soap's Projects
Exploitation Framework for Embedded Devices
Linux 下IPV4 原始套接字编程 (更新中)
通用的指纹识别规则
Simple Rust Stealer
Rusty Joomla RCE Exploit
此项目用来提取收集以往泄露的密码中符合条件的强弱密码
Small cyberspace search engine
小型网络空间搜索引擎
SecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strings, fuzzing payloads, and many more.
大安全各领域各公司各会议分享的PPT
Security technique research and some funny work on it !
go port of shadowsocks (Deprecated)
CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
Spectre, Meltdown, Foreshadow, Fallout, RIDL, ZombieLoad vulnerability/mitigation checker for Linux & BSD
splinter - python test framework for web applications
Spring Boot Actuator (jolokia) XXE/RCE
SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 checklist
Sreg可对使用者通过输入email、phone、username的返回用户注册的所有互联网护照信息。
sshshell/sshcmd/sshlogin/sshcrack(SSH交互式Shell/内网渗透专用非交互式Shell/SSH密码爆破)Windows & Linux
StaCoAn is a crossplatform tool which aids developers, bugbounty hunters and ethical hackers performing static code analysis on mobile applications.
Struts2全漏洞扫描利用工具
一些经典且高质量的电子书分享
各种大会PPT PDF
主流供应商的一些攻击性漏洞汇总
open source training courses about distributed database and distributed systemes
Telegram client, in Go. (MTProto API)
Collection of cracked malware, and ebooks