xundididi

didi xundididi

[email protected]

93 followers · 1.1k following

Achievements

JavaVul Public
Forked from lokerxx/JavaVul

JAVA 安全靶场，IAST 测试用例，JAVA漏洞复现，代码审计，SAST测试用例，被动扫描，JAVA漏洞靶场

Java Apache License 2.0 Updated Mar 7, 2024
missing-cve-nuclei-templates Public
Forked from edoardottt/missing-cve-nuclei-templates

Weekly updated list of missing CVEs in nuclei templates official repository. Mainly built for bug bounty, but useful for penetration tests and vulnerability assessments too.

MIT License Updated Aug 15, 2023
awesome-cto Public
Forked from kuchin/awesome-cto

A curated and opinionated list of resources for Chief Technology Officers, with the emphasis on startups

Creative Commons Zero v1.0 Universal Updated Nov 30, 2022
Fuzzing101 Public
Forked from antonio-morales/Fuzzing101

An step by step fuzzing tutorial. A GitHub Security Lab initiative

Apache License 2.0 Updated Oct 22, 2022
wsMemShell Public
Forked from veo/wsMemShell

WebSocket Webshell，一种新型WebShell技术

Java Updated Aug 25, 2022
awesome-vulnerable-apps Public
Forked from vavkamil/awesome-vulnerable-apps

Awesome Vulnerable Applications

Creative Commons Zero v1.0 Universal Updated Aug 12, 2022
MYExploit Public
Forked from achuna33/MYExploit

OAExploit一款基于产品的一键扫描工具。

Java Updated Jul 26, 2022
All-Defense-Tool Public
Forked from guchangan1/All-Defense-Tool

本项目集成了全网优秀的攻防工具项目，包含自动化利用，子域名、敏感目录、端口等扫描，各大中间件，cms漏洞利用工具以及应急响应等资料。

Updated Jul 18, 2022
scan4all Public
Forked from GhostTroops/scan4all

Vulnerabilities scan；15532+POC漏洞扫描；11种应用密码爆破；7000+web指纹；146种协议90000+规则port扫描；fuzz、打点、bugbounty神器...

Go BSD 3-Clause "New" or "Revised" License Updated Jul 15, 2022
iscsicpl_bypassUAC Public
Forked from hackerhouse-opensource/iscsicpl_bypassUAC

UAC bypass for x64 Windows 7 - 11

C++ Updated Jul 14, 2022
awesome-vulnerable Public template
Forked from kaiiyer/awesome-vulnerable

A curated list of VULNERABLE APPS and SYSTEMS which can be used as PENETRATION TESTING PRACTICE LAB.

MIT License Updated Jun 24, 2022
Vulnerability-Wiki Public
Forked from Threekiii/Vulnerability-Wiki

一个综合漏洞知识库，集成了Vulhub、Peiqi、Edge、0sec、Wooyun等开源漏洞库

HTML Updated Jun 6, 2022
pocV Public
Forked from WAY29/pocV

Compatible with xray and nuclei poc framework

Go MIT License Updated May 20, 2022
Assassin Public
Forked from b1ackc4t/Assassin

Assassin是一款精简的基于命令行的webshell管理工具，它有着多种payload发送方式和编码方式，以及精简的payload代码，使得它成为隐蔽的暗杀者，难以被很好的防御。

Java Apache License 2.0 Updated May 17, 2022
jolokia-exploitation-toolkit Public
Forked from laluka/jolokia-exploitation-toolkit

jolokia-exploitation-toolkit

Python Updated May 9, 2022
SecurityProduct Public
Forked from birdhan/SecurityProduct

开源安全产品源码，IDS、IPS、WAF、蜜罐等

Updated May 8, 2022
BehinderClientSource Public
Forked from MountCloud/BehinderClientSource

冰蝎客户端源码-3.0-BETA11.t00ls

Java Updated Apr 29, 2022
eyes.sh Public
Forked from lijiejie/eyes.sh

Optimized DNS/HTTP Log Tool for pentesters, faster and easy to use.

JavaScript Updated Apr 1, 2022
reapoc Public
Forked from cckuailong/reapoc

OpenSource Poc && Vulnerable-Target Storage Box.

PHP Apache License 2.0 Updated Mar 27, 2022
Yasso Public
Forked from sairson/Yasso

强大的内网渗透辅助工具集-让Yasso像风一样支持rdp，ssh，redis，postgres，mongodb，mssql，mysql，winrm等服务爆破，快速的端口扫描，强大的web指纹识别，各种内置服务的一键利用（包括ssh完全交互式登陆，mssql提权，redis一键利用，mysql数据库查询，winrm横向利用，多种服务利用支持socks5代理执行）

Go Updated Mar 18, 2022
java-security Public
Forked from istoliving/JavaSec

Java安全☞代码审计/漏洞研究/武器化

Java 1 Updated Mar 11, 2022
traitor Public
Forked from liamg/traitor

⬆️ ☠️ Automatic Linux privesc via exploitation of low-hanging fruit e.g. gtfobins, pwnkit, dirty pipe, +w docker.sock

Go MIT License Updated Mar 10, 2022
momo-code-sec-inspector-java Public
Forked from momosecurity/momo-code-sec-inspector-java

IDEA静态代码安全审计及漏洞一键修复插件

Java Apache License 2.0 Updated Mar 10, 2022
JavaSec Public
Forked from Y4tacker/JavaSec

a rep for documenting my study, may be from 0 to 0.1

Java 1 Apache License 2.0 Updated Mar 9, 2022
POC-bomber Public
Forked from tr0uble-mAker/POC-bomber

利用大量高威胁poc/exp快速获取目标权限，用于渗透和红队快速打点

Python Updated Mar 7, 2022
Awesome-WAF Public
Forked from 0xInfection/Awesome-WAF

🔥 Everything about web-application firewalls (WAF).

Python Apache License 2.0 Updated Mar 3, 2022
goon Public
Forked from i11us0ry/goon

goon,集合了fscan和kscan等优秀工具功能的扫描爆破工具。功能包含：ip探活、port扫描、web指纹扫描、title扫描、压缩文件扫描、fofa获取、ms17010、mssql、mysql、postgres、redis、ssh、smb、rdp、telnet、tomcat等爆破以及如netbios探测等功能。

Updated Mar 2, 2022
0day Public
Forked from msr00t/0day

各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新

C 1 GNU General Public License v3.0 Updated Mar 1, 2022
SecCrawler Public
Forked from Le0nsec/SecCrawler

一个方便安全研究人员获取每日安全日报的爬虫和推送程序，目前爬取范围包括先知社区、安全客、Seebug Paper、跳跳糖、奇安信攻防社区、棱角社区，持续更新中。

Go GNU General Public License v3.0 Updated Feb 26, 2022
DHLYK Public
Forked from 0xCuSO4/DHLYK

大灰狼远控木马 V9.5 源码

C++ Updated Feb 26, 2022

didi xundididi

Achievements

Achievements

JavaVul Public

Uh oh!

missing-cve-nuclei-templates Public

Uh oh!

awesome-cto Public

Uh oh!

Fuzzing101 Public

Uh oh!

wsMemShell Public

Uh oh!

awesome-vulnerable-apps Public

Uh oh!

MYExploit Public

Uh oh!

All-Defense-Tool Public

Uh oh!

scan4all Public

Uh oh!

iscsicpl_bypassUAC Public

Uh oh!

awesome-vulnerable Public template

Uh oh!

Vulnerability-Wiki Public

Uh oh!

pocV Public

Uh oh!

Assassin Public

Uh oh!

jolokia-exploitation-toolkit Public

Uh oh!

SecurityProduct Public

Uh oh!

BehinderClientSource Public

Uh oh!

eyes.sh Public

Uh oh!

reapoc Public

Uh oh!

Yasso Public

Uh oh!

java-security Public

Uh oh!

traitor Public

Uh oh!

momo-code-sec-inspector-java Public

Uh oh!

JavaSec Public

Uh oh!

POC-bomber Public

Uh oh!

Awesome-WAF Public

Uh oh!

goon Public

Uh oh!

0day Public

Uh oh!

SecCrawler Public

Uh oh!

DHLYK Public

Uh oh!