安全手册,企业安全实践、攻防与安全研究知识库
☆41Nov 28, 2024Updated last year
Alternatives and similar repositories for handbook
Users that are interested in handbook are comparing it to the libraries listed below
Sorting:
- 渗透测试、攻防姿势笔记☆20Jun 13, 2025Updated 8 months ago
- jshERP Exploit GUI☆23Aug 26, 2024Updated last year
- ☆26Dec 13, 2024Updated last year
- Vulnerability POC/EXP Collection and Classification☆23Sep 18, 2024Updated last year
- webshell编码工具 支持 jsp net php asp编码免杀☆27Dec 16, 2025Updated 2 months ago
- ☆10Nov 2, 2023Updated 2 years ago
- CVE-2024-36401 图形化利用工具,支持各个JDK版本利用以及回显、内存马实现☆38Jul 16, 2025Updated 7 months ago
- 一个记录本机IP的小程序☆35Jan 8, 2025Updated last year
- ☆13Jun 15, 2024Updated last year
- Java SOCKS Proxy☆11Dec 30, 2021Updated 4 years ago
- Small tool to decode ASP.NET __VIEWSTATE variable when doing webpentests☆15Feb 27, 2021Updated 5 years ago
- 命令执行写任意文件,主要用于命令执行但不出网情况☆30Sep 9, 2023Updated 2 years ago
- AI Security Research☆15Jun 21, 2023Updated 2 years ago
- 帆软bi反序列化漏洞利用工具☆56Jun 4, 2024Updated last year
- 整理本人在2021年10月-12月期间写的一些爬虫demo,比如用于渗透测试中SQL注入的URL收集脚本(爬取必应和百度搜索结果的URL),子域名爆破demo,各大高校漏洞信息收集爬虫,以及入门爬虫时写的一些基础代码☆27Sep 7, 2022Updated 3 years ago
- php webshell bypass D盾、safedog、360、火绒等,仅支持php7☆18Aug 25, 2025Updated 6 months ago
- ☆15Aug 20, 2025Updated 6 months ago
- 使用Github-API和WgpSecBot进行安全相关项目进行推送,用最简单的代码完成微信推送,每次推送均按最近更新排序。☆15Feb 24, 2023Updated 3 years ago
- iOS逆向开�发:iPhone越狱☆19Dec 27, 2024Updated last year
- YongYou U8C deserialization file upload exploit tool targeting IPFxxFileService and IFileTrans services☆28Sep 28, 2025Updated 5 months ago
- Spring Boot whitelabel error page SpEL rce EXP☆13May 24, 2024Updated last year
- jolokia Realm JNDI RCE 漏洞检测,并获取明文密码☆18May 29, 2023Updated 2 years ago
- 存一些笔者看到的,感觉很不错的开源的(或作者暂未声称商业版权的)信息安全笔记☆18Jul 4, 2024Updated last year
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆71Oct 13, 2024Updated last year
- 语雀敏感信息泄露搜索工具☆19Jan 20, 2023Updated 3 years ago
- xxl_job_executor_默认Access_Token_不出网综合利用☆40Oct 20, 2025Updated 4 months ago
- 通过分析流量,快速检查手机是否被APT攻击☆35Oct 19, 2025Updated 4 months ago
- CVE-2024-43044的利用方式☆20Aug 13, 2024Updated last year
- AI-native automated software risk analysis skill. LLM-driven, Code-First approach for comprehensive security risk assessment, threat mode…☆190Feb 10, 2026Updated 3 weeks ago
- 漏洞扫描poc,不定期更新☆41May 26, 2024Updated last year
- 一款Java内存马生成、测试工具,搭配@ax1sX的MemShell食用。☆261Feb 15, 2026Updated 2 weeks ago
- ☆18Nov 23, 2023Updated 2 years ago
- 某软最新公开gadgegt,新加入不出网利用。☆89Sep 6, 2024Updated last year
- 瞎注修改版,新增了参数黑名单、返回包列排序、数据包内容自动匹配替换的功能☆24Mar 19, 2025Updated 11 months ago
- JeecgCracker 是一个专门针对 JeecgBoot 框架的密码爆破工具。☆29Oct 29, 2024Updated last year
- 使用Docker一键制作Vol2取证需要的Profile☆22Aug 31, 2025Updated 6 months ago
- python简单webshell,用于蚁剑远程管理☆23Jul 14, 2024Updated last year
- 一款强大的内网信息收集工具,支持文件、文件夹、文件内容、命令、注册表、进程、mimikatz命令、dpapi、最近访问收集,且支持定制化配置,只需更新配置文件,定义收集规则,即可开启对各类浏览器、remote工具、聊天软件进行凭据、信息收集☆22Oct 16, 2022Updated 3 years ago
- ☆19Jul 15, 2024Updated last year