《深入理解CodeQL》Finding vulnerabilities with CodeQL.

best way to save what you love

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

从零学习AWD比赛指导手册以及AWD脚本整理

Multi functional app to find duplicates, empty folders, similar images etc.

Vim-fork focused on extensibility and usability

💥 Blazing fast terminal file manager written in Rust, based on async I/O.

收集整理漏洞EXP/POC,大部分漏洞来源网络，目前收集整理了1400多个poc/exp，长期更新。

Create and animate hand-drawn annotations on a web page

【Hello-CTF labs】一个想帮你收集所有RCE技巧的靶场。

一款综合性网络安全检测和运维工具，旨在快速资产发现、识别、检测，构建基础资产信息库，协助甲方安全团队或者安全运维人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

burp 插件 xia_Yue（瞎越） 主要用于测试越权、未授权

Find way more from the Wayback Machine, Common Crawl, Alien Vault OTX, URLScan & VirusTotal!

Prompt越狱手册

This repo is archived. Thanks for wooyun! 乌云公开漏洞、知识库爬虫和搜索 crawl and search for wooyun.org public bug(vulnerability) and drops

乌云公开漏洞、知识库搜索 search from wooyun.org

heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等

jQuery JavaScript Library

TCP port scanner, spews SYN packets asynchronously, scanning entire Internet in under 5 minutes.

A simple script just made for self use for bypassing 403

You Know, For WEB Fuzzing ! 日站用的字典。

shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack

latest version of scanners for IIS short filename (8.3) disclosure vulnerability

Developing experimental scripts to be used to search for crypto wallets and send the information to a C2 server that would be set up. Still a work in progress and will be unleashed to the people of…

一款内网综合扫描工具，方便一键自动化、全方位漏扫扫描。

X bootstrap 1000+ tools and scripts.

WAFW00F allows one to identify and fingerprint Web Application Firewall (WAF) products protecting a website.

🤗更优雅的微信公众号订阅方式，支持私有化部署、微信公众号RSS生成（基于微信读书）v2.x

🧡 Follow your favorites in one inbox

HackBar plugin for Burpsuite