Stars
A curated list of awesome ZK resources, libraries, tools and more.
A low level assembly language for the Ethereum Virtual Machine
A Rust program for finding salts that create gas-efficient Ethereum addresses via CREATE2.
List of 4byte identifiers for EVM smart contract functions
WTF Solidity 极简入门教程,供小白们使用。Now supports English! 官网: https://wtf.academy
This repository is now deprecated. Call trace decoder for Geth https://www.npmjs.com/package/@artossystems/geth-trace-decoder
Content discovery wordlists generated using BigQuery
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
red-tldr is a lightweight text search tool, which is used to help red team staff quickly find the commands and key points they want to execute, so it is more suitable for use by red team personnel …
Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.
🐦🌴🌴🌴🦕 A home for ethereum smart contracts. 🏠
DirDar is a tool that searches for (403-Forbidden) directories to break it and get dir listing on it
Damn Vulnerable GraphQL Application is an intentionally vulnerable GraphQL service implementation designed for learning about and practising GraphQL Security.
Collections of Orange Tsai's public presentation slides.
python安全和代码审计相关资料收集 resource collection of python security and code review
For basic researches, top 25 vulnerability parameters that can be used in automation tools or manual recon. 🛡️⚔️🧙
A rewrite of https://github.com/nahamsec/lazys3 into python.
40X/HTTP bypasser in Go. Features: Verb tampering, headers, #bugbountytips, User-Agents, extensions, default credentials...
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wis…
All about bug bounty (bypasses, payloads, and etc)