no-one-sec / github-action-secrets-stealer
GitHub Action安全工具,可以将Action Secrets还原拿到明文,用于证明Secrets并不是绝对的安全。(测试通过,放心使用,再有问题来issues区锤我...)
☆24Updated 2 years ago
Related projects ⓘ
Alternatives and complementary repositories for github-action-secrets-stealer
- Celestion 是一个无回显漏洞测试辅助平台,平台使用flask编写,提供DNSLOG,HTTPLOG等功能。 (界面懒得弄,后续有需要再说)。☆30Updated last year
- 互联网侧调试访问者信息的工具☆32Updated 5 months ago
- MysqlHoneypot☆23Updated 2 years ago
- jre8u20 gadget☆33Updated 3 years ago
- payloads☆15Updated 3 years ago
- 解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具☆31Updated 2 years ago
- ThinkPHP各版本反序列化利用代码☆32Updated 4 years ago
- 日志分析库,nuclei 的另一种用法☆33Updated 2 years ago
- CVE-2021-4034, For Webshell Version.☆34Updated 2 years ago
- Show the application of fuzzy in penetration test~☆13Updated 2 years ago
- XxlJob<=2.1.2配置不当情况下反序列化RCE☆70Updated 4 years ago
- 自动化的代理服务器☆35Updated 11 months ago
- ☆4Updated 2 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated last year
- ☆51Updated 2 years ago
- CVE-2021-43297 POC,Apache Dubbo<= 2.7.13时可以实现RCE☆38Updated 2 years ago
- ☆41Updated 5 years ago
- ysoserial for 1nhann☆10Updated 2 years ago
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆50Updated 2 years ago
- A mininal go http client for security testing☆47Updated 3 months ago