bit4woo/secqa external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

bit4woo/secqa

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/bit4woo/secqa)

Close

bit4woo / secqaView on GitHubMore

• External links
• Readme badge

解答开发关于安全漏洞的常见问题

☆41Apr 30, 2020Updated 5 years ago

Alternatives and similar repositories for secqa

Users that are interested in secqa are comparing it to the libraries listed below

• jas502n / Pentester_Note

  View on GitHub
  渗透测试复盘总结
  ☆15Jul 16, 2020Updated 5 years ago
• z1Ro0 / tomcat_nofile_webshell

  View on GitHub
  Tomcat基于动态注册Filter的无文件Webshell
  ☆26Jun 20, 2020Updated 5 years ago
• haby0 / sec-note

  View on GitHub
  记录各语言、框架中危险的sink，个人代码审计、漏洞研究使用。
  ☆117Dec 30, 2021Updated 4 years ago
• safe6Sec / webshell

  View on GitHub
  收藏webshell
  ☆25Mar 14, 2022Updated 4 years ago
• DictionaryHouse / CN-Name

  View on GitHub
  Collect the EN name with the highest frequency of use -CN Name
  ☆15Nov 7, 2017Updated 8 years ago
• saucer-man / chrome_get_cookie

  View on GitHub
  利用chrome扩展 dump 浏览器cookie https://saucer-man.com/information_security/787.html
  ☆15Sep 9, 2021Updated 4 years ago
• jas502n / CS_mock

  View on GitHub
  模拟cobalt strike beacon上线包. Simulation cobalt strike beacon connection packet.
  ☆17Sep 9, 2021Updated 4 years ago
• rabidwh0re / REALITY_SMASHER

  View on GitHub
  vRealize RCE + Privesc (CVE-2021-21975, CVE-2021-21983, CVE-0DAY-?????)
  ☆39Apr 7, 2021Updated 4 years ago
• jas502n / cs_yara

  View on GitHub
  check cs yara rules
  ☆42Sep 7, 2021Updated 4 years ago
• alexzorin / cve-2021-34558

  View on GitHub
  ☆46Jul 13, 2021Updated 4 years ago
• 7hang / bypass-

  View on GitHub
  ...Webshell
  ☆16Jul 2, 2020Updated 5 years ago
• binganao / TaiO

  View on GitHub
  TaiO 的定位是一款用于攻击方对靶标资产梳理，快速定位脆弱资产的网络空间测绘工具
  ☆75Mar 9, 2022Updated 4 years ago
• cckuailong / YarnRpcRCE

  View on GitHub
  ☆83Nov 20, 2021Updated 4 years ago
• BrucessKING / CVE-2021-36749

  View on GitHub
  Apache Druid 任意文件读取
  ☆33Oct 15, 2021Updated 4 years ago
• CrackerCat / sigFile

  View on GitHub
  微软签名缺陷利用，老技术
  ☆18Aug 10, 2021Updated 4 years ago
• infobyte / Exploit-CVE-2021-21086

  View on GitHub
  ☆28Dec 2, 2021Updated 4 years ago
• timwhitez / Doge-AddSSP

  View on GitHub
  Load ssp dll golang implementation
  ☆19Jan 18, 2022Updated 4 years ago
• ffffffff0x / name-fuzz

  View on GitHub
  针对目标已知信息的字典生成工具
  ☆209Sep 21, 2022Updated 3 years ago
• wabzsy / fish

  View on GitHub
  ☆35Jan 24, 2022Updated 4 years ago
• woodpecker-framework / woodpecker-framework-release

  View on GitHub
  高危漏洞精准检测与深度利用框架
  ☆1,458Jan 8, 2023Updated 3 years ago
• TryGOTry / C2_Demo

  View on GitHub
  golang+c#乱写了一个基于http的垃圾远控(支持团队协同作战,功能很少)(三端)
  ☆43Feb 21, 2022Updated 4 years ago
• maybe-why-not / upload_waf_filename_bypass

  View on GitHub
  ☆11Mar 9, 2022Updated 4 years ago
• Rvn0xsy / Cobaltstrike-atexec

  View on GitHub
  使得Cobaltstrike支持Atexec
  ☆89Jun 30, 2020Updated 5 years ago
• wabzsy / ShiroPaddingOracle

  View on GitHub
  ☆13Jan 24, 2022Updated 4 years ago
• Symbo1 / HackerOne-Staffs

  View on GitHub
  HackerOne Staffs
  ☆29Dec 9, 2019Updated 6 years ago
• jas502n / Emergency-Response-Notes

  View on GitHub
  应急响应实战笔记，一个安全工程师的自我修养。
  ☆20Jun 2, 2019Updated 6 years ago
• cream-sec / JSPHorse

  View on GitHub
  结合反射调用、动态编译、BCEL、defineClass0，ScriptEngine、Expression等技术的一款免杀JSP Webshell生成工具
  ☆19Dec 16, 2021Updated 4 years ago
• sie504 / Struts-S2-xxx

  View on GitHub
  整理收集Struts2漏洞环境
  ☆270Jan 9, 2018Updated 8 years ago
• LandGrey / domainNamePredictor

  View on GitHub
  一个简单的现代化公司域名使用规律预测及生成工具
  ☆388Feb 24, 2022Updated 4 years ago
• iSafeBlue / fastjson-autotype-bypass-demo

  View on GitHub
  fastjson 1.2.68 版本 autotype bypass
  ☆142Jun 17, 2022Updated 3 years ago
• ASTTeam / DAST

  View on GitHub
  《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.
  ☆55Oct 29, 2022Updated 3 years ago
• knightswd / NoPacScan

  View on GitHub
  NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script
  ☆87Feb 17, 2022Updated 4 years ago
• wabzsy / dotach

  View on GitHub
  ☆42May 14, 2024Updated last year
• A-D-Team / grafanaExp

  View on GitHub
  A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …
  ☆268Oct 17, 2025Updated 5 months ago
• samsbp / java-file-ftp

  View on GitHub
  POC for leaking java version through file and ftp protocols
  ☆24Nov 1, 2020Updated 5 years ago
• dongfangyuxiao / BurpExtend

  View on GitHub
  基于Burp插件开发打造渗透测试自动化
  ☆422Dec 7, 2021Updated 4 years ago
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,014May 21, 2024Updated last year
• 1120362990 / vulnerability-list

  View on GitHub
  在渗透测试中快速检测常见中间件、组件的高危漏洞。
  ☆728Mar 21, 2022Updated 4 years ago
• wooyunwang / Fortify

  View on GitHub
  源代码漏洞の审计
  ☆828Jul 2, 2024Updated last year