A toolkit to unpack, debug and repack an rpk file.

Stable Diffusion web UI

OctoMation是一款免费的，具有可视化拖拽功能的编排与自动化产品。通过精心编排的Playbook，OctoMation能够联动数百款安全、网络、IT和SaaS等产品的基础能力。其主要特点包括低代码剧本编排、自动化事件响应、标准化流程操作以及可视化过程监控。 借助OctoMation，运营团队能够开展7x24小时自动化事件响应，不仅可以大幅减少对人员的过度依赖，还能确保团队工作质量始终维…

SC-Safety: 中文大模型多轮对抗安全基准

Adversarial Robustness Toolbox (ART) - Python Library for Machine Learning Security - Evasion, Poisoning, Extraction, Inference - Red and Blue Teams

A series of Jupyter notebooks that walk you through the fundamentals of Machine Learning and Deep Learning in Python using Scikit-Learn, Keras and TensorFlow 2.

CTF write-ups

IoT Penetration Testing Cookbook, published by Packt

【停止维护】一个定期翻译国外Android优质的技术、开源库、软件架构设计、测试等文章的开源项目

Blackbox Protobuf is a set of tools for working with encoded Protocol Buffers (protobuf) without the matching protobuf definition.

微信调试，各种WebView样式调试、手机浏览器的页面真机调试。便捷的远程调试手机页面、抓包工具，支持：HTTP/HTTPS，无需USB连接设备。

This tool is used to extract dex files from oat file.

A Tool for unpack/pack android boot.img

shellcoderhandbook source code : "The Shellcoder's Handbook: Discovering and Exploiting Security Holes"

A simple app to use Xposed without root, unlock the bootloader or modify system image, etc.

NetKnight-一款基于vpn的手机流量监控软件

Shadowsocks android client, pure java version

CSDN博客

📱 objection - runtime mobile exploration

An xposed module that disables SSL certificate checking for the purposes of auditing an app with cert pinning

Android Xposed Module to bypass SSL certificate validation (Certificate Pinning).

SSLKiller is used for killing SSL verification functions on Android client side. With SSLKiller, You can intercept app's HTTPS communication packages between the client and server.

Android中自动爆破签名工具

一键破解APK签名校验

演示视频https://pan.baidu.com/s/1HH_-TQGca1NLoSqzvOPB3Q 密码：izm3

CSDN博客

Vulnerable Android application for developers and security enthusiasts to learn about Android insecurities

fastjson remote code execute poc 直接用intellij IDEA打开即可 首先编译得到Test.class，然后运行Poc.java