自定义题库的刷题工具软件

A Basic Java Application Vulnerable to the Log4Shell RCE

A FREE comprehensive reverse engineering tutorial covering x86, x64, 32-bit/64-bit ARM and embedded RISC-V architectures.

存一些笔者看到的,感觉很不错的开源的(或作者暂未声称商业版权的)信息安全笔记

RedTeam资料收集整理

2019年红队资源链接，资源不是本人整理出来，来自互联网，因为流传的少，特意在此做个备份，做个分享。

💻🛡️ A curated collection of awesome resources, tools, and other shiny things for cybersecurity blue teams.

List of Awesome Red Teaming Resources

Fantastic toolkit for CTFers and everyone.

二进制安全相关的学习笔记，感谢滴水逆向的所有老师辛苦教学。

Ladon for Kali 全平台开源内网渗透扫描器,Windows/Linux/Mac/路由器内网渗透，使用它可轻松一键批量探测C段、B段、A段存活主机、高危漏洞检测MS17010、SmbGhost，远程执行SSH/Winrm，密码爆破SMB/SSH/FTP/Mysql/Mssql/Oracle/Winrm/HttpBasic/Redis，端口扫描服务识别PortScan指纹识别/Htt…

本项目制作的初衷是帮助渗透新手快速搭建工作环境，工欲善其事，必先利其器。

Official source code and writeups of *CTF2022

CTF framework and exploit development library

CVE-2021-40444 PoC

A repository for learning various heap exploitation techniques.

mirroring the zines of phineas fisher

Infrastructure powering the pwn.college dojo

A sorted and updated list of security wargame sites.

Some setup scripts for security research tools.

List of libraries, tools and APIs for web scraping and data processing.

PE file viewer/editor for Windows, Linux and MacOS.

Mega repo for exploit development. Contains individual exploits and libraries to assist during exploitation

A fully automated, reliable, and accurate scanner for finding Spring4Shell and Spring Cloud RCE vulnerabilities

spring-cloud / spring-cloud-function,spring.cloud.function.routing-expression,RCE,0day,0-day,POC,EXP,CVE-2022-22963

K8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetN…

AndroidHttpCapture网络诊断工具 是一款Android手机抓包软件 主要功能包括：手机端抓包、PING/DNS/TraceRoute诊断、抓包HAR数据上传分享。你也可以看成是Android版的"Fiddler" \(^o^)/~