六大云存储，泄露利用检测工具

Course Repository for University of Cincinnati Malware Analysis Class (CS[567]038)

面向红队的, 高性能高度自由可拓展的自动化扫描引擎 | A highly controllable and extensionable automated scanning engine for red teams

PaSa -- an advanced paper search agent powered by large language models. It can autonomously make a series of decisions, including invoking search tools, reading papers, and selecting relevant refe…

反警方非法暴力取证的Win11安全加固策略 （Win11 Security Hardening Strategy Against Illegal Police Coercive Interrogation）

A lightweight, cryptography-powered, open-source toolkit built to enforce Zero Trust security for infrastructure, applications, and data in the AI-driven world.

汇总了目前可以找到的所有的进程注入的方式，完成了x86/x64下的测试，不断更新中

Curated list of open-source & paid Attack Surface Monitoring (ASM) tools.

Nuclei POC，每2小时更新 | 自动整合全网Nuclei的漏洞POC，实时同步更新最新POC，保存已被删除的POC。通过批量克隆Github项目，获取Nuclei POC，并将POC按类别分类存放，使用Github Action实现。已有41w+POC，其中3.5w+高质量POC

An advanced, yet simple, tunneling/pivoting tool that uses a TUN interface.

远控免杀系列文章及配套工具，汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术，并对免杀效果进行了一一测试，为远控的免杀和杀软对抗免杀提供参考。

网络安全、信息安全资讯的RSS订阅，网络安全、信息安全博客的RSS订阅，网络安全、信息安全公众号的RSS订阅

开源项目信息泄露笔记

Community curated list of templates for the nuclei engine to find security vulnerabilities.

自动整合全网Nuclei的漏洞POC，实时同步更新最新POC！

Cobalt Strike Malleable C2 Design and Reference Guide

Malleable C2 is a domain specific language to redefine indicators in Beacon's communication. This repository is a collection of Malleable C2 profiles that you may use. These profiles work with Coba…

A curated list of GPT agents for cybersecurity

二进制安全相关的学习笔记，感谢滴水逆向的所有老师辛苦教学。

猫蛋儿安全团队编写的poc能报就能打。企业微信、海康、Metabase、Openfire、泛微OA......

Webshell && Backdoor Collection

f.k.a. Awesome ChatGPT Prompts. Share, discover, and collect prompts from the community. Free and open source — self-host for your organization with complete privacy.

Collection of Cyber Threat Intelligence sources from the deep and dark web

🛡️ Awesome Cloud Security Resources ⚔️

学习安全运营的记录 | The knowledge base of security operation

Fastjson姿势技巧集合

信息安全方面的书籍

List of open source tools for AWS security: defensive, offensive, auditing, DFIR, etc.

Awesome free cloud native security learning labs. Includes CTF, self-hosted workshops, guided vulnerability labs, and research labs.

云资产管理工具 目前工具定位是云安全相关工具，目前是两个模块 云存储工具、云服务工具， 云存储工具主要是针对oss存储、查看、删除、上传、下载、预览等等 云服务工具主要是针对rds、服务器的管理，查看、执行命令、接管等等