解答开发关于安全漏洞的常见问题
☆41Apr 30, 2020Updated 5 years ago
Alternatives and similar repositories for secqa
Users that are interested in secqa are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 渗透测试复盘总结☆15Jul 16, 2020Updated 5 years ago
- Tomcat基于动态注册Filter的无文件Webshell☆26Jun 20, 2020Updated 5 years ago
- 记录各语言、框架中危险的sink,个人代码审计、漏洞研究使用。☆119Dec 30, 2021Updated 4 years ago
- 收藏webshell☆25Mar 14, 2022Updated 4 years ago
- Collect the EN name with the highest frequency of use -CN Name☆15Nov 7, 2017Updated 8 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- 利用chrome扩展 dump 浏览器cookie https://saucer-man.com/information_security/787.html☆15Sep 9, 2021Updated 4 years ago
- 模拟cobalt strike beacon上线包. Simulation cobalt strike beacon connection packet.☆17Sep 9, 2021Updated 4 years ago
- vRealize RCE + Privesc (CVE-2021-21975, CVE-2021-21983, CVE-0DAY-?????)☆39Apr 7, 2021Updated 5 years ago
- check cs yara rules☆42Sep 7, 2021Updated 4 years ago
- ☆46Jul 13, 2021Updated 4 years ago
- ...Webshell☆16Jul 2, 2020Updated 5 years ago
- TaiO 的定位是一款用于攻击方对靶标资产梳理,快速定位脆弱资产的网络空间测绘工具☆76Mar 9, 2022Updated 4 years ago
- ☆83Nov 20, 2021Updated 4 years ago
- Apache Druid 任意文件读取☆33Oct 15, 2021Updated 4 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- 微软签名缺陷利用,老技术☆18Aug 10, 2021Updated 4 years ago
- ☆28Dec 2, 2021Updated 4 years ago
- Load ssp dll golang implementation☆19Jan 18, 2022Updated 4 years ago
- 针对目标已知信息的字典生成工具☆210Sep 21, 2022Updated 3 years ago
- ☆36Jan 24, 2022Updated 4 years ago
- 高危漏洞精准检测与深度利用框架☆1,460Jan 8, 2023Updated 3 years ago
- golang+c#乱写了一个基于http的垃圾远控(支持团队协同作战,功能很少)(三端)☆44Feb 21, 2022Updated 4 years ago
- ☆11Mar 9, 2022Updated 4 years ago
- 使得Cobaltstrike支持Atexec☆89Jun 30, 2020Updated 5 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- ☆14Jan 24, 2022Updated 4 years ago
- HackerOne Staffs☆29Dec 9, 2019Updated 6 years ago
- 应急响应实战笔记,一个安全工程师的自我修养。☆20Jun 2, 2019Updated 6 years ago
- 结合反射调用、动态编译、BCEL、defineClass0,ScriptEngine、Expression等技术的一款免杀JSP Webshell生成工具☆19Dec 16, 2021Updated 4 years ago
- 整理收集Struts2漏洞环境☆271Jan 9, 2018Updated 8 years ago
- 一个简单的现代化公司域名使用规律预测及生成工具☆389Feb 24, 2022Updated 4 years ago
- fastjson 1.2.68 版本 autotype bypass☆142Jun 17, 2022Updated 3 years ago
- 《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.☆55Oct 29, 2022Updated 3 years ago
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆86Feb 17, 2022Updated 4 years ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- ☆43May 14, 2024Updated last year
- A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …☆269Oct 17, 2025Updated 5 months ago
- POC for leaking java version through file and ftp protocols☆24Nov 1, 2020Updated 5 years ago
- 基于Burp插件开发打造渗透测试自动化☆422Dec 7, 2021Updated 4 years ago
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,016May 21, 2024Updated last year
- 在渗透测试中快速检测常见中间件、组件的高危漏洞。☆728Mar 21, 2022Updated 4 years ago
- 源代码漏洞の审计☆829Jul 2, 2024Updated last year