one-iast/practice external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

one-iast/practice

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/one-iast/practice)

Close

one-iast / practiceView on GitHubMore

• External links
• Readme badge

手把手教你写IAST系列

☆24Jan 12, 2024Updated 2 years ago

Alternatives and similar repositories for practice

Users that are interested in practice are comparing it to the libraries listed below

• juanjolmm / java-secure-file-upload

  View on GitHub
  Java library used to upload files following the security steps described by OWASP
  ☆10Jun 7, 2021Updated 4 years ago
• BobTheShoplifter / CVE-2023-52251-POC

  View on GitHub
  CVE-2023-52251 There is a Remote Code Execution vulnerability provectus/kafka-ui.
  ☆20Jan 23, 2024Updated 2 years ago
• ZhuriLab / Yi

  View on GitHub
  项目监控工具 以及 Codeql 自动运行
  ☆313Apr 13, 2023Updated 2 years ago
• amakerlee / javaweb-vuls

  View on GitHub
  ☆14Aug 4, 2021Updated 4 years ago
• vulai-huaun / VTI-comal

  View on GitHub
  VTI的PoC检测工具
  ☆13Jul 30, 2024Updated last year
• brant-ruan / ICCI

  View on GitHub
  Industrial Cybersecurity Conference Index
  ☆13Mar 11, 2024Updated 2 years ago
• waderwu / nativeRasp

  View on GitHub
  nativeRasp that can hook native methods
  ☆23Apr 24, 2023Updated 2 years ago
• Ch1ngg / SharpGetTitle

  View on GitHub
  SharpGetTitle - 基于 C# 的多线程 Web Title 扫描器
  ☆15Nov 26, 2020Updated 5 years ago
• 0xbug / biu-brower-ext

  View on GitHub
  ☆12Jan 27, 2022Updated 4 years ago
• fynch3r / WALAStudy

  View on GitHub
  WALA 学习笔记
  ☆14Aug 8, 2023Updated 2 years ago
• Lucifaer / head_first_javarasp

  View on GitHub
  一些Java RASP demo
  ☆11Sep 26, 2019Updated 6 years ago
• gand3lf / semgrepper

  View on GitHub
  An extension to use Semgrep inside Burp Suite.
  ☆88May 23, 2025Updated 9 months ago
• iSafeBlue / presentation-slides

  View on GitHub
  ☆34Sep 19, 2022Updated 3 years ago
• lsecqt / CVE-2022-26923-Powershell-POC

  View on GitHub
  A powershell poc to load and automatically run Certify and Rubeus from memory.
  ☆17Aug 17, 2022Updated 3 years ago
• cyal1 / SendToXray

  View on GitHub
  SendToXray - Burp Suite Extender, Send HTTP request to XRAY proxy.
  ☆11May 22, 2021Updated 4 years ago
• rakjong / BurpPlugin_Shiro

  View on GitHub
  判断是否使用shiro的burp插件
  ☆10Nov 11, 2020Updated 5 years ago
• fuzz-security / hackerone-reports

  View on GitHub
  Top disclosed reports from HackerOne
  ☆10Jun 9, 2020Updated 5 years ago
• la00gke / DomainAuto-one

  View on GitHub
  Domain penetration automation module one, domain information collection.
  ☆19Mar 31, 2023Updated 2 years ago
• rabbitmask / RCoder

  View on GitHub
  基于渗透需求的万能编码器，随需求增加持续维护
  ☆17Feb 17, 2021Updated 5 years ago
• 360quake / papers

  View on GitHub
  Articles accumulated by the 360Quake team.
  ☆15Jun 18, 2021Updated 4 years ago
• bahruzjabiyev / gudifu-fuzzer

  View on GitHub
  Guided Differential Fuzzing for HTTP Request Parsing Discrepancies
  ☆20Apr 11, 2024Updated last year
• 0xa-saline / Logpara

  View on GitHub
  一个对常见的web日志进行解析处理的粗糙DEMO
  ☆21Jun 3, 2018Updated 7 years ago
• rakjong / mimikatz_bypassAV

  View on GitHub
  ☆13Oct 20, 2021Updated 4 years ago
• zer0yu / Open-PoC

  View on GitHub
  PoC for pocsuite3 and nuclei
  ☆56Oct 5, 2022Updated 3 years ago
• Hagrid29 / BOF-SprayAD

  View on GitHub
  Cobalt Strike Beacon Object File (BOF) that uses LogonUserSSPI API to perform kerberos-based password spray
  ☆47Mar 4, 2023Updated 3 years ago
• pwntester / codeql_grehack_workshop

  View on GitHub
  GreHack 2021 CodeQL for Java workshop
  ☆73Nov 19, 2021Updated 4 years ago
• ShangRui-hash / bucket-takeover-lab

  View on GitHub
  子域名接管的几种变体靶场
  ☆23Jun 22, 2024Updated last year
• svbjdbk123 / -TEAM

  View on GitHub
  000
  ☆16Mar 30, 2022Updated 3 years ago
• iiiusky / java_iast_example

  View on GitHub
  JAVA IAST Example
  ☆49Dec 13, 2021Updated 4 years ago
• another1024 / afl_analyses

  View on GitHub
  afl源码分析
  ☆13Aug 9, 2018Updated 7 years ago
• su18 / rasp-vuln

  View on GitHub
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆88Jul 21, 2022Updated 3 years ago
• Symbo1 / HackerOne-Staffs

  View on GitHub
  HackerOne Staffs
  ☆29Dec 9, 2019Updated 6 years ago
• outflanknl / RedFile

  View on GitHub
  Serving files with conditions, serverside keying and more.
  ☆18May 26, 2022Updated 3 years ago
• zer0yu / anew

  View on GitHub
  A tool for adding new lines to files, skipping duplicates and written in Rust!
  ☆19May 8, 2025Updated 10 months ago
• JDArmy / TextWatermark

  View on GitHub
  Watermark For Text
  ☆22Mar 6, 2025Updated last year
• ItsIgnacioPortal / Hacker-Scoper

  View on GitHub
  CLI tool for filtering URLs/IPs with automatically-updated Bug Bounty program scope rules.
  ☆35Dec 31, 2025Updated 2 months ago
• Ridter / tshtun

  View on GitHub
  Py写的tsh的流量加解密过程。
  ☆28Aug 15, 2022Updated 3 years ago
• Richard-Tang / CrossC2-C2Profile

  View on GitHub
  CrossC2通信协议API实现
  ☆84Jul 26, 2021Updated 4 years ago
• XiaoliChan / Invoke-sAMSpoofing

  View on GitHub
  CVE-2021-42287/CVE-2021-42278 exploits in powershell
  ☆38Apr 4, 2022Updated 3 years ago