HTran is a connection bouncer, a kind of proxy server. A “listener” program is hacked stealthily onto an unsuspecting host anywhere on the Internet. When it receives signals from the actual target…

A curated collection of top-tier penetration testing tools and productivity utilities across multiple domains. Join us to explore, contribute, and enhance your hacking toolkit!

《白帽子安全开发实战》配套代码

内网渗透中的一些工具及项目资料

A curated list of awesome serverless security resources such as (e)books, articles, whitepapers, blogs and research papers.

ffffffff0x 团队维护的安全知识框架,内容包括不仅限于 web安全、工控安全、取证、应急、蓝队设施部署、后渗透、Linux安全、各类靶机writup

Secure XSS Filters.

mavonEditor - A markdown editor based on Vue that supports a variety of personalized features

The open source embeddable online markdown editor (component).

Sanitize untrusted HTML (to prevent XSS) with a configuration specified by a Whitelist

wangEditor, open-source Web rich text editor 开源 Web 富文本编辑器

数据结构

Weblogic环境搭建工具

A tool to dump the login password from the current linux user

个人笔记

You Know, For WEB Fuzzing !

A lightweight and ultra-fast shadowsocks library written in C++14 with Qt framework

Struts2全漏洞扫描利用工具

Cobalt Strike系列

Simple reverse ICMP shell

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-…

Java后端知识图谱🔥 帮助Java初学者成长

Handbook of information collection for penetration testing and src

Syracuse SEED labs in shiyanlou.com

Collection of quality safety articles. Awesome articles.

Behinder3.0 Beta4 源码（Decompile and Fixed）

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

远控免杀系列文章及配套工具，汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术，并对免杀效果进行了一一测试，为远控的免杀和杀软对抗免杀提供参考。

This tool generates gopher link for exploiting SSRF and gaining RCE in various servers