GitHub Action安全工具,可以将Action Secrets还原拿到明文,用于证明Secrets并不是绝对的安全。(测试通过,放心使用,再有问题来issues区锤我...)
☆24Sep 12, 2022Updated 3 years ago
Alternatives and similar repositories for github-action-secrets-stealer
Users that are interested in github-action-secrets-stealer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 互联网侧调试访问者信息的工具☆34May 21, 2024Updated last year
- ☆16Jun 22, 2022Updated 3 years ago
- a exec jsp shell, simply like weevely php C/S shell.☆14Jun 21, 2022Updated 3 years ago
- 检测邮件发送的可行性,可用来红队作战中对目标邮箱账户测试。The feasibility sent by the detection mail can be used for the target mailbox account test in the Red Team b…☆10May 8, 2023Updated 2 years ago
- codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)☆205Mar 19, 2022Updated 4 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- UAC-ByPass utils☆11Jan 28, 2022Updated 4 years ago
- ☆10Jul 21, 2022Updated 3 years ago
- 一款针对于IDE的反制蜜罐 IDE-honeypot☆106Jul 12, 2022Updated 3 years ago
- ☆275Oct 28, 2021Updated 4 years ago
- Java Web shell project☆12Oct 22, 2021Updated 4 years ago
- Cobalt Strike RCE CVE-2022-39197☆17Sep 25, 2022Updated 3 years ago
- Unofficial Dockerfile and scripts for building CodeQL databases for the OpenJDK☆49Jan 7, 2024Updated 2 years ago
- ☆35Jul 5, 2020Updated 5 years ago
- 红蓝对抗量化评估系统(Red Team Assessment Scoring System)☆214Mar 2, 2026Updated 3 weeks ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- CVE-2020-4464 / CVE-2020-4450☆36Aug 24, 2021Updated 4 years ago
- Java Agent memory horse scanner combined with Call Graph modus☆65Dec 26, 2022Updated 3 years ago
- 分享几个直接可用的内存马,记录一下学习过程中看过的文章☆979Mar 23, 2022Updated 4 years ago
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆175Jan 4, 2022Updated 4 years ago
- API Security DAST & Oprations☆17Aug 10, 2023Updated 2 years ago
- log4j-patch 修改字节码实现补丁防御☆20Dec 10, 2021Updated 4 years ago
- Java XMLDecoder payload generator☆16Jul 27, 2021Updated 4 years ago
- shiro-cve-2020-17523 漏洞的两种绕过姿势分析 以及配套的漏洞环境☆119Feb 7, 2021Updated 5 years ago
- A deflate compressor that emits compressed data that is in the [A-Za-z0-9] ASCII byte range.☆39Jan 25, 2022Updated 4 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- weblogic漏洞利用工具☆17Jul 16, 2020Updated 5 years ago
- 自动化的代理服务器☆36Dec 12, 2023Updated 2 years ago
- ☆343Mar 6, 2026Updated 2 weeks ago
- ☆22Dec 5, 2022Updated 3 years ago
- LANGZI_SRC_安全巡航 是一款集成漏扫,验证,资产监控,自动复现并且生成结果表报的工具,实现初衷是为了帮助白帽子在SRC中节约时间成本的自动化工具。☆14Jul 7, 2019Updated 6 years ago
- Neo-reGeorg is a project that seeks to aggressively refactor reGeorg☆10Dec 26, 2022Updated 3 years ago
- Apache-backdoor Apache 中间件模块后门☆53Jan 10, 2020Updated 6 years ago
- a component of red teaming for generate route map.☆11Aug 30, 2024Updated last year
- Go相关的安全研究☆234Nov 6, 2023Updated 2 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- ScopeSentry tool scans the source code☆218Jan 26, 2026Updated last month
- Codeql学习笔记☆900Apr 25, 2022Updated 3 years ago
- 完善的动态备份文件扫描工具 实现动态字典渲染、动态结果判断、自动字典记录、的敏感文件扫描器☆28May 21, 2025Updated 10 months ago
- fastjson不出网利用、c3p0☆256Jul 30, 2021Updated 4 years ago
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆101Sep 20, 2019Updated 6 years ago
- Fastjson + MySQL 条件下不出网利用测试环境☆49Dec 6, 2025Updated 3 months ago
- 命令执行不回显但DNS协议出网的命令回显场景解决方案☆277Jan 10, 2023Updated 3 years ago