A `.git` folder disclosure exploit

Clone this repo to build Frida

T Wiki 云安全知识文库，可能是国内首个云安全知识文库？

Scalable fuzzing infrastructure.

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

Script to root AVDs running with QEMU Emulator from Android Studio

Dongtai IAST is an open-source Interactive Application Security Testing (IAST) tool that enables real-time detection of common vulnerabilities in Java applications and third-party components throug…

Share Things Related to Java - Java安全漫谈笔记相关内容

Java bytecode engineering toolkit

Web application fuzzer

Golang Secure Coding Practices guide

Plugin for Ghidra to assist reversing Golang binaries

Golang安全资源合集

Golang for Security Professionals

Dex to Java decompiler

C++ python bytecode disassembler and decompiler

通过 JAVA AGENT 查杀内存马，提供简易方便的 GUI 界面，一键反编译目标环境内存马进行分析，支持远程查杀和本地查杀（注意：仅供本地复现分析学习，请勿用于正式和生产环境）

针对ctf线下赛流量抓取(php)、真实环境流量抓取分析的工具

对于安全学习的一些总结，更新ing，期待 Fork & Star！

一个简易的AWD攻击框架，希望对于该项目大家有更好的建议和改进！

Monitor linux processes without root permissions

Chat first code editor. To download the packaged app:

ModSecurity is an open source, cross platform web application firewall (WAF) engine for Apache, IIS and Nginx. It has a robust event-based programming language which provides protection from a rang…

Get up and running with Llama 3.3, Mistral, Gemma 2, and other large language models.

The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.

The open and composable observability and data visualization platform. Visualize metrics, logs, and traces from multiple sources like Prometheus, Loki, Elasticsearch, InfluxDB, Postgres and many mo…

A Python tool to crack solar putty session backups

工信部合规检测Xposed模块源码

响应工信部通报的应用隐私检测——Frida检测APP违规收集信息

安卓应用层抓包通杀脚本