xiaoshuier Goto Github PK
Name: web安全
Type: User
Name: web安全
Type: User
Inofficial Acunetix11 API Documentation
Alternative Shellcode Execution Via Callbacks
In-depth DNS Enumeration and Network Mapping
Circumvent AMSI by patching AmsiScanBuffer
Python3编写的CMS漏洞检测框架
越来越多的网站具有反爬虫特性,有的用图片隐藏关键数据,有的使用反人类的验证码,建立反反爬虫的代码仓库,通过与不同特性的网站做斗争(无恶意)提高技术。(欢迎提交难以采集的网站)(因工作原因,项目暂停)
A Tool for Domain Flyovers
HTTP parameter discovery suite.
Antivirus evasion project
List of Awesome Asset Discovery Resources
A curated list of amazingly awesome Burp Extensions
✍️ A curated list of CVE PoCs.
🐶 A curated list of Web Security materials and resources.
“冰蝎”动态二进制加密网站管理客户端
The Big List of Naughty Strings is a list of strings which have a high probability of causing issues when used as user-input data.
Tool to generate smart and powerful wordlists
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
Buildroot, making embedded Linux easy. Note that this is not the official repository, but only a mirror. The official Git repository is at http://git.buildroot.net/buildroot/. Do not open issues or file pull requests here.
******本软件仅限用于学习交流禁止用于任何非法行为****** 本版本支持elasticsearch java语言远程命令执行及文件上传 elasticsearchgroov语言远程命令执行及文件上传 struts2-005、struts2-009、struts2-013、struts2-016、struts2-019、struts2-020、struts2-devmode、 struts2-032、struts2-033、struts2-037、struts2-045、struts2-048、struts2-052 除struts2-053全部RCE漏洞验证并支持批量验证。 Struts2漏洞验证需要python环境并需要相关类库支持.点击python按钮初始化初始化python类库 如果初始化失败请按照如下步骤安装类库, 1、执行 $[python]/Scrips/easy_install pip 2、requests模块 安装方法 pip install requests 3、termcolor模块安装方法: pip install termcolor github: https://github.com/bigsizeme/java-rce-tools burpsuite源码地址:https://github.com/bigsizeme/burplugin-java-rce
Reference: http://www.secgeek.net/bookfresh-vulnerability/
anti AV
A scripted pipeline of tools to streamline the bug bounty/penetration test reconnaissance phase, so you can focus on chomping bugs.
Prototype Pollution and useful Script Gadgets
CMS漏洞测试用例集合
CMS渗透测试框架-A CMS Exploit Framework
Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
Commodity Injection Signatures, Malicious Inputs, XSS, HTTP Header Injection, XXE, RCE, Javascript, XXE
A swiss army knife for pentesting networks
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.