orangetw/My-Presentation-Slides

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/orangetw/My-Presentation-Slides)

orangetw / My-Presentation-Slides

Collections of Orange Tsai's public presentation slides.

☆752

Alternatives and similar repositories for My-Presentation-Slides

Users that are interested in My-Presentation-Slides are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

orangetw / My-CTF-Web-Challenges
View on GitHub
Collection of CTF Web challenges I made
☆2,837Aug 31, 2025Updated 8 months ago
jmdx / TLS-poison
View on GitHub
☆705Nov 27, 2024Updated last year
GrrrDog / Java-Deserialization-Cheat-Sheet
View on GitHub
The cheat sheet about Java Deserialization vulnerabilities
☆3,175May 26, 2023Updated 2 years ago
welk1n / JNDI-Injection-Bypass
View on GitHub
Some payloads of JNDI Injection in JDK 1.8.0_191+
☆484Dec 9, 2020Updated 5 years ago
threedr3am / ZhouYu
View on GitHub
（周瑜）Java - SpringBoot 持久化 WebShell（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
☆615Dec 29, 2021Updated 4 years ago
GPUs on demand by Runpod - Special Offer Available • Ad
Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
BlackFan / client-side-prototype-pollution
View on GitHub
Prototype Pollution and useful Script Gadgets
☆1,617Jan 27, 2024Updated 2 years ago
BishopFox / GadgetProbe
View on GitHub
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
☆615Mar 4, 2021Updated 5 years ago
voidfyoo / rwctf-2021-old-system
View on GitHub
☆78Jan 12, 2021Updated 5 years ago
wofeiwo / webcgi-exploits
View on GitHub
Multi-language web CGI interfaces exploits.
☆397Aug 22, 2022Updated 3 years ago
JackOfMostTrades / gadgetinspector
View on GitHub
A byte code analyzer for finding deserialization gadget chains in Java applications
☆1,082Jun 15, 2021Updated 4 years ago
waderwu / attackRmi
View on GitHub
attackRmi
☆258Oct 14, 2020Updated 5 years ago
msrkp / PPScan
View on GitHub
Client Side Prototype Pollution Scanner
☆525Sep 17, 2022Updated 3 years ago
w181496 / Web-CTF-Cheatsheet
View on GitHub
Web CTF CheatSheet 🐈
☆2,958Oct 28, 2025Updated 6 months ago
ZeddYu / HTTP-Smuggling-Lab
View on GitHub
Use HTTP Smuggling Lab to learn HTTP Smuggling.
☆347Nov 20, 2022Updated 3 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,014Oct 15, 2020Updated 5 years ago
c0ny1 / java-object-searcher
View on GitHub
java内存对象搜索辅助工具
☆823Sep 23, 2022Updated 3 years ago
tarunkant / Gopherus
View on GitHub
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
☆3,351Apr 18, 2023Updated 3 years ago
orangetw / awesome-jenkins-rce-2019
View on GitHub
There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
☆608May 17, 2019Updated 6 years ago
tabby-sec / tabby
View on GitHub
A CAT called tabby ( Code Analysis Tool )
☆1,649Jan 17, 2026Updated 3 months ago
u1f383 / writeup
View on GitHub
ctf writeup and log
☆49Nov 30, 2024Updated last year
wh1t3p1g / ysomap
View on GitHub
A helpful Java Deserialization exploit framework.
☆1,241Feb 17, 2025Updated last year
httpvoid / writeups
View on GitHub
☆1,202Sep 2, 2022Updated 3 years ago
filedescriptor / untrusted-types
View on GitHub
☆697Jul 4, 2022Updated 3 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
assetnote / blind-ssrf-chains
View on GitHub
An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
☆969Dec 31, 2021Updated 4 years ago
veracode-research / solr-injection
View on GitHub
Apache Solr Injection Research
☆581Jan 28, 2020Updated 6 years ago
phith0n / zkar
View on GitHub
ZKar is a Java serialization protocol analysis tool implement in Go.
☆652Apr 19, 2026Updated 2 weeks ago
LandGrey / spring-boot-upload-file-lead-to-rce-tricks
View on GitHub
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
☆754Apr 14, 2021Updated 5 years ago
GrrrDog / weird_proxies
View on GitHub
Reverse proxies cheatsheet
☆1,875Nov 4, 2023Updated 2 years ago
pyn3rd / Spring-Boot-Vulnerability
View on GitHub
☆423Jan 5, 2022Updated 4 years ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,405Jan 18, 2022Updated 4 years ago
mm0r1 / exploits
View on GitHub
Pwn stuff.
☆1,809May 31, 2022Updated 3 years ago
r0eXpeR / redteam_vul
View on GitHub
红队作战中比较常遇到的一些重点系统漏洞整理。
☆2,519Jul 17, 2021Updated 4 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
LeadroyaL / fastjson-blacklist
View on GitHub
☆835Jun 7, 2022Updated 3 years ago
xdavidhu / awesome-google-vrp-writeups
View on GitHub
🐛 A list of writeups from the Google VRP Bug Bounty program
☆1,546Updated this week
cujanovic / SSRF-Testing
View on GitHub
SSRF (Server Side Request Forgery) testing resources
☆2,493Oct 12, 2024Updated last year
neex / http2smugl
View on GitHub
☆563Mar 27, 2025Updated last year
0vercl0k / CVE-2021-31166
View on GitHub
Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
☆829Jun 12, 2021Updated 4 years ago
github / securitylab
View on GitHub
Resources related to GitHub Security Lab
☆1,605Dec 2, 2025Updated 5 months ago
LyleMi / papers
View on GitHub
Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记
☆379Jan 26, 2024Updated 2 years ago