HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

Process-aware, eBPF-based tcpdump

Security Orchestration, Automation and Response (SOAR) Platform. 安全编排与自动化响应平台，无需编写代码的安全自动化，使用 SOAR 可以让团队工作更加高效

Security automation content in SCAP, Bash, Ansible, and other formats

🐍 A toolkit for testing, tweaking and cracking JSON Web Tokens

Awesome Docker Compose samples

Fair-code workflow automation platform with native AI capabilities. Combine visual building with custom code, self-host or cloud, 400+ integrations.

Your own API Hub to learn and master API interaction. Ideal for frontend, mobile dev and backend developers.

《eBPF 云原生安全：原理与实践》书中示例程序的完整源代码

Image forgery recognition algorithm

Auto_Jobs_Applier_AI_Agent aims to easy job hunt process by automating the job application process. Utilizing artificial intelligence, it enables users to apply for multiple jobs in an automated an…

Nuclei AI - Browser Extension for Rapid Nuclei Template Generation

基于大模型搭建的聊天机器人，同时支持 微信公众号、企业微信应用、飞书、钉钉 等接入，可选择GPT3.5/GPT-4o/GPT-o1/ Claude/文心一言/讯飞星火/通义千问/ Gemini/GLM-4/Claude/Kimi/LinkAI，能处理文本、语音和图片，访问操作系统和互联网，支持基于自有知识库进行定制企业智能客服。

A collection of PDF/books about the modern web application security and bug bounty.

This is a kernel module invoked reverse shell proof of concept.

A tool for checking if MFA is enabled on multiple Microsoft Services

eBPF Developer Tutorial: Learning eBPF Step by Step with Examples

面向开发人员梳理的代码安全指南

kunpeng是一个Golang编写的开源POC框架/库，以动态链接库的形式提供各种语言调用，通过此项目可快速开发漏洞检测类的系统。

Detect compliance and security violations across Infrastructure as Code to mitigate risk before provisioning cloud native infrastructure.

poc for CVE-2024-38063 (RCE in tcpip.sys)

Exploit for the vulnerability CVE-2024-43044 in Jenkins

Customizable Linux Persistence Tool for Security Research and Detection Engineering.

A resource containing all the tools each ransomware gangs uses

Directly access data objects stored in etcd by Kubernetes.

The official GitHub page for the survey paper "A Survey of Large Language Models".

GitHub Attack Toolkit - Extreme Edition - A static analysis and exploit toolkit for GitHub Actions.

java-agent内存马一键注入工具，支持自定义路径、校验和内存马内容

An encyclopedia for offensive and defensive security knowledge in cloud native technologies.