Stars
Checklist of the most important security countermeasures when designing, testing, and releasing your API
PC客户端(C-S架构)渗透测试checklist / Client side(C-S) penetration checklist
OWASP Community Pages are a place where OWASP can accept community contributions for security-related content.
2018-2020青年安全圈-活跃技术博主/博客
Web Fuzzing Box - Web 模糊测试字典与一些Payloads
Payload Arsenal for Pentration Tester and Bug Bounty Hunters
本项目制作的初衷是帮助渗透新手快速搭建工作环境,工欲善其事,必先利其器。
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
FridaContainer 整合了网上流行的和自己编写的常用的 frida 脚本,为逆向工作提效之用。 frida 脚本模块化,Java & Jni Trace。
secxm / SSRF-Testing
Forked from cujanovic/SSRF-TestingSSRF (Server Side Request Forgery) testing resources
Study Notes For Web Hacking / Web安全学习笔记
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
收集的文章 https://mrwq.github.io/tools/paper/
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve…