orangetw/My-Presentation-Slides

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/orangetw/My-Presentation-Slides)

orangetw / My-Presentation-Slides

Collections of Orange Tsai's public presentation slides.

☆750

Alternatives and similar repositories for My-Presentation-Slides

Users that are interested in My-Presentation-Slides are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

orangetw / My-CTF-Web-Challenges
View on GitHub
Collection of CTF Web challenges I made
☆2,829Aug 31, 2025Updated 7 months ago
jmdx / TLS-poison
View on GitHub
☆705Nov 27, 2024Updated last year
GrrrDog / Java-Deserialization-Cheat-Sheet
View on GitHub
The cheat sheet about Java Deserialization vulnerabilities
☆3,170May 26, 2023Updated 2 years ago
welk1n / JNDI-Injection-Bypass
View on GitHub
Some payloads of JNDI Injection in JDK 1.8.0_191+
☆485Dec 9, 2020Updated 5 years ago
threedr3am / ZhouYu
View on GitHub
（周瑜）Java - SpringBoot 持久化 WebShell（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
☆615Dec 29, 2021Updated 4 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
BlackFan / client-side-prototype-pollution
View on GitHub
Prototype Pollution and useful Script Gadgets
☆1,607Jan 27, 2024Updated 2 years ago
BishopFox / GadgetProbe
View on GitHub
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
☆612Mar 4, 2021Updated 5 years ago
voidfyoo / rwctf-2021-old-system
View on GitHub
☆78Jan 12, 2021Updated 5 years ago
wofeiwo / webcgi-exploits
View on GitHub
Multi-language web CGI interfaces exploits.
☆398Aug 22, 2022Updated 3 years ago
JackOfMostTrades / gadgetinspector
View on GitHub
A byte code analyzer for finding deserialization gadget chains in Java applications
☆1,079Jun 15, 2021Updated 4 years ago
waderwu / attackRmi
View on GitHub
attackRmi
☆258Oct 14, 2020Updated 5 years ago
w181496 / Web-CTF-Cheatsheet
View on GitHub
Web CTF CheatSheet 🐈
☆2,951Oct 28, 2025Updated 5 months ago
msrkp / PPScan
View on GitHub
Client Side Prototype Pollution Scanner
☆524Sep 17, 2022Updated 3 years ago
ZeddYu / HTTP-Smuggling-Lab
View on GitHub
Use HTTP Smuggling Lab to learn HTTP Smuggling.
☆348Nov 20, 2022Updated 3 years ago
AI Agents on DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,017Oct 15, 2020Updated 5 years ago
c0ny1 / java-object-searcher
View on GitHub
java内存对象搜索辅助工具
☆823Sep 23, 2022Updated 3 years ago
tarunkant / Gopherus
View on GitHub
This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
☆3,340Apr 18, 2023Updated 3 years ago
orangetw / awesome-jenkins-rce-2019
View on GitHub
There is no pre-auth RCE in Jenkins since May 2017, but this is the one!
☆608May 17, 2019Updated 6 years ago
tabby-sec / tabby
View on GitHub
A CAT called tabby ( Code Analysis Tool )
☆1,644Jan 17, 2026Updated 3 months ago
u1f383 / writeup
View on GitHub
ctf writeup and log
☆49Nov 30, 2024Updated last year
wh1t3p1g / ysomap
View on GitHub
A helpful Java Deserialization exploit framework.
☆1,242Feb 17, 2025Updated last year
httpvoid / writeups
View on GitHub
☆1,202Sep 2, 2022Updated 3 years ago
filedescriptor / untrusted-types
View on GitHub
☆696Jul 4, 2022Updated 3 years ago
Managed Kubernetes at scale on DigitalOcean • Ad
DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
assetnote / blind-ssrf-chains
View on GitHub
An exhaustive list of all the possible ways you can chain your Blind SSRF vulnerability
☆965Dec 31, 2021Updated 4 years ago
veracode-research / solr-injection
View on GitHub
Apache Solr Injection Research
☆581Jan 28, 2020Updated 6 years ago
phith0n / zkar
View on GitHub
ZKar is a Java serialization protocol analysis tool implement in Go.
☆651Feb 15, 2025Updated last year
LandGrey / spring-boot-upload-file-lead-to-rce-tricks
View on GitHub
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
☆754Apr 14, 2021Updated 5 years ago
GrrrDog / weird_proxies
View on GitHub
Reverse proxies cheatsheet
☆1,857Nov 4, 2023Updated 2 years ago
pyn3rd / Spring-Boot-Vulnerability
View on GitHub
☆421Jan 5, 2022Updated 4 years ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,405Jan 18, 2022Updated 4 years ago
mm0r1 / exploits
View on GitHub
Pwn stuff.
☆1,809May 31, 2022Updated 3 years ago
xdavidhu / awesome-google-vrp-writeups
View on GitHub
🐛 A list of writeups from the Google VRP Bug Bounty program
☆1,477Mar 26, 2026Updated 3 weeks ago
Wordpress hosting with auto-scaling - Free Trial • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
r0eXpeR / redteam_vul
View on GitHub
红队作战中比较常遇到的一些重点系统漏洞整理。
☆2,522Jul 17, 2021Updated 4 years ago
LeadroyaL / fastjson-blacklist
View on GitHub
☆836Jun 7, 2022Updated 3 years ago
cujanovic / SSRF-Testing
View on GitHub
SSRF (Server Side Request Forgery) testing resources
☆2,485Oct 12, 2024Updated last year
neex / http2smugl
View on GitHub
☆563Mar 27, 2025Updated last year
0vercl0k / CVE-2021-31166
View on GitHub
Proof of concept for CVE-2021-31166, a remote HTTP.sys use-after-free triggered remotely.
☆830Jun 12, 2021Updated 4 years ago
github / securitylab
View on GitHub
Resources related to GitHub Security Lab
☆1,594Dec 2, 2025Updated 4 months ago
LyleMi / papers
View on GitHub
Academic papers and articles that I read related to web hacking, fuzzing, etc. / 阅读过的Web安全方向、模糊测试方向的一些论文与阅读笔记
☆379Jan 26, 2024Updated 2 years ago