no-one-sec / github-action-secrets-stealer
GitHub Action安全工具,可以将Action Secrets还原拿到明文,用于证明Secrets并不是绝对的安全。(测试通过,放心使用,再有问题来issues区锤我...)
☆24Updated 2 years ago
Alternatives and similar repositories for github-action-secrets-stealer:
Users that are interested in github-action-secrets-stealer are comparing it to the libraries listed below
- Celestion 是一个无回显漏洞测试辅助平台,平台使用flask编写,提供DNSLOG,HTTPLOG等功能。 (界面懒得弄,后续有需要再说)。☆30Updated last year
- MysqlHoneypot☆23Updated 2 years ago
- Java RMI反序列化漏洞插件☆46Updated 3 years ago
- 分享在建设安全管理体系、ISO27001、�等级保护、安全评审过程中的点点滴滴☆23Updated 6 years ago
- jre8u20 gadget☆33Updated 3 years ago
- 日志分析库,nuclei 的另一种用法☆33Updated 2 years ago
- 宽字节安全团队的博客☆30Updated 4 years ago
- 一个LDAP请求监听器,摆脱dnslog平台和java☆34Updated 2 years ago
- CobatStrike-Script, Beacon上线,微信实时推送!☆44Updated 4 years ago
- 针对于Jenkins控制台用户的暴力破解工具☆34Updated 4 years ago
- Spring Cloud Netflix Hystrix Dashboard template resolution vulnerability CVE-2021-22053☆37Updated 2 years ago
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆50Updated 3 years ago
- IMAP Bruteforce Script☆29Updated 5 years ago
- e-mesaage <=4.15 后台jar包上传exp☆47Updated 6 years ago
- 2020年~2021年 网站CMS、中间件、框架系统漏洞集合☆36Updated 4 years ago
- 解答开发关于安全漏洞的常见问题☆41Updated 4 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated 2 years ago
- ☆46Updated 3 years ago
- 自动化的代理服务器☆35Updated last year
- CVE-2021-43297 POC,Apache Dubbo<= 2.7.13时可以实现RCE☆38Updated 3 years ago
- 解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具☆31Updated 2 years ago
- Fofa Pro Api下载工具☆17Updated 5 years ago
- ARL Docker 环境分布式部署☆19Updated 4 years ago
- lite version of gobuster. Only subdomain brute. 内网轻量化子域名爆破工具☆44Updated 3 years ago
- ☆28Updated 3 years ago
- 互联网侧调试访问者信息的工具☆33Updated 10 months ago
- ☆42Updated 5 years ago
- ☆49Updated 4 years ago
- 该项目是通过go语言实现防止rmi利用被反置的问题。☆44Updated 3 years ago
- ThinkPHP各版本反序列化利用代码☆32Updated 4 years ago