Ghidra is a software reverse engineering (SRE) framework

ANTLR (ANother Tool for Language Recognition) is a powerful parser generator for reading, processing, executing, or translating structured text or binary files.

开源的端到端产品级通用智能体

新一代爬虫平台，以图形化方式定义爬虫流程，不写代码即可完成爬虫。

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

MCP Server for Ghidra

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

一个漏洞 PoC 知识库。A knowledge base for vulnerability PoCs(Proof of Concept), with 1k+ vulnerabilities.

Graphical Java application for managing BibTeX and BibLaTeX (.bib) databases

Soot - A Java optimization framework

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

Burp suite 分块传输辅助插件

An easy-to-learn/use static analysis framework for Java

Use Log4Shell vulnerability to vaccinate a victim server against Log4Shell

Automated testing to find logic and performance bugs in database systems

BinAbsInspector: Vulnerability Scanner for Binaries

A CAT called tabby ( Code Analysis Tool )

HummerRisk 是云原生安全平台，包括混合云安全治理和云原生安全检测。

Samples and Unpacker of malicious backdoors and exploits developed and used by Pinduoduo

Tai-e assignments for static program analysis

Spring Boot web application vulnerable to Log4Shell (CVE-2021-44228).

A byte code analyzer for finding deserialization gadget chains in Java applications

A malicious LDAP server for JNDI injection attacks

Open source research data repository software

🐱‍💻 ✂️ 🤬 CVE-2021-44228 - LOG4J Java exploit - WAF bypass tricks

JavaWeb MemoryShell Inject/Scan/Killer/Protect Research & Exploring

Java反序列化漏洞利用链补全计划，仅用于个人归纳总结。

LLMDFA: Analyzing Dataflow in Code with Large Language Models (NeurIPS 2024)