用于记录企业安全规划，建设，运营的相关资源

甲方企业安全建设

JNDI Attacking Tool

旨在通过分析企业信息安全建设过程中的心路历程 #从技术、管理、治理等多个层面了解企业信息安全建设的不同阶段

platform for awd

A list of commands, scripts, resources, and more that I have gathered and attempted to consolidate for use as OSCP study material. Commands in 'Usefulcommands' Keepnote. Bookmarks and reading mater…

A tool for checking exploitability

演示视频https://pan.baidu.com/s/1HH_-TQGca1NLoSqzvOPB3Q 密码：izm3

一个用于加密传输爆破的Burp Suite插件

Polymorph is a real-time network packet manipulation framework with support for almost all existing protocols

Command-line tool that instantly fetches Stack Overflow results when you get a compiler error

A Static Analysis Tool for Detecting Security Vulnerabilities in Python Web Applications

A collection of malware samples and relevant dissection information, most probably references from http://blog.inquest.net

Code-Audit-Challenges

RedSails is a Python based post-exploitation project aimed at bypassing host based security monitoring and logging

A curated list of awesome platforms,including CTF/Security Response Center/Bug Tracker and so on.

NetRipper - Smart traffic sniffing for penetration testers

Extendible Generic Anomaly Detection System

小密圈备份

An online request replication tool, also a tcp stream replay tool, fit for real testing, performance testing, stability testing, stress testing, load testing, smoke testing, etc

automated penetration toolkit

Windows Post-Exploitation / Malware Forward Engineering DEF CON 25 Workshop

📡 A python program to create a fake AP and sniff data.

A modern, browser-based frontend to gdb (gnu debugger). Add breakpoints, view stack traces, and more in C, C++, Go, and Rust. Simply run gdbgui from the terminal and a new tab will open in your bro…