潮汐lev项目镜像

Simple SQL injection filter that attempts to detect malicious SQL strings from a pre-defined dataset. Note this tool does not carry out sanitisation of input, where input is transformed into someth…

python3写的综合扫描工具，主要用来存活验证，敏感文件探测(目录扫描/js泄露接口/html注释泄露)，WAF/CDN识别，端口扫描，指纹/服务识别，操作系统识别，POC扫描，SQL注入，绕过CDN，查询旁站等功能，主要用来甲方自测或乙方授权测试，请勿用来搞破坏。

kunpeng是一个Golang编写的开源POC框架/库，以动态链接库的形式提供各种语言调用，通过此项目可快速开发漏洞检测类的系统。

JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.

JA3 is a standard for creating SSL client fingerprints in an easy to produce and shareable way.

合规审计平台

goddi (go dump domain info) dumps Active Directory domain information

Spatial Temporal Graph Convolutional Networks (ST-GCN) for Skeleton-Based Action Recognition in PyTorch

A Java runtime information-gathering tool which uses the Java Attach API for information acquisition

OWASP CRS (Official Repository)

Suricata IDS rules 用来检测红队渗透/恶意行为等，支持检测CobaltStrike/MSF/Empire/DNS隧道/Weevely/菜刀/冰蝎/挖矿/反弹shell/ICMP隧道等

OWASP ModSecurity Core Rule Set (CRS) Project (Official Repository)

Real time data processing system based on flink and CEP

Java web common vulnerabilities and security code which is base on springboot and spring security

The Python SDK for AlienVault OTX

Machine learning to classify Malicious (Spam)/Benign URL's

Code-Audit-Challenges

Spring 实战第五版中文翻译

安全场景、基于AI的安全算法和安全数据分析业界实践

machine learning for security

Elegant theme for Hexo.

Clone of golang/groupcache with TTL and Item Removal support

记录学习Frida Hook时的知识点和小脚本

xss漏洞模糊测试payload的最佳集合 2020版

An open standard for hashing network flows into identifiers, a.k.a "community IDs".

Elasticsearch 查询导出工具(java)

Git All the Payloads! A collection of web attack payloads.