程序员如何优雅的挣零花钱，2.0版，升级为小书了。Most of this not work outside China , so no English translate

A PHP Blogging Platform. Simple and Powerful.

This is a webshell open source project

Dictionary of attack patterns and primitives for black-box application fault injection and resource discovery.

SQLI labs to test error based, Blind boolean based, Time based.

This repo is archived. Thanks for wooyun! 乌云公开漏洞、知识库爬虫和搜索 crawl and search for wooyun.org public bug(vulnerability) and drops

一个好玩的Web安全-漏洞测试平台

PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.

Front-end Integrated Solution - 前端集成解决方案， 最新版请进入 FIS3 https://github.com/fex-team/fis3

Web Based, Cloud IDE

FruityWiFi is a wireless network auditing tool. The application can be installed in any Debian based system (Jessie) adding the extra packages. Tested in Debian, Kali Linux, Kali Linux ARM (Raspber…

WDScanner平台目前实现了如下功能：分布式web漏洞扫描、客户管理、漏洞定期扫描、子域名枚举、端口扫描、网站爬虫、暗链检测、坏链检测、网站指纹搜集、专项漏洞检测、代理搜集及部署等功能。

Webshell && Backdoor Collection

Common PHP webshells you might need for your Penetration Testing assignments or CTF challenges. Do not host the file(s) on your server!

Typecho Fans插件作品目录

Pwn stuff.

XVWA is a badly coded web application written in PHP/MySQL that helps security enthusiasts to learn application security.

PHP代码审计分段讲解

一个结构清晰的，易于维护的，现代的PHP Markdown解析器

A laboratory for learning secure web and mobile development in a practical manner.

DOMjudge programming contest jury system

DoraBox - Basic Web Vulnerability Training

针对ctf线下赛流量抓取(php)、真实环境流量抓取分析的工具

一个经典的XSS渗透管理平台

a project aim to collect CTF web practices .

A simple typecho template.

Advanced Web Shell

A tool that can scan php vulnerabilities automatically using static analysis methods

PHP Runtime Vulnerability Detection

💬 一个轻量化的留言板 / 记事本 / 社交系统 / 博客。人类的本质是……咕咕咕？