Tkid3 / Operational-Security
各安全大会业务安全资料
☆16Updated 5 years ago
Alternatives and similar repositories for Operational-Security:
Users that are interested in Operational-Security are comparing it to the libraries listed below
- 宽字节安全团队的博客☆30Updated 4 years ago
- 分享在建设安全管理体系、ISO27001、等级保护、安全评审过程中的点点滴滴☆23Updated 6 years ago
- jre8u20 gadget☆33Updated 3 years ago
- 资产扫描工具☆46Updated 4 years ago
- 通过Whois信息发现更多与目标有关联的域名,扩大攻击面☆14Updated 3 years ago
- fofa-spider☆12Updated 4 years ago
- Celestion 是一个无回显漏洞测试辅助平台,平台使用flask编写,提供DNSLOG,HTTPLOG等功能。 (界面懒得弄,后续有需要再说)。☆30Updated last year
- some struts tag , attributes which out of the range will call SetDynamicAttribute() function, it will cause ONGL expression execute☆69Updated 4 years ago
- 越权检测服务器Chrome插件开发部分☆17Updated last year
- Apache Shiro payload AES解密☆28Updated 4 years ago
- 用于解决awvs和xray联动时url批量导入并扫描的小脚本☆16Updated 4 years ago
- Detect burp☆33Updated 3 years ago
- 一个可快速“搬运”cookie的Burp Suite插件☆25Updated 6 years ago
- 记录weblogic的一些漏洞原理☆16Updated 3 years ago
- 2020年~2021年 网站CMS、中间件、框架系统漏洞集合☆36Updated 4 years ago
- CVE-2020-26259: XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process…☆25Updated 4 years ago
- Spring Cloud Netflix Hystrix Dashboard template resolution vulnerability CVE-2021-22053☆37Updated 2 years ago
- 解答开发关于安全漏洞的常见问题☆41Updated 4 years ago
- log4j-patch 修改字节码实现补丁防御☆20Updated 3 years ago
- 个人使用的一款脚本提权扫描器☆19Updated 4 years ago
- AWVS12&AWVS13 通用API批量导入脚本 AWVS12 & AWVS13 common API batch import script.☆25Updated 3 years ago
- 利用xray高级版批量收集子域名☆18Updated 5 years ago
- ☆4Updated 4 years ago
- 一款辅助探测Orderby注入漏洞的BurpSuite插件☆25Updated 3 years ago
- Java RCE 回显测试代码☆12Updated 3 years ago
- 一款支持微信和QQ、UC手机浏览器的分享工具,可以自定义标题、链接、icon等☆11Updated 6 years ago
- Java RMI反序列化漏洞插件☆46Updated 3 years ago
- 代码审计辅助工具☆36Updated 4 years ago
- 通过Web获取访客机器的hostname字段内容。☆64Updated 3 years ago
- Thymeleaf SSTI Bypass☆11Updated 3 years ago