dinghi-security Goto Github PK
Name: dinghi-security
Type: Organization
Bio: About security
Name: dinghi-security
Type: Organization
Bio: About security
403/401 Bypass Methods + Bash Automation + Your Support ;)
🔑 Authz0 is an automated authorization test tool. Unauthorized access can be identified based on URL and Role.
An automated script that download potential exploit for linux kernel from exploitdb, and compile them automatically
List of Awesome Asset Discovery Resources
A curated list of CTF frameworks, libraries, resources and softwares
The dynamic infrastructure framework for anybody! Distribute the workload of many different tools with ease, including nmap, ffuf, masscan, nuclei and many more!
A repository that includes all the important wordlists used while bug hunting.
A list of interesting payloads, tips and tricks for bug bounty hunters.
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
🍪 CookieMonster helps you detect and abuse vulnerable implementations of stateless sessions.
This repository aims to hold suggestions (and hopefully/eventually code) for CTF challenges. The "project" is nicknamed Katana.
CVE-2021-21985 VMware vCenter Server远程代码执行漏洞 EXP
a diff that understands syntax 🟥🟩
🎃 目录扫描工具 Dirscan ,A simple and fast directory scanning tool for pentesters
Efiens CTF 2019 Round 2 - Web Challenges Write Up
An email spoofing testing tool that aims to bypass SPF/DKIM/DMARC and forge DKIM signatures.🍻
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-5902、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
Fast web fuzzer written in Go
Browser's XSS Filter Bypass Cheat Sheet
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静态检测功能。并且加入了很多功能以方便进行漏洞自动化挖掘。
A Python program to scrape secrets from GitHub through usage of a large repository of dorks.
The all-in-one Red Team extension for Web Pentester 🛠
ALL IN ONE Hacking Tool For Hackers
Welcome to the page where you will find each trick/technique/whatever I have learnt in CTFs, real life apps, and reading researches and news.
The cheat sheet about Java Deserialization vulnerabilities
Some payloads of JNDI Injection in JDK 1.8.0_191+
A malicious LDAP server for JNDI injection attacks
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.