transformer安全相关

Test your prompts, agents, and RAGs. Red teaming, pentesting, and vulnerability scanning for LLMs. Compare performance of GPT, Claude, Gemini, Llama, and more. Simple declarative configs with comma…

PoC and Detection for CVE-2024-21626

Stateful LLM Serving

LFI: Practical, Efficient, and Secure Software-based Sandboxing

This is the source code of paper "Demons in the shared kernel: Abstract Resource attack against OS-level virtualization"

This tool set can generate required capabilities for binaries. A system call to capability mapping is used to assign capability to the binary. Static analysis is performed to extract system calls f…

Runtime type and bounds-error checking for C/C++

Tools for analyzing Windows containers and break container's isolation

CVE 2020-6096 PoC

This repository is used to analysis the shared resources of different containers

A collection of links related to Linux kernel security and exploitation

A library that provides access to Android hidden APIs and internal resources.

ARL(Asset Reconnaissance Lighthouse)资产侦察灯塔系统旨在快速侦察与目标关联的互联网资产，构建基础资产信息库。 协助甲方安全团队或者渗透测试人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

Stuff about it-security that might be good to know

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat的漏洞利用脚本，均为亲测可用的脚本文件，优先更新高危且易利用的漏洞利用脚本，最近添加CVE-2020-1938、CVE-2020-2551、CVE-2019-2618、CVE-2019-6340

SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…

超级弱口令检查工具是一款Windows平台的弱口令审计工具，支持批量多线程检查，可快速发现弱密码、弱口令账号，密码支持和用户名结合进行检查，大大提高成功率，支持自定义服务端口和字典。

Learn regex the easy way

Hook system calls, context switches, page faults and more.

A collection of open source and commercial tools that aid in red team operations.

Compilation of commands, tips and scripts that helped me throughout Vulnhub, Hackthebox, OSCP and real scenarios

Imago is a python tool that extract digital evidences from images.

pentest framework

BoutDuTunnel is able to create virtual connections tunnelled in HTTP requests.

Angry IP Scanner - fast and friendly network scanner

Reko is a binary decompiler.

🎯 HackerTarget ToolKit - Tools And Network Intelligence To Help Organizations With Attack Surface Discovery 🎯