- DockerRemoteAPI未授权访问(2375端口)利用工具,支持容器逃逸☆68Dec 29, 2024Updated last year
- Remote process shellcode injection with interactive output via named pipes☆48Jan 10, 2024Updated 2 years ago
- A AI general-purpose state-space search engine, validated first on autonomous penetration testing.☆1,974Jun 30, 2026Updated 2 weeks ago
- 隐卫一款基于 Bash 开发的 Linux 应急响应自动化脚本☆49Aug 18, 2025Updated 10 months ago
- Apache ActiveMQ漏洞综合利用工具(CVE-2015-5254,CVE-2016-3088,CVE-2022-41678,CVE-2023-46604,CVE-2024-32114,CVE-2026-34197,CVE-2026-40466, CVE-2026-…☆80Jun 27, 2026Updated 2 weeks ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- 实战 SRC / 众测 / Bug bounty 漏洞挖掘 Claude Code skill — 19 个攻击类 playbook、305 个结构化 payload、263 个 WAF/EDR 绕过、2887 份 HackerOne 真实案例、88,636 WooYun …☆552May 24, 2026Updated last month
- Java bytecode line number restoration tool☆145Aug 31, 2025Updated 10 months ago
- 一款针对K8s综合利用GUI工具☆149Apr 26, 2026Updated 2 months ago
- WebStrike 是一套以 Chromium 系浏览器扩展(Manifest V3) 为受控端点的指挥与控制(C2)套件。与传统以进程/驱动为主的 C2 相比,其工作重心落在 浏览器安全域:在合规授权与攻防演练场景下,可显著降低与终端 EDR 在 进程注入、驱动、内核回调…☆58Jul 8, 2026Updated last week
- DockerApiRCE☆237Oct 22, 2024Updated last year
- 微信小程序全自动安全审计 Skill,基于 Claude Code Agent Teams。7 Agent 协作,覆盖敏感信息、API接口、加密分析、漏洞分析四大维度。采用脚本+LLM双层架构,脚本保证覆盖率,LLM保证准确率。☆357Apr 3, 2026Updated 3 months ago
- Java 代码审计 idea 插件☆26Mar 8, 2025Updated last year