MaR - Matcher and Replacer, Perform intelligent replacement based on precise matching.

Ai迷思录（应用与安全指南）

基于Go编写的windows日志分析工具

Netflix-level subtitle cutting, translation, alignment, and even dubbing - one-click fully automated AI video subtitle team | Netflix级字幕切割、翻译、对齐、甚至加上配音，一键全自动视频搬运AI字幕组

Zero shot vulnerability discovery using LLMs

PoC for the Untrusted Pointer Dereference in the ks.sys driver

🧡 Folo is the AI RSS Reader

Open-source security research tool for identifying origin IP exposure of websites protected by Cloudflare and similar reverse proxy services.

GeoServer Remote Code Execution

微信小程序辅助渗透-自动化

一款golang编写的，批量检测frp server未授权访问、弱token的工具

List of Awesome Red Teaming Resources

TscanPlus_Win_Amd64_v2.2超雄版

一款综合性网络安全检测和运维工具，旨在快速资产发现、识别、检测，构建基础资产信息库，协助甲方安全团队或者安全运维人员有效侦察和检索资产，发现存在的薄弱点和攻击面。

CMS漏洞测试用例集合

【Hello CTF】题目配套，免费开源的CTF入门教程，针对0基础新手编写，同时兼顾信息差的填补，对各阶段的CTFer都友好的开源教程，致力于CTF和网络安全的开源生态！

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Progress Telerik Report Server pre-authenticated RCE chain (CVE-2024-4358/CVE-2024-1800)

secator - the pentester's swiss knife

《开源大模型食用指南》针对中国宝宝量身打造的基于Linux环境快速微调（全参数/Lora）、部署国内外开源大模型（LLM）/多模态大模型（MLLM）教程

CVE-2023-6875 PoC

E-mails, subdomains and names Harvester - OSINT

404StarLink - 推荐优质、有意义、有趣、坚持维护的安全开源项目

I leverage OpenAI and ChatGPT to do hackerish things

A powerful and customizable ChatGPT-like interface, built for developers.

Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack.

云资产管理工具 目前工具定位是云安全相关工具，目前是两个模块 云存储工具、云服务工具， 云存储工具主要是针对oss存储、查看、删除、上传、下载、预览等等 云服务工具主要是针对rds、服务器的管理，查看、执行命令、接管等等

RCE exploit for CVE-2023-3519

This repository contains a proof-of-concept exploit written in C++ that demonstrates the exploitation of a vulnerability affecting the Windows Error Reporting (WER) component.