bfengj / Cloud-SecurityLinks

记录自己在云安全上的学习笔记等。

☆130

Alternatives and similar repositories for Cloud-Security

Users that are interested in Cloud-Security are comparing it to the libraries listed below

Sorting:

JiuZero / z0scan
A lightweight active and passive scanner that combines the advantages of local and distributed models, supports dynamic external plugin i…
☆343Updated this week
sspsec / Spear
基于GO walis框架的安全渗透工具箱框架
☆252Updated 3 weeks ago
novysodope / javaeasyscan
javaeasyscanner - 富婆系列，代码审计辅助工具，致力于解放大脑，方便双手
☆276Updated last year
datouo / CTF-Java-Gadget
CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段
☆274Updated last year
ReAbout / audit-java
Java代码审计手册，关注于漏洞挖掘而非利用【持续更新】
☆196Updated last year
Fushuling / TaintScaner
一款基于污点分析的PHP扫描工具，能快速匹配从常见Source点如$_POST、$GET到Sink点system等的路径，同时支持单独对函数的扫描。
☆162Updated 8 months ago
W01fh4cker / LearnFastjsonVulnFromZero-Basic
【两万字原创】零基础学fastjson漏洞（基础篇），公众号：追梦信安
☆183Updated last year
sspsec / Scan-Spring-GO
针对SpringBoot的渗透工具，Spring漏洞利用工具
☆316Updated last year
crushforyou / 2025hvv-poc
记录2025hvvpoc
☆254Updated 5 months ago
Daydream250 / Goby_POC
在公网收集的gobypoc+部分自己加的poc
☆114Updated 2 years ago
RuoJi6 / cloud-security
☆14Updated last year
suhaynn / CopySomething
一个用来提取空间测绘引擎数据的浏览器插件，顺便查备案，支持鹰图，fofa，shadan，quake数据提取
☆23Updated 11 months ago
dota-st / JavaSec
个人学习Java安全的笔记
☆127Updated 2 years ago
OracleNep / Nday-Exploit-Plan
历史漏洞的细节以及利用方法汇总收集
☆164Updated last year
3em0 / studyNote
about study java
☆17Updated 2 years ago
wa1ki0g / NoAuth
java-web 自动化鉴权绕过
☆373Updated 9 months ago
ChinaRan0 / BlueTeamTools
蓝队工具箱
☆531Updated 6 months ago
miao2sec / awesome-cloud-native-security
云原生安全资料库
☆166Updated 4 months ago
jinghu11 / Kpanda-vulnerability
主要用来更新应用漏洞
☆139Updated last year
HackGolang / HackGolang
《Go语言安全-只有Go安全才能拯救地球》Only Golang Security Can Save The Earth.
☆194Updated last month
Zjackky / CodeScan
一款轻量级匹配Sink点的代码审计扫描器，为了帮助红队过程中快速代码审计的小工具
☆402Updated last year
ProbiusOfficial / ssrf-labs
【Hello-CTF labs】一个ssrf的综合靶场，包含RCE，SQL注入，Tomcat，Redis，MySQL提权等ssrf攻击场景
☆75Updated 9 months ago
adysec / POC
wy876 POC | wy876的poc仓库已删库，该项目为其仓库镜像
☆450Updated 10 months ago
Chanzi-keji / chanzi
"chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability ru…
☆465Updated 3 weeks ago
fine-1 / php-SER-libs
php反序列化靶场，集合了常见的php反序列化漏洞——由这周末在做梦制作
☆152Updated 3 years ago
c0r1 / BypassPro
AutoBypass403-BurpSuite 插件二开重构，优化执行逻辑
☆307Updated last year
W01fh4cker / LearnFastjsonVulnFromZero-Improvement
【两万字原创】零基础学fastjson漏洞（提高篇），公众号：追梦信安
☆211Updated 2 years ago
BJLIYANLIANG / Security_Service_Interview
安全面试经验汇总 (80+篇)
☆74Updated 3 years ago
TheKingOfDuck / SinkFinder
闭源系统半自动漏洞挖掘工具，针对 jar/war/zip 进行静态代码分析，输出从source到sink的可达路径。LLM将验证路径可达性，并根据上下文给出该路径可信分数
☆491Updated 6 months ago
Whoopsunix / JavaRce
Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
☆539Updated 10 months ago