A portable fork of the high-performance regular expression matching library

塑造未来的安全领域智能革命

Thread-safe and deadlock free template projects for hijacking various Windows system DLLs

JNDI-Exploitation-Kit（A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps v…

A C# MS SQL toolkit designed for offensive reconnaissance and post-exploitation.

KrabsETW provides a modern C++ wrapper and a .NET wrapper around the low-level ETW trace consumption functions.

「稳健 Online Judge」后端

Equihash: memory-hard PoW with fast verification

Kubesploit is a cross-platform post-exploitation HTTP/2 Command & Control server and agent written in Golang, focused on containerized environments.

Linux Kernel module-less implant (backdoor)

Tool to check for applicable windows updates for a given machine in offline without dependency on WSUS or WUA.

Script to steal passwords from ssh.

Simple reverse ICMP shell

一个利用ASM对字节码进行污点传播分析的静态代码审计应用（添加了大量代码注释，适合大家进行源码学习）。也加入了挖掘Fastjson反序列化gadget chains和SQLInject（JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等）静态检测功能。并且加入了很多功能以方便进行漏洞自动化挖掘。

Source-binary patch presence test system.

A list of interesting payloads, tips and tricks for bug bounty hunters.

Burp Suite extension to passively scan for applications revealing server error messages

MySQL fake server for read files of connected clients

A Golang blocking leaky-bucket rate limit implementation

This repo records all the vulnerabilities of linux software I have reproduced in my local workspace

Archive Mirror for recently republished PoC/Exploit code

一个合作博弈论的互动讲解手册 An interactive guide to the game theory of cooperation

Vue.js + LeanCloud（node.js）前后端分离开发样板

A simple Hexo theme forked from icylogic.

Reference: http://www.secgeek.net/bookfresh-vulnerability/

translate project of Drops

Recovery of Plaintext iMessage Data Without Breaking Crypto

A Python Perceptual Image Hashing Module