0x076d Goto Github PK
Name: 0x076d
Type: User
Bio: Cyber Security | Penetration Tester
Name: 0x076d
Type: User
Bio: Cyber Security | Penetration Tester
An Out-of-Band XXE server for retrieving file contents over FTP.
A collection of android security related resources
Pentesting Android Application Course For Kids+ (English and Vietnamese edition)
A Virtual Machine For Assessing Android applications, Reverse Engineering and Malware Analysis
A curated list of Android Security materials and resources For Pentesters and Bug Hunters
Awesome list of step by step techniques to achieve Remote Code Execution on various apps!
A fully configurable and extendable Bash obfuscation framework. This tool is intended to help both red team and blue team.
This is a resource factory for anyone looking forward to starting bug hunting and would require guidance as a beginner.
⚡ Automatically decrypt encryptions without knowing the key or cipher, decode encodings, and crack hashes ⚡
CNVD-2020-10487(CVE-2020-1938), tomcat ajp 文件读取漏洞poc
Apache Tomcat Remote Code Execution on Windows
Exploit for Arbitrary File Read on Pulse Secure SSL VPN (CVE-2019-11510)
PRJ321x
Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)
Signatures for jaeles scanner by @j3ssie
Hack Night is an open weekly training session run by the OSIRIS lab.
HedgeDoc - The best platform to write and share markdown.
Tutorials and Things to Do while Hunting Vulnerability.
Take a list of domains and probe for working HTTP and HTTPS servers
A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and checklists.
Our main goal is to share tips from some well-known bughunters. Using recon methodology, we are able to find subdomains, apis, and tokens that are already exploitable, so we can report them. We wish to influence Onelinetips and explain the commands, for the better understanding of new hunters..
FPT University
Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。
Windows / Linux Local Privilege Escalation Workshop
Nuclei
Community curated list of templates for the nuclei engine to find security vulnerabilities.
Rockyou for web fuzzing
OSCP Cheatsheet
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
Penetration Testing Book
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.