Alternatives and similar repositories for Blog:

Users that are interested in Blog are comparing it to the libraries listed below

• M4tir / M-Scan
  Optical Chain Scanner 光链安全扫描器
  ☆56Updated 3 years ago
• bit4woo / secqa
  解答开发关于安全漏洞的常见问题
  ☆41Updated 4 years ago
• lijiejie / log4j2_vul_local_scanner
  Log4j 漏洞本地检测脚本。 Scan all java processes on your host to check whether it's affected by log4j2 remote code execution vulnerability (CVE-20…
  ☆84Updated 3 years ago
• misskiki / MysqlLogmonitor
  代码审计辅助工具
  ☆36Updated 4 years ago
• ldbfpiaoran / springboot-acl-bypass
  springboot getRequestURI acl bypass
  ☆37Updated 4 years ago
• haby0 / mark
  notes
  ☆27Updated 2 years ago
• jas502n / xxl-job
  xxl-job RESTful API RCE
  ☆72Updated 3 years ago
• qsdj / cncs-armory-ktrimisu
  ☆22Updated 4 years ago
• ASTTeam / DAST
  《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.
  ☆50Updated 2 years ago
• Ar3h / anti-honeypot
  一款可以检测WEB蜜罐并阻断请求的Chrome插件，能够识别并阻断长亭D-sensor、墨安幻阵的部分溯源api
  ☆54Updated 4 years ago
• RASSec / WebExp
  2020年~2021年 网站CMS、中间件、框架系统漏洞集合
  ☆36Updated 4 years ago
• HXSecurity / CloudSecWiki
  CloudSecWiki is a cloud security oriented knowledge base maintained by HuoCorp.
  ☆48Updated 2 years ago
• RuanLang0777 / Unauthorized
  集成二十六种未授权访问[Active MQ ,Atlassian Crowd ,CouchDB ,Docker ,Dubbo ,Druid ,Elasticsearch ,FTP ,Hadoop ,JBoss ,Jenkins ,Jupyter Notebook ,Kiba…
  ☆36Updated 3 years ago
• tongasdp / tongasdp-test
  TongASDP漏洞测试环境
  ☆35Updated 2 years ago
• potats0 / CasExp
  Apereo CAS exploit tool
  ☆58Updated 2 years ago
• su18 / rasp-vuln
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆77Updated 2 years ago
• 1135 / Kong_exploit
  ☆41Updated 5 years ago
• b1ngz / SuperWordlist
  基于实战沉淀下的各种弱口令字典
  ☆11Updated 4 years ago
• xhycccc / Shiro-Vuln-Demo
  Shiro漏洞实例源码
  ☆26Updated 3 years ago
• SummerSec / LookupInterface
  CodeQL 寻找 JNDI利用 Lookup接口
  ☆163Updated 3 years ago
• jas502n / fastjson-1.2.61-RCE
  fastjson-1.2.61-RCE
  ☆33Updated 5 years ago
• Xc1Ym / cyberspace_map_API
  Use Fofa、shodan、zoomeye、360quake to collect information(e.g:domain,IP,CMS,OS)同时调用Fofa、shodan、zoomeye、360quake四个网络空间测绘API完成红队信息收集
  ☆68Updated last year
• iSafeBlue / fastjson-autotype-bypass-demo
  fastjson 1.2.68 版本 autotype bypass
  ☆140Updated 2 years ago
• truongnctrieu / CThun
  集成快速端口扫描服务识别和暴力破解
  ☆45Updated 5 years ago
• sry309 / jniwebshell
  ☆42Updated 5 years ago
• al0ne / cloud-audit
  cloud-audit （云安全审计助手）是检测公有云厂商AK/SK泄漏被利用的工具，通过定期调用云平台接口审计日志，基于异常行为/黑特征/基线发现疑似入侵行为。
  ☆38Updated 10 months ago
• welk1n / FastjsonPocs
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Updated 5 years ago
• jweny / check_jsonp_based_on_ast
  基于AST的JSONP劫持漏洞自动化挖掘
  ☆93Updated 4 years ago
• HackJava / Shiro
  《Shiro漏洞研究》
  ☆53Updated 2 years ago
• saucer-man / Hscan
  Host scan:Host vulnerability scan主机漏洞扫描
  ☆60Updated 3 years ago