面向企业内部授权场景的 AI 代码安全审计框架。支持 redteam/full 两种模式,支持靶场集成验证,全程自动编排。适配 Cursor、Claude Code 及其他支持 Agent 调度的 AI IDE。
☆31May 28, 2026Updated last month
Alternatives and similar repositories for code-security-audit
Users that are interested in code-security-audit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ghost-bits-encoder 是一个面向 Woodpecker 的辅助插件,围绕 Ghost Bits / Unicode 高位包装思路,提供通用编解码、JSON 相关编码、URL 相关编码以及若干专项辅助能力。☆52May 15, 2026Updated last month
- 个人使用的 IDA Pro Plugins 集合☆40Jan 20, 2026Updated 5 months ago
- 云资产管理工具 目前工具定位是云安全相关工具,目前是两个模块 云存储工具、云服务工具, 云存储工具主要是针对oss存储、查看、删除、上传、下载、预览等等 云服务工具主要是针对rds、服务器的管理,查看、执行命令、接管等等☆15Oct 7, 2024Updated last year
- Java JDK 8-18 CodeQL databases☆17Jun 2, 2024Updated 2 years ago
- 一个基于 OpenForensicRules 标准化的数字取证与应急响应信息采集规则格式规范的采集器☆29Jul 8, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- 一款专注于 Java 主流 Web 中间件的内存马快速生成工具,致力于简化安全研究人员和红队成员的工作流程,提升攻防效率☆1,550Updated this week
- 二开KillWxapkg项目,添加实时检测和开启web端服务☆52Nov 7, 2024Updated last year
- Exchange 信息收集工具☆54Jan 4, 2025Updated last year
- LC(List Cloud)是一个多云攻击面资产梳理工具☆649Oct 6, 2024Updated last year
- ☆249Apr 15, 2026Updated 2 months ago
- PHP-Code-Audit-Skill是一个专注于PHP代码审计的Skill☆370Mar 25, 2026Updated 3 months ago
- 记录学习codeql的过程☆399Jun 9, 2023Updated 3 years ago
- NSFOCUS API_Sword:A Burp Suite extension, Automatically recursively collect API endpoints from any response☆389Jan 20, 2026Updated 5 months ago
- Stack spoofing Detection for CET processes by comparing shadow and user stacks.☆36May 22, 2026Updated last month
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- 暂停更新·······正在谋划······☆147Jun 28, 2024Updated 2 years ago
- 关于学习java安全的一些知识,正在学习中ing,欢迎fork and star☆14Dec 31, 2021Updated 4 years ago
- 本程序为美国NSA的方程式工具包图形界面版,由ABC_123于2017年开始编写,仅用来扫描和验证MS17-010、MS09-050、MS08-067漏洞,并可协助管理员修复系统漏洞。☆559Jul 12, 2025Updated last year
- 一款针对K8s综合利用GUI工具☆149Apr 26, 2026Updated 2 months ago
- 用友NC系列漏洞检测利用工具,支持一键检测、命令执行回显、文件落地、一键打入内存马、文件读取等☆595Aug 19, 2023Updated 2 years ago
- 存储桶遍历漏洞利用工具☆437Jul 25, 2024Updated last year
- Dockerized template to build CS BOFs using clang-cl☆26Jan 29, 2026Updated 5 months ago
- PHP文件上传50+绕过手法全景解析☆18Mar 16, 2025Updated last year
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- 面向护网,攻防演练等场景下的小型蜜罐☆80Apr 18, 2024Updated 2 years ago
- 用友漏洞综合利用工具☆267Nov 9, 2024Updated last year
- WebStrike 是一套以 Chromium 系浏览器扩展(Manifest V3) 为受控端点的指挥与控制(C2)套件。与传统以进程/驱动为主的 C2 相比,其工作重心落在 浏览器安全域:在合规授权与攻防演练场景下,可显著降低与终端 EDR 在 进程注入、驱动、内核回调…☆58Updated this week
- 记录一些代码审计过的源码☆183Feb 26, 2025Updated last year
- ☆79Nov 22, 2024Updated last year
- ZZCMS v8.2-重装GETSHELL工具☆11May 8, 2018Updated 8 years ago
- daydayExp的漏洞POC仓库,慢慢更新...☆380Nov 4, 2024Updated last year
- golang写的批量对目标网站进行截图的小工具,适合目标资产比较多时,快速定位薄弱点。☆32Oct 14, 2022Updated 3 years ago
- ☆108Dec 10, 2025Updated 7 months ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- [ALL IN ONE] Everything that I shared to public about Cloud Security is here.☆66Apr 19, 2025Updated last year
- 使用Docker一键制作vol3取证需要的的SymbolTables☆12Aug 31, 2025Updated 10 months ago
- GitHubApi CVE Poc监控工具☆14Jan 23, 2026Updated 5 months ago
- 基于 Claude Code 的自动化渗透测试 Agent,目标是达到中高级网络安全专家水平。☆47Apr 18, 2026Updated 2 months ago
- 帆软报表漏洞检测工具☆121Jun 10, 2025Updated last year
- ☆113Jun 17, 2026Updated 3 weeks ago
- 这是一个用于Burp Suite的文件上传漏洞自动化fuzz测试插件。该插件提供了多种绕过技术,包括WAF绕过、内容类型绕过、文件扩展名绕过等。☆44Aug 6, 2025Updated 11 months ago