元豚科技 - 基于日志安全分析做切入，做最好用的「云原生安全运维工作台」

一款用于自动化处理内存取证的Python脚本，并提供GUI界面

Crack hashes in seconds.

zsteg-python

implements php-style serialize/unserialize for python 3.7+

鼠标键盘流量包取证

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

docker container escape check || Docker 容器逃逸检测

网络空间测绘/搜索引擎相关的资料

IDE (Interpreter/Debugger Engine) for esoteric programming languages. Allows step-by-step debugging and shows a watch window during debugging. Modular design allows easy adding of new languages.

KeePassXC is a cross-platform community-driven port of the Windows application “KeePass Password Safe”.

A collection of tools for Brainfuck and derivatives

Adversary simulation and Red teaming platform with AI

BitCracker is the first open source password cracking tool for memory units encrypted with BitLocker

CTF题目缓存（题目信息及附件），用于题目复现和学习

This tool generates gopher link for exploiting SSRF and gaining RCE in various servers

✍🏻 这里是写博客的地方 —— Halfrost-Field 冰霜之地

Avatar generator in Java

Linux应急处置/信息搜集/漏洞检测工具，支持基础配置/网络流量/任务计划/环境变量/用户信息/Services/bash/恶意文件/内核Rootkit/SSH/Webshell/挖矿文件/挖矿进程/供应链/服务器风险等13类70+项检查

Web path scanner

Python antivirus evasion tool

PowerSploit - A PowerShell Post-Exploitation Framework

Weblogic一键漏洞检测工具，V1.5，更新时间：20200730

Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。

Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）

Vulmap 是一款 web 漏洞扫描和验证工具, 可对 webapps 进行漏洞扫描, 并且具备漏洞验证功能

CMS漏洞测试用例集合

A Genetic Algorithm-Based Solver for Jigsaw Puzzles 🌀

AntSword 加载器