Stars
用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统
A source code static analysis platform for AppSec enthusiasts.
Java web common vulnerabilities and security code which is base on springboot and spring security
《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, se…
Vim python-mode. PyLint, Rope, Pydoc, breakpoints from box.
收集一些比较优秀的开源安全项目,以帮助甲方安全从业人员构建企业安全能力。
AVH Edition of the git extensions to provide high-level repository operations for Vincent Driessen's branching model
laravel5.8版本源码分析laravel framework source code analysis and interpretation written by zh
一款完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档
pocsuite3 is an open-sourced remote vulnerability testing framework developed by the Knownsec 404 Team.
kunpeng是一个Golang编写的开源POC框架/库,以动态链接库的形式提供各种语言调用,通过此项目可快速开发漏洞检测类的系统。
dynamic crawler for web vulnerability scanner
Phan is a static analyzer for PHP. Phan prefers to avoid false-positives and attempts to prove incorrectness rather than correctness.
Automatic SQL injection and database takeover tool
有趣的Python爬虫和Python数据分析小项目(Some interesting Python crawlers and data analysis projects)
w3af: web application attack and audit framework, the open source web vulnerability scanner.