t1ng Goto Github PK
Name: liming
Type: User
Bio: i want to study any knowledge!
Name: liming
Type: User
Bio: i want to study any knowledge!
1000个PHP代码审计案例(2016.7以前乌云公开漏洞)
个人域渗透学习笔记
Attack and defend active directory using modern post exploitation adversary tradecraft activity
记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获
A comprehensive curated list of available Bug Bounty & Disclosure Programs and Write-ups.
awesome cloud security || 收集一些国内外不错的云安全资源,该项目主要面向国内的安全人员
A collection of awesome penetration testing resources, tools and other shiny things
Cobalt Strike User-Defined Reflective Loader written in Assembly & C for advanced evasion capabilities. By: @0xBoku & @s4ntiago_p
Inspired by https://github.com/djadmin/awesome-bug-bounty, a list of bug bounty write-up that is categorized by the bug nature
Collection of quality safety articles. Awesome articles.
Damn Vulnerable GraphQL Application is an intentionally vulnerable implementation of Facebook's GraphQL technology, to learn and practice GraphQL Security.
Facebook Bug Bounties
Fastjson姿势技巧集合
A fast, simple, recursive content discovery tool written in Rust.
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
漏洞poc&exp存档
Mind-Maps of Several Things
dump mysql client password from memory
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
渗透测试常规操作记录
收集一些小型实用的工具
reconFTW is a tool designed to perform automated recon on a target domain by running the best set of tools to perform scanning and finding out vulnerabilities
红队作战中比较常遇到的一些重点系统漏洞整理。
记录自己编写、修改的部分工具
reGeorgX is a project that seeks to aggressively refactor reGeorg - reGeorg重构计划
A list of resources for those interested in getting started in bug bounties
Security Flow Chart
SecLists is the security tester's companion. It's a collection of multiple types of lists used during security assessments, collected in one place. List types include usernames, passwords, URLs, sensitive data patterns, fuzzing payloads, web shells, and many more.
Spring Boot Reference Guide中文翻译 -《Spring Boot参考指南》
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.