AI-native automated software risk analysis skill. LLM-driven, Code-First approach for comprehensive security risk assessment, threat modeling, security testing, penetration testing, and compliance checking.
☆265Apr 26, 2026Updated last week
Alternatives and similar repositories for threat-modeling
Users that are interested in threat-modeling are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- JeecgBoot Go版本综合漏洞检测工具☆87Feb 24, 2026Updated 2 months ago
- 在Java安全学习过程中的笔记和代码☆104Apr 25, 2026Updated 2 weeks ago
- 适用于某EHR&HRM的加解密工具,可直接用�于sqlmap☆25Jan 14, 2024Updated 2 years ago
- 在spring-aop中新发现的反序列化gadget-chain☆52Jan 12, 2025Updated last year
- Kill Everything AV/EDR☆27Nov 18, 2024Updated last year
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- Fenrir 是一个基于 MCP 协议与 AST 技术的代码审计工具,旨在解决安全研究与自动化代码审计领域中,面对大规模、结构复杂甚至反编译代码时,传统代码搜索与分析手段效率低、准确性差的问题。☆178Oct 21, 2025Updated 6 months ago
- CLI tool for tracking dependents repositories and sorting result by Stars ⭐☆43Jan 25, 2024Updated 2 years ago
- ☆50Nov 4, 2022Updated 3 years ago
- JeecgCracker 是一个专门针对 JeecgBoot 框架的密码爆破工具。☆29Oct 29, 2024Updated last year
- 安全手册,企业安全实践、攻防与安全研究知识库☆41Nov 28, 2024Updated last year
- Apache Superset Auth Bypass (CVE-2023-27524)☆11May 9, 2023Updated 3 years ago
- 移动端渗透测试☆13Aug 7, 2022Updated 3 years ago
- Basic Psexec clone, but in golang.☆17Jul 2, 2022Updated 3 years ago
- 支持Tomcat内存马查杀的JSP脚本☆66Jun 16, 2025Updated 10 months ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- MS17-010 Exploits With Original NSA Tool(only for windows)☆32Jul 30, 2024Updated last year
- Extract Windows credentials directly from VM memory snapshots and virtual disks☆1,239Apr 18, 2026Updated 3 weeks ago
- 一些总结出来的gadget的flow,后续合适和加入新的flow☆68Dec 6, 2025Updated 5 months ago
- GitHubApi CVE Poc监控工具☆14Jan 23, 2026Updated 3 months ago
- burp插件 ShiroScan 主要用于框架、无dnslog key检测,在大佬的基础上加入shiro>1.2.42(AES GCM)☆17May 6, 2021Updated 5 years ago
- Scanner platform based on Kubernetes and Argo-Workflow 基于k8s和argo工作流的扫描器☆111Nov 20, 2023Updated 2 years ago
- 一款linux 内网渗透辅助工具☆77Jan 31, 2024Updated 2 years ago
- ☆48Dec 30, 2025Updated 4 months ago
- JavaGadgetGenerator 工具,支持 ysoserial,Hessian,字节码,Expr/SSTI,Shiro,JDBC 等 Gadget 生成,封装,混淆,出网延迟探测,内存马注入等...☆564Apr 3, 2026Updated last month
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- 域内自动化信息搜集利用工具☆469Oct 24, 2023Updated 2 years ago
- Next-generation IaC tools | 下一代基础设施管理工具☆153May 1, 2026Updated last week
- DockerApiRCE☆237Oct 22, 2024Updated last year
- 一个普通的BOF用来BypassUAC☆22Apr 6, 2024Updated 2 years ago
- YongYou U8C deserialization file upload exploit tool targeting IPFxxFileService and IFileTrans services☆29Sep 28, 2025Updated 7 months ago
- 方便自己搭建codeql环境和数据库的工具。☆64Mar 25, 2026Updated last month
- ☆10May 17, 2023Updated 2 years ago
- 2023HW漏洞整理☆41Sep 3, 2024Updated last year
- .NET 执行命令的方法合集☆24Apr 9, 2023Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 文章 Attack Code 的详细全文。安全和开发总是具有伴生属性,尤其是云的安全方向,本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always …☆559Feb 29, 2024Updated 2 years ago
- 《深入JDBC安全:特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…☆579Feb 7, 2026Updated 3 months ago
- portreuse reuseport 端口复用☆61Aug 27, 2023Updated 2 years ago
- Black Hat Asia 2026 Ghost Bits payload generate tools☆53Apr 29, 2026Updated last week
- 通过Dump内存读取ToDesk设备代码、连接密码☆243Sep 9, 2024Updated last year
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆53Sep 10, 2023Updated 2 years ago
- 🔍 CodeAuditAssistant - JetBrains Code Audit Plugin (Beta) ⚡ Deep Call-Chain Tracking | 🚀 Method/Class Search | 🔥 Prebuilt Vuln Sink…☆786Mar 14, 2026Updated last month