jiangsir404 / Audit-LearningLinks
记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获
☆980Updated 7 years ago
Alternatives and similar repositories for Audit-Learning
Users that are interested in Audit-Learning are comparing it to the libraries listed below
Sorting:
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。☆868Updated 6 years ago
- 用于记录分享一些有趣的案例☆867Updated 4 years ago
- 源代码漏洞の审计☆829Updated last year
- python安全和代码审计相关资料收集 resource collection of python security and code review☆1,354Updated 5 years ago
- 1000个PHP代码审计案例(2016.7以前乌云公开漏洞)☆1,110Updated 9 years ago
- mysql注入,bypass的一些心得☆1,329Updated last year
- DoraBox - Basic Web Vulnerability Training☆802Updated 2 years ago
- 日常src平台域名收集☆593Updated 6 years ago
- 从wooyun中提取的payload,以及burp插件☆840Updated 3 years ago
- 超详细的渗透测试思维导图☆691Updated 5 years ago
- 一个专注于聚合和记录各种SQL注入方法的wiki☆593Updated last year
- Python3编写的CMS漏洞检测框架☆1,454Updated 2 years ago
- PoCBox - Vulnerability Test Aid Platform☆964Updated last year
- 用于记录企业安全规划,建设,运营,攻防的相关资源☆615Updated 6 years ago
- 360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能☆1,185Updated 4 years ago
- Enumeration sub domains(枚举子域名)☆1,065Updated 4 years ago
- BCS(北京网络安全大会)2019 红队行动会议重点内容☆821Updated 6 years ago
- 上传漏洞fuzz字典生成脚本☆1,271Updated 4 years ago
- 一个主要用于信息搜集的工具集,主要是用于对网站子域名、开放端口、端口指纹、c段地址、敏感目录等信息进行批量搜集。☆1,009Updated 5 years ago
- 在渗透测试中快速检测常见中间件、组件的高危漏洞。☆729Updated 3 years ago
- SRC子域名资产监控☆1,300Updated 5 years ago
- 越权检测工具☆746Updated 3 years ago
- ☆715Updated 6 years ago
- Information Security (Web Security/Penetration Testing Direction) Interview Questions/Solutions 信息安全(Web安全/渗透测试方向)面试题/解题思路☆480Updated 6 years ago
- 工欲善其事,必先利其器☆1,613Updated 4 years ago
- 代码审计相关的一些知识☆423Updated last year
- Web Security Technology & Vulnerability Analysis Whitepapers☆549Updated 7 years ago
- WEB渗透测试数据库☆681Updated 6 years ago
- 实时上线的 XSS 盲打平台☆480Updated 3 years ago
- Python2编写的struts2漏洞全版本检测和利用工具☆1,420Updated 6 years ago