orangetw/My-Presentation-Slides

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/orangetw/My-Presentation-Slides)

orangetw / My-Presentation-Slides

Collections of Orange Tsai's public presentation slides.

☆758

Alternatives and similar repositories for My-Presentation-Slides

Users that are interested in My-Presentation-Slides are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

orangetw / My-CTF-Web-Challenges
View on GitHub
Collection of CTF Web challenges I made
☆2,848Aug 31, 2025Updated 9 months ago
jmdx / TLS-poison
View on GitHub
☆703Nov 27, 2024Updated last year
GrrrDog / Java-Deserialization-Cheat-Sheet
View on GitHub
The cheat sheet about Java Deserialization vulnerabilities
☆3,177May 26, 2023Updated 3 years ago
welk1n / JNDI-Injection-Bypass
View on GitHub
Some payloads of JNDI Injection in JDK 1.8.0_191+
☆484Dec 9, 2020Updated 5 years ago
threedr3am / ZhouYu
View on GitHub
（周瑜）Java - SpringBoot 持久化 WebShell（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
☆615Dec 29, 2021Updated 4 years ago
Simple, predictable pricing with DigitalOcean hosting • Ad
Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
BlackFan / client-side-prototype-pollution
View on GitHub
Prototype Pollution and useful Script Gadgets
☆1,634Jan 27, 2024Updated 2 years ago
BishopFox / GadgetProbe
View on GitHub
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
☆616Mar 4, 2021Updated 5 years ago
voidfyoo / rwctf-2021-old-system
View on GitHub
☆77Jan 12, 2021Updated 5 years ago
wofeiwo / webcgi-exploits
View on GitHub
Multi-language web CGI interfaces exploits.
☆395Aug 22, 2022Updated 3 years ago
JackOfMostTrades / gadgetinspector
View on GitHub
A byte code analyzer for finding deserialization gadget chains in Java applications
☆1,084Jun 15, 2021Updated 5 years ago
waderwu / attackRmi
View on GitHub
attackRmi
☆259Oct 14, 2020Updated 5 years ago
w181496 / Web-CTF-Cheatsheet
View on GitHub
Web CTF CheatSheet 🐈
☆2,974Oct 28, 2025Updated 7 months ago
msrkp / PPScan
View on GitHub
Client Side Prototype Pollution Scanner
☆529Sep 17, 2022Updated 3 years ago
ZeddYu / HTTP-Smuggling-Lab
View on GitHub
Use HTTP Smuggling Lab to learn HTTP Smuggling.
☆347Nov 20, 2022Updated 3 years ago
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,014Oct 15, 2020Updated 5 years ago
c0ny1 / java-object-searcher
View on GitHub
java内存对象搜索辅助工具
☆820Sep 23, 2022Updated 3 years ago
tarunkant / Gopherus
View on GitHub
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
☆3,387Apr 18, 2023Updated 3 years ago
orangetw / awesome-jenkins-rce-2019
View on GitHub
There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
☆608May 17, 2019Updated 7 years ago
tabby-sec / tabby
View on GitHub
A CAT called tabby ( Code Analysis Tool )
☆1,653Jan 17, 2026Updated 5 months ago
u1f383 / writeup
View on GitHub
ctf writeup and log
☆49Nov 30, 2024Updated last year
wh1t3p1g / ysomap
View on GitHub
A helpful Java Deserialization exploit framework.
☆1,240Feb 17, 2025Updated last year
httpvoid / writeups
View on GitHub
☆1,201Sep 2, 2022Updated 3 years ago
filedescriptor / untrusted-types
View on GitHub
☆698Jul 4, 2022Updated 3 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
assetnote / blind-ssrf-chains
View on GitHub
An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
☆978Dec 31, 2021Updated 4 years ago
veracode-research / solr-injection
View on GitHub
Apache Solr Injection Research
☆580Jan 28, 2020Updated 6 years ago
phith0n / zkar
View on GitHub
ZKar is a Java serialization protocol analysis tool implement in Go.
☆652Apr 19, 2026Updated last month
LandGrey / spring-boot-upload-file-lead-to-rce-tricks
View on GitHub
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
☆757Apr 14, 2021Updated 5 years ago
GrrrDog / weird_proxies
View on GitHub
Reverse proxies cheatsheet
☆1,886Nov 4, 2023Updated 2 years ago
pyn3rd / Spring-Boot-Vulnerability
View on GitHub
☆423Jan 5, 2022Updated 4 years ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,402Jan 18, 2022Updated 4 years ago
mm0r1 / exploits
View on GitHub
Pwn stuff.
☆1,812May 31, 2022Updated 4 years ago
r0eXpeR / redteam_vul
View on GitHub
红队作战中比较常遇到的一些重点系统漏洞整理。
☆2,522Jul 17, 2021Updated 4 years ago
Bare Metal GPUs on DigitalOcean Gradient AI • Ad
Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
LeadroyaL / fastjson-blacklist
View on GitHub
☆837Jun 7, 2022Updated 4 years ago
xdavidhu / awesome-google-vrp-writeups
View on GitHub
🐛 A list of writeups from the Google VRP Bug Bounty program
☆1,624May 13, 2026Updated last month
cujanovic / SSRF-Testing
View on GitHub
SSRF (Server Side Request Forgery) testing resources
☆2,502Oct 12, 2024Updated last year
neex / http2smugl
View on GitHub
☆563Mar 27, 2025Updated last year
0vercl0k / CVE-2021-31166
View on GitHub
Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
☆827Jun 12, 2021Updated 5 years ago
github / securitylab
View on GitHub
Resources related to GitHub Security Lab
☆1,607Jun 8, 2026Updated last week
LyleMi / papers
View on GitHub
Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记
☆379Jan 26, 2024Updated 2 years ago