YASA is an open-source static program analysis project. Its core innovation lies in a unified intermediate representation called UAST, designed to support multiple programming languages. Built on …

Fair-code workflow automation platform with native AI capabilities. Combine visual building with custom code, self-host or cloud, 400+ integrations.

Chrome Extensions Samples

一款基于污点分析的PHP扫描工具，能快速匹配从常见Source点如$_POST、$GET到Sink点system等的路径，同时支持单独对函数的扫描。

A powerful JNDI injection exploitation framework that supports RMI, LDAP and LDAPS protocols, including various bypass methods for high-version JDK restrictions

《深入JDBC安全：特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Exploitation Techniques Revealed" - Research Summary Project

A static analyzer for Java, C, C++, and Objective-C

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

A deep learning model for localizing bugs in C/C++ source code (USENIX'23)

A GPT-empowered penetration testing tool

🔥 ShadowHook is an Android inline hook library which supports thumb, arm32 and arm64.

🎉 Elegant and powerful theme for Hexo.

阅读书源-香色闺阁+用心读书+源阅+阅读3.0书源+源阅读+爱阅书香+千阅+花火阅读+读不舍手+番茄+喜马拉雅+漫画+听书+书源+IPTV源+IPA巨魔应用=自动更新

A modern GUI client based on Tauri, designed to run in Windows, macOS and Linux for tailored proxy experience

天问之路 - 学习笔记&学习周报。内容包括但不限于C++ STL、编译原理、LLVM IR Pass代码优化、CSAPP Lab、uCore操作系统等等。

Optimizing Directed Fuzzing via Target-tailored Program State Restriction

Coverage-guided Fuzzing as Online Stochastic Control

A lightweight LLVM python binding for writing JIT compilers

淘宝爬虫SDK，用于淘宝开放平台或淘宝、天猫、阿里巴巴登录爬取

CTF framework and exploit development library

🌊 一款 Material Design 风格的 Hexo 主题 / An elegant Material-Design theme for Hexo

Crack legacy zip encryption with Biham and Kocher's known plaintext attack.

A JavaScript Engine Fuzzer

JDoop-release

Appshark is a static taint analysis platform to scan vulnerabilities in an Android app.

业务风险枚举与规避知识框架（Business Risk Enumeration & Avoidance Kownledge）