hongriSec/PHP-Audit-Labs

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hongriSec/PHP-Audit-Labs)

hongriSec / PHP-Audit-Labs

一个关于PHP的代码审计项目

☆1,913

Alternatives and similar repositories for PHP-Audit-Labs

Users that are interested in PHP-Audit-Labs are comparing it to the libraries listed below

Sorting:

bowu678 / php_bugs
View on GitHub
PHP代码审计分段讲解
☆1,721Aug 29, 2022Updated 3 years ago
Mochazz / ThinkPHP-Vuln
View on GitHub
关于ThinkPHP框架的历史漏洞分析集合
☆1,120Jan 18, 2020Updated 6 years ago
l3m0n / Bypass_Disable_functions_Shell
View on GitHub
一个各种方式突破Disable_functions达到命令执行的shell
☆1,198Oct 17, 2023Updated 2 years ago
JoyChou93 / java-sec-code
View on GitHub
Java web common vulnerabilities and security code which is base on springboot and spring security
☆2,649Dec 2, 2024Updated last year
threedr3am / learnjavabug
View on GitHub
Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
☆2,690Mar 14, 2024Updated last year
c0ny1 / chunked-coding-converter
View on GitHub
Burp suite 分块传输辅助插件
☆2,023Feb 23, 2022Updated 4 years ago
Xyntax / 1000php
View on GitHub
1000个PHP代码审计案例(2016.7以前乌云公开漏洞)
☆1,110Jul 26, 2016Updated 9 years ago
Maskhe / javasec
View on GitHub
自己学习java安全的一些总结，主要是安全审计相关
☆1,695Jan 5, 2022Updated 4 years ago
phith0n / JavaThings
View on GitHub
Share Things Related to Java - Java安全漫谈笔记相关内容
☆1,995Apr 9, 2025Updated 11 months ago
LoRexxar / Kunlun-M
View on GitHub
KunLun-M是一个完全开源的静态白盒扫描工具，支持PHP、JavaScript的语义扫描，基础安全、组件安全扫描，Chrome Ext\Solidity的基础扫描。
☆2,378Jan 16, 2026Updated last month
aleenzz / MYSQL_SQL_BYPASS_WIKI
View on GitHub
mysql注入,bypass的一些心得
☆1,326Jun 25, 2024Updated last year
TheKingOfDuck / fuzzDicts
View on GitHub
You Know, For WEB Fuzzing !
☆8,264Nov 13, 2023Updated 2 years ago
jiangsir404 / Audit-Learning
View on GitHub
记录自己对《代码审计》的理解和总结，对危险函数的深入分析以及在p牛的博客和代码审计圈的收获
☆979Oct 8, 2018Updated 7 years ago
bit4woo / python_sec
View on GitHub
python安全和代码审计相关资料收集 resource collection of python security and code review
☆1,352Aug 6, 2020Updated 5 years ago
LandGrey / SpringBootVulExploit
View on GitHub
SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list
☆6,120Mar 10, 2021Updated 4 years ago
HackJava / HackJava
View on GitHub
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
☆2,872Aug 4, 2023Updated 2 years ago
LandGrey / webshell-detect-bypass
View on GitHub
绕过专业工具检测的Webshell研究文章和免杀的Webshell
☆1,733Nov 15, 2020Updated 5 years ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,404Jan 18, 2022Updated 4 years ago
aleenzz / Cobalt_Strike_wiki
View on GitHub
Cobalt Strike系列
☆2,414Dec 3, 2023Updated 2 years ago
rabbitmask / WeblogicScan
View on GitHub
Weblogic一键漏洞检测工具，V1.5，更新时间：20200730
☆2,266May 22, 2023Updated 2 years ago
CHYbeta / Code-Audit-Challenges
View on GitHub
Code-Audit-Challenges
☆990Nov 17, 2018Updated 7 years ago
r0eXpeR / redteam_vul
View on GitHub
红队作战中比较常遇到的一些重点系统漏洞整理。
☆2,521Jul 17, 2021Updated 4 years ago
zhzyker / exphub
View on GitHub
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、…
☆4,272Apr 4, 2021Updated 4 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,011May 21, 2024Updated last year
yangyangwithgnu / bypass_disablefunc_via_LD_PRELOAD
View on GitHub
bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
☆1,169Aug 7, 2021Updated 4 years ago
Threezh1 / JSFinder
View on GitHub
JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
☆2,915Nov 24, 2021Updated 4 years ago
c0ny1 / upload-fuzz-dic-builder
View on GitHub
上传漏洞fuzz字典生成脚本
☆1,270Apr 1, 2021Updated 4 years ago
cn-panda / JavaCodeAudit
View on GitHub
Getting started with java code auditing 代码审计入门的小项目
☆930Feb 22, 2023Updated 3 years ago
rebeyond / Behinder
View on GitHub
“冰蝎”动态二进制加密网站管理客户端
☆6,137Aug 24, 2023Updated 2 years ago
timwhitez / crawlergo_x_XRAY
View on GitHub
360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
☆1,183Nov 10, 2021Updated 4 years ago
EdgeSecurityTeam / EHole
View on GitHub
EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具
☆3,439Apr 2, 2024Updated last year
LangziFun / LangSrcCurise
View on GitHub
SRC子域名资产监控
☆1,298Jan 14, 2021Updated 5 years ago
Ridter / Intranet_Penetration_Tips
View on GitHub
2018年初整理的一些内网渗透TIPS，后面更新的慢，所以整理出来希望跟小伙伴们一起更新维护~
☆4,610Feb 24, 2023Updated 3 years ago
TideSec / BypassAntiVirus
View on GitHub
远控免杀系列文章及配套工具，汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术，并对免杀效果进行了一一测试，为远控的免杀和杀软对抗免杀提供参考。
☆5,029Sep 14, 2024Updated last year
l3m0n / pentest_study
View on GitHub
从零开始内网渗透学习
☆3,010Apr 8, 2016Updated 9 years ago
HatBoy / Struts2-Scan
View on GitHub
Struts2全漏洞扫描利用工具
☆2,211Jul 12, 2021Updated 4 years ago
SecWiki / CMS-Hunter
View on GitHub
CMS漏洞测试用例集合
☆1,764Dec 20, 2018Updated 7 years ago
Bypass007 / Emergency-Response-Notes
View on GitHub
应急响应实战笔记，一个安全工程师的自我修养。
☆5,517Jun 26, 2023Updated 2 years ago
aleenzz / php_bug_wiki
View on GitHub
代码审计相关的一些知识
☆421Jun 25, 2024Updated last year