Skip to content

Latest commit

 

History

History
1114 lines (1100 loc) · 275 KB

README_2017.md

File metadata and controls

1114 lines (1100 loc) · 275 KB
Raw

数据--所有

数据--年度

2017 信息源与信息类型占比

2017-信息源占比-secwiki

2017-信息源占比-xuanwu

2017-最喜欢语言占比

微信公众号 推荐

nickname_english weixin_no title url
网安国际 inforsec FlashGuard: 利用固态存储的硬件特性对抗勒索软件 https://mp.weixin.qq.com/s/qt2d1WQpTk2IYm_D3ufBGg
Python中文社区 python-china Kaggle机器学习实战总结 https://mp.weixin.qq.com/s/vfR_3RmhbFvtSpK-7RIZqw
AI前线 ai-front 开源DAWN,Spark和Mesos后Stanford的又一力作 https://mp.weixin.qq.com/s/r951Iasr4dke6MPHsUO0TA
青塔 cingta-com 新一轮竞争开启!2018年国家重点研发计划40个重点专项来了 https://mp.weixin.qq.com/s/q2Inex4wgBLOMVJgFnDXuQ
互联网企业安全 corpsec 行业风口上的安全人员职业规划 https://mp.weixin.qq.com/s/icRTSbxjT-1Jf216u6F_pg
阿尔法工场研究院 alpworks 本文由“资本实验室”授权 https://mp.weixin.qq.com/s/XpymxwqqVPZZDRvY2CGSpg
工控安全竞赛 gh_f661e36dce89 恒泰实达杯全国第三届工控系统信息安全攻防竞赛 鸣锣开赛 https://mp.weixin.qq.com/s/QDdcrTw4nWf62-6__kCFuA
北京经信局 bjsjxw 【网络安全】建设世界一流的网络安全高端产业集聚中心:国家网络安全产业园区建设总体思路介绍 https://mp.weixin.qq.com/s/QBtI7uMuReItCRbliBFwrA
中国信通院CAICT CAICT_CHINA 刘多:网络安全产业发展现状与展望 , PPT https://mp.weixin.qq.com/s/E7Iuri9G0RYOfv50yVLX_A
Qunar技术沙龙 QunarTL 去哪儿客户端全业务线用户行为数据ETL介绍 https://mp.weixin.qq.com/s/qn8VAMoIk7rkhDL4BsCfcA
AI科技大本营 rgznai100 https://mp.weixin.qq.com/s/4CQKqL_kZzMTlu8W4WYrLg
我的安全视界观 CANI_Security 【渗透技巧】浅谈常规渗透瓶颈,实例发散思维突破 http://mp.weixin.qq.com/s/kiOAk2VfgkS51A_gwd23qw
电力系统自动化 AEPS-1977 【主旨报告】中国科学院信息工程研究所 孙利民:对工控系统安全防护的思考与实践 https://mp.weixin.qq.com/s/MzLeI17OeDqr2aFBNAidZQ
硬土壳安全 InTUQCS 快速构建基于BeEF的钓鱼平台 https://mp.weixin.qq.com/s/dRHv_wq2pflfle6H5ugKiw
猎户攻防实验室 TassLiehu Office文件内容关键字提取脚本实践 https://mp.weixin.qq.com/s/QiY07p9C5mqa8bqS1Xi2Pw
寒剑夜鸣 HKT_1990 Office漏洞利用大全 https://mp.weixin.qq.com/s/Fb64DE0ThynWsjX5-qCTnA
安全威胁情报 Threatbook “海莲花”团伙专用后门Denis最新版分析 https://mp.weixin.qq.com/s/UIV0YaIlSJLcYT32XJQPlg
烽台科技 fengtaisec “PDCA”在工控安全运维管理中的应用(下) https://mp.weixin.qq.com/s/kUCb9g7j33vz0OjUiCUr7g
国信安全研究院 CSI_SIC https://mp.weixin.qq.com/s/TU-kpCP72rM0c-6vs2ntxw
zjutcsa gh_85adda091ed1 大润发骗局 http://mp.weixin.qq.com/s/XDGGcJPkBrVHxlw_6o6t4g
CCF系统软件专委 gh_2d938fe8ace0 CCF NASAC 2017原型系统竞赛奖正式颁发 https://mp.weixin.qq.com/s/6tj4lh0ej7aNkQy0DdfWjg
视觉求索 thevisionseeker 浅谈人工智能:现状、任务、构架与统一 , 正本清源 https://mp.weixin.qq.com/s/-wSYLu-XvOrsST8_KEUa-Q
网络安全社区悦信安 yuexin_an 【提莫】一个域名收集及枚举工具 https://mp.weixin.qq.com/s/cakTgWlE-wQk10QGbg7E6Q
浅黑科技 qianheikeji Oscar:我对人生的期望 https://mp.weixin.qq.com/s/UTgvKvXLZry79NPEvVzDbA
三六零CERT CERT-360 IoT设备通信安全讨论 https://mp.weixin.qq.com/s/8qyV7e7466UZkmVit4921w
sh3ll gh_55ebf8cb4031 Decrypt PHPs eval based encryption with debugger https://mp.weixin.qq.com/s/zTpVhTQnM4_kRJeHaVDJPg
云众可信 yunzhongkexin https://mp.weixin.qq.com/s/m4kMZjHZUM6AaXp1VK2txw
丁爸 情报分析师的工具箱 dingba2016 【资源】美国情报分析互联网资源之一 https://mp.weixin.qq.com/s/hxg2nHAIuUNt5VewML4v6A
百姓网技术团队 gh_0bd935cd0e1b [第10期] 低成本实现百 Gbps DDoS/CC 攻击防护 http://mp.weixin.qq.com/s/RgyPq9BA3XHJ8cW1CQD71Q
电塔 DiantaFM 小城:我这一路的摸爬滚打 https://mp.weixin.qq.com/s/FupWpgckJIzUKD0Edi1Dgw
爱奇艺技术产品团队 iQIYI-TP 爱奇艺业务安全风控体系的建设实践 https://mp.weixin.qq.com/s/2gcNY0LmgxpYT1K6uDaWtg
未然安全实验室 WeiRanLabs American Fuzzy Lop实例-基础用法 https://mp.weixin.qq.com/s/uBqz9UVcwlWQtpxlX1J2Gw
安全张之家 zhang_informationSEC 2005-2017年国内科研单位在国际安全顶级会议中发表文章量统计 https://mp.weixin.qq.com/s/Kivzuq9EkHZKa0gNFcokSQ
大数据与法制研究中心 gh_da5718f7d2fe 干货丨我国网络信息安全产业概览(政策+产业链+挑战) https://mp.weixin.qq.com/s/D2CxcifjuwvXixh_P2Z3pw
公安三所网络安全法律研究中心 gh_2544eebbd88a 《网络安全法》执法案例汇总第二期 http://mp.weixin.qq.com/s/ouDszZXtibPqGWubgawjZQ
中国保密协会科学技术分会 gh_be4f21d557c0 无处不在的窥视-美国Xkeyscore计划简介 https://mp.weixin.qq.com/s/8JeIRebbLJnIzQqJ7HVmAA
直言论难 gh_ecbda7a340f8 Gartner全球首发:2018年十大战略技术趋势 https://mp.weixin.qq.com/s/krmqJc755kE_j7oTGSJCXg
iPolicyLaw iPolicyLaw 美国向WTO提交针对中国《网络安全法》相关措施的申辩文件 https://mp.weixin.qq.com/s/bnJqcY9pQjMY_Hnbj9fdYw
Seebug漏洞平台 seebug_org Discuz!X 3.4 任意文件删除漏洞分析 https://mp.weixin.qq.com/s?__biz=MzAxNDY2MTQ2OQ==&mid=2650942631&idx=1&sn=12a3c55807768f12fcd1b306fdf775d8
Ant说安全 gh_5da8b5c62263 浅谈安全意识-从周鸿祎提到“大安全”想到的 https://mp.weixin.qq.com/s/bi49FZyRRgJON8t5bf-A3A
逢人斗智斗勇 xiaopigfly DedeCMS-V5.7 前台鸡肋&后台getshell漏洞 https://mp.weixin.qq.com/s/IZn_xnO2tyUWmx9dronYUQ
贴膜儿 lvyoudashujuwang PentesterLab渗透师养成计划 https://mp.weixin.qq.com/s/bE_smPTR8yzB1ksvrcXEXw
百度安全实验室 BaiduX_lab 逆天而行-我们如何在云中发掘僵尸网络 https://mp.weixin.qq.com/s/8MSpAorxrTCH_l1y2Q_qOw
瀚思科技 HanSight 如何利用Flink实现超大规模用户行为分析 https://mp.weixin.qq.com/s/_Sky98xI9M8AkXf17SHt6g
PaperWeekly paperweekly 项目实战:如何构建知识图谱 https://mp.weixin.qq.com/s/cL1aKdu8ig8-ocOPirXk2w
美团技术团队 meituantech 【人物志】KDD Cup 2017双料冠军燕鹏 https://mp.weixin.qq.com/s/-wAr-tWqvS2NLfwxKcnEQQ
编码美丽 jiangwei0910410003 Android脱壳圣战---360加固宝加固分析和脱壳教程解析 https://mp.weixin.qq.com/s/xSe2Zrv9Ev4qRaN99YmnRA
工控安全漫谈 gh_1dfbb29f0308 联网生产类系统安全巡检报告 (电力行业) https://mp.weixin.qq.com/s/jdqB8I6T33x3LlKpUXljJw
同程旅行安全应急响应中心 lysrc_team 基于ASM的java字符串混淆工具实现 http://mp.weixin.qq.com/s/8pIcsRbVPj1EBgSC961gDA
二向箔安全 twosecurity https://mp.weixin.qq.com/s/JTZfaG6iG2XAmiCeBiKxwA
Viola后花园 Viola_deepblue MQ带来的国际化启示 https://mp.weixin.qq.com/s/zJubeSuXRZRUBhulaRvHYg
计算广告 Comp_Ad 互联网广告作弊十八般武艺(下) https://mp.weixin.qq.com/s/Ut0_yj2YoPMwEAokNDPv5g
网络安全技能竞赛 isgchina https://mp.weixin.qq.com/s?__biz=MjM5NjkyMTk5Mg==&mid=2650597864&idx=1&sn=60a58436e65283ce404eb837404c31a1&scene=0#wechat_redirect
网安视界 wangansj 深度 , 全景揭秘美网军司令部“升级记” https://mp.weixin.qq.com/s?__biz=MzI4MTM5NDMwOQ==&mid=2247487942&idx=1&sn=178e424144cdcf6cfd1ba99776d059eb&scene=0#wechat_redirect
安全测评联盟 gh_50f915a9fd52 师夷长技——谈谈黑帽(Black Hat)2017大会的一些体会 https://mp.weixin.qq.com/s?__biz=MzI2NTA4MDE5NQ==&mid=2651622427&idx=1&sn=8dd1d69ffa8a8ae9de43c79c564aae91&scene=0#wechat_redirect
奇安信威胁情报中心 gh_166784eae33e 在XCon 2017上讲的议题:在草垛中寻找针头 - 通过Shellcode聚类识别定向攻击相关的恶意代码 https://mp.weixin.qq.com/s/5RYOMEyOa5kR-yQ9So07sA
WiFi安全应急响应中心 WiFiSRC 【PPT下载】WiFi万能钥匙SRC安全沙龙 第一期 https://mp.weixin.qq.com/s?__biz=MzI1NTY2MTkwNw==&mid=2247483798&idx=1&sn=8992a94f41f91945f201ebcd48a104c5&scene=0#wechat_redirect
汉客儿 gh_418dfd27e592 pylogin系列之畅言登录评论接口分析 https://mp.weixin.qq.com/s?__biz=MzI1NTUzMjUzMQ==&mid=2247483727&idx=1&sn=aadacf8866fdb5b6ce3d49649560eb9a&scene=0#wechat_redirect
程序员在深圳 studycode 做到这一点,你也可以成为优秀的程序员 https://mp.weixin.qq.com/s/8Bl105G8ZsE_jy5mbrIy_g
Java面试那些事儿 javatiku 以Java的视角来聊聊SQL注入 https://mp.weixin.qq.com/s?__biz=MzIzMzgxOTQ5NA==&mid=2247483954&idx=1&sn=418b7e55b16c717ee5140af990298e22&chksm=e8fe9e3bdf89172d0670690060944bf2434cc2d2e8fba4477711299a0775cf3735a2022c0778#rd
滴滴安全应急响应中心 didisrc Linux 端口转发特征总结 https://mp.weixin.qq.com/s?__biz=MzA3Mzk1MDk1NA==&mid=2651903919&idx=1&sn=686cc53137aa9e8ec323dda1e54a2c23&chksm=84e3442ab394cd3ccafd8006cbabdc3c0bf305a6543e0b55ea4aaa51c8768dc8eb5cfee2a0d4&scene=0#rd
赛博朔方 chinamssp 导读|CSA云计算关键领域安全指南4.0 (中文版) https://mp.weixin.qq.com/s?__biz=MzI4MTIyNjkxOQ==&mid=2247484179&idx=1&sn=afbd75c6631b6f12f1657d6f04a9f6de&scene=0#wechat_redirect
码农翻身 coderising 一个故事讲完https https://mp.weixin.qq.com/s/StqqafHePlBkWAPQZg3NrA
玉树芝兰 nkwangshuyi 如何用Python做舆情时间序列可视化? http://mp.weixin.qq.com/s/JGHSH_TH25GBwGJdLBgnmA
HenceTech gh_75a8b5dd04be 报告三 webshell检测模块与模块测试(下) https://mp.weixin.qq.com/s/yh_uX8jPfbn-_wzGOkugaA
CNNVD安全动态 cnnvd_news CNNVD 关于Apache Tomcat安全绕过漏洞情况的通报 http://mp.weixin.qq.com/s/fkBVw0BH5kcc0jdKC4c9ZA
开放知识图谱 OpenKG-CN 王昊奋 , When KG meets Chatbots https://mp.weixin.qq.com/s?__biz=MzU2NjAxNDYwMg==&mid=2247483866&idx=1&sn=abd559c2bc416619fe3501209a5261da&scene=0#wechat_redirect
史中 gh_41e7a570e203 百度首席安全科学家韦韬:我们的战斗,从“内存战争”到“黑产战争” https://mp.weixin.qq.com/s?__biz=MzIwOTg5OTg3NA==&mid=2247483780&idx=1&sn=488ba332ec1fc868df101aae5ef97fbf&scene=0#wechat_redirect
中测安华 ZCAH_2013 网络安全专家与对手间的竞赛 https://mp.weixin.qq.com/s?__biz=MzI0NDUyODU4MA==&mid=2247483960&idx=1&sn=b1ea929c773ed2d65270dfec1e3a5115&scene=0#wechat_redirect
阿里云安全 aliyunsec 阿里云:游戏行业DDoS态势报告(2017年上半年) https://mp.weixin.qq.com/s/DyLkQiMuEP3v-AHt9P81vg?spm=5176.100239.blogcont127833.17.Fswjg8
高可用架构 ArchNotes 基于Elasticsearch构建千亿流量日志搜索平台实战 https://mp.weixin.qq.com/s?__biz=MzAwMDU1MTE1OQ==&mid=2653548856&idx=1&sn=eda083752319e317c6903017c84d849d&scene=0#wechat_redirect
取证杂谈 gh_3cc4dcce2d29 如何判断微信聊天记录被删除过? https://mp.weixin.qq.com/s?__biz=MzI3Mjc0MjkwMQ==&mid=2247483675&idx=1&sn=669c2fe44425310e86b003c6ac41acb7&scene=0#wechat_redirect
工信微报 gxwbwx 发布丨《工业控制系统信息安全事件应急管理工作指南》(附解读) https://mp.weixin.qq.com/s?__biz=MjM5OTUwMTc2OA==&mid=2650793095&idx=2&sn=e772f59af83b2fdad693484b64cf00ed&scene=0#wechat_redirect
GitChat GitChat https://mp.weixin.qq.com/s/IN_JJhg_oG7ILVjNj-UexA
赛博星人 cyberspace_666 【干货】史上最强、最精简、最易懂《网络安全法》概要及企业应对介绍中文版 https://mp.weixin.qq.com/s?__biz=MzIyODcxODI5MA==&mid=2247484302&idx=1&sn=dcb296a41955ea7e1cd38d55d949af10&scene=0#wechat_redirect
茶码古刀 wxcmgd 维基解密揭露针对网闸设备和封闭网络的CIA工具 https://mp.weixin.qq.com/s?__biz=MzI2NzM3MTQ1Mw==&mid=2247484066&idx=1&sn=a621127befdc3b9192e7066b63279531&scene=0#wechat_redirect
算法与数学之美 MathAndAlgorithm 班主任之眼!——看穿验证码少女の薄纱 https://mp.weixin.qq.com/s?__biz=MzA5ODUxOTA5Mg==&mid=2652553452&idx=1&sn=64488941360b6ecf39bd87692a2fbfc3&chksm=8b7e31b7bc09b8a1cfa12b807cd30f21f86f261587fab6ae9e6e96e4d9565cc8caf4de21a8de&mpshare=1&scene=1&srcid=0618wdfKfLDuFKYK6o4IQqPN&key=110a1ce
神探学院 DetectiveAcademy 电子数据取证技能树 (V1) https://mp.weixin.qq.com/s?__biz=MzUyNTA2MTQ5Mw==&mid=2247483707&idx=1&sn=584d666fb85762354378d0919dad5ed5&scene=0#wechat_redirect
数据派THU DatapiTHU 独家 , 一文读懂特征工程 https://mp.weixin.qq.com/s/CkDzLZCXOF6zzrn6_dd6Jw
人工智能学家 AItists Gartner公布2017年顶级安全技术 https://mp.weixin.qq.com/s?__biz=MzIwOTA1MDAyNA==&mid=2649841199&idx=4&sn=0dcad94c5f9930866bff7bae6cc3ff68&scene=0#wechat_redirect
n1nty n1nty-talks Tomcat 源代码调试笔记 - 看不见的 Shell https://mp.weixin.qq.com/s?__biz=MzI5Nzc0OTkxOQ==&mid=2247483666&idx=1&sn=6421b39037735953fa3148bdbf5bf912&chksm=ecb11de2dbc694f4e00a55667fdc81387d53494788f43ec90327fa64f8c02fa6805fc0577671&mpshare=1&scene=1&srcid=0623Z7avuWtePZvyDd2GWbOi&key=f0ee669
铸剑网络安全实验室 CSNS-Lab RED_HAWK:信息收集工具 http://mp.weixin.qq.com/s/xgJ6lq99pnL8mF39oo9duA
运维军团 ywjtshare MySQL如何利用ibd文件恢复数据? http://mp.weixin.qq.com/s/Iad4qT_vG9B3vBhvQ2p_2g
赛尔网络市场动态 Cernet_Marketing 我国网络信息安全产业概览 https://mp.weixin.qq.com/s?__biz=MzAxOTI5OTUwMw==&mid=2650744489&idx=1&sn=4b27b845c1d5ea4c005e41272ebc19c7
谛听 ditecting “谛听”网络安全团队:Industroyer全球威胁报告(IEC 60870-5-104篇) https://mp.weixin.qq.com/s?__biz=MzIxMjI5MzQ3OA==&mid=2247483723&idx=1&sn=2ca8d5359adde75994f52a0475fbe5a1&scene=0#wechat_redirect
宜人安全应急响应中心 gh_8b77d9e3416d YISRC报道—青藤云第三届安全建设沙龙回顾 https://mp.weixin.qq.com/s?__biz=MzIyNjQzMjcyNw==&mid=2247484676&idx=1&sn=ec9bb9be4dacfbc1276109039d673146&scene=0#wechat_redirect
ADLab v_adlab 一款通过SO进行自保护的银行APP劫持木马深度分析报告 http://mp.weixin.qq.com/s/B4JxHRt3B7rkCefGD0bs0g
美丽联合集团安全应急响应中心 ml_src Python Sandbox Bypass http://mp.weixin.qq.com/s?__biz=MzIzOTQ5NjUzOQ==&mid=2247483665&idx=1&sn=4b18de09738fdc5291634db1ca2dd55a&chksm=e9287d25de5ff4334d30e6d88ed21e549da50904c4c5e3c3d822d6eb9522395ff41f77748e33&mpshare=1&scene=1&srcid=0606vEtsmItD0CWfw1ASCKQp#rd
CTFer的魔法棒 gh_6ab9613a0214 借助DynELF实现无libc的漏洞利用小结 http://mp.weixin.qq.com/s/KV3Z40gZAOZ4-SUjTvT6NA
信安之路 xazlsec DNS域传送详解 https://mp.weixin.qq.com/s?__biz=MzI5MDQ2NjExOQ==&mid=2247485215&idx=2&sn=121c0b351d2eab3ef231988f01832a3b&chksm=ec1e3737db69be216
携程技术 ctriptech 干货 , 那些你不知道的爬虫反爬虫套路 https://mp.weixin.qq.com/s?__biz=MjM5MDI3MjA5MQ==&mid=2697266133&idx=1&sn=51426072d8ad4c4496795127e9c9f1ae
BZ的呓语 SalesManBZ 勒索软件这门生意 https://mp.weixin.qq.com/s?__biz=MzI3OTcwNDIwOA==&mid=2247483744&idx=1&sn=8327a4825a254ecc7be8e0fdee4989cb&scene=0#wechat_redirect
合天网安实验室 hee_tian Hacking Tools搜罗大集合(下) http://mp.weixin.qq.com/s/rdp01Zi-ebnmMpUTNRe3lw
腾讯广告算法大赛 TSA-Contest 【干货】Kaggle 数据挖掘比赛经验分享 https://mp.weixin.qq.com/s/BE1mfmKJTsDSwWi16mllNA
绿盟科技研究通讯 nsfocus_research 看见到洞见之楔子(一):Vectra知其然 https://mp.weixin.qq.com/s?__biz=MzIyODYzNTU2OA==&mid=2247483654&idx=2&sn=f04f6a1d5bbfed42baa616b24d1dd06f&scene=0#wechat_redirect
知道创宇 knownsec NSA泄密事件之SMB系列远程命令执行漏洞及Doublepulsar后门全球数据分析 https://mp.weixin.qq.com/s?__biz=MjM5NzA3Nzg2MA==&mid=2649838966&idx=1&sn=4e930ef8637c38c33b0da9a2d0b1b706&scene=0#wechat_redirect
同程艺龙技术中心 tcyanfa 基于ElasticSearch的实时日志系统实践 https://mp.weixin.qq.com/s?__biz=MzIyMDAzMzA5Mg==&mid=2650766899&idx=1&sn=4902b4eb8e6988e132d18dff36c95893&scene=0#wechat_redirect
MottoIN mottoin https://mp.weixin.qq.com/s?__biz=MzIxMzQ3MzkwMQ==&mid=2247488632&idx=1&sn=afb06d278e32fc215e97a815e58cacdb&scene=0#wechat_redirect
等级保护测评 zgdjbh http://mp.weixin.qq.com/s/M-L7jod4Xr81cey6TNFzUA
本地生活安全响应中心 ALSCSRC 谢幕,,饿峰会感谢有你 https://mp.weixin.qq.com/s?__biz=MzIzNTA5MzI3Mg==&mid=2650591942&idx=1&sn=85a5494005591d34e1d94166bb56c166&chksm=f0e41eb1c79397a7ed0efee9394ceb90e88a07330b89b7ecde73d10f78aa994be677fc2d780b&mpshare=1&scene=1&srcid=0424jpqOjYb4jj8sPqnCy3Ox&key=97f519e
雷科技 leitech 你可能看到的是假的苹果榜单,App Store 刷榜黑幕大揭秘 https://mp.weixin.qq.com/s/vQv_a4eCP_-NHJPlevhKaw
关注安全技术 heresecurity CVE-2017-0199漏洞复现过程 http://mp.weixin.qq.com/s/NQxeuoULv7Htrzc5nYuglw
SecWiki SecWiki 每周技术分享第三期--科普WAF https://mp.weixin.qq.com/s?__biz=MjM5NDM1OTM0Mg==&mid=2651050493&idx=1&sn=1d81ff6aff52fa93f329522021bf93e0&scene=0#wechat_redirect
边界安全 sssie95zz phpcms_v9.6.0_sql注入与exp https://mp.weixin.qq.com/s?__biz=MzI0MzQyNzI2OA==&mid=2247484286&idx=1&sn=9ff65a80e7e7231e5c9a0c7bc12cf913&chksm=e96c71d5de1bf8c33aa8b83238e6a5da967a19d03e5e6ef54bfce9782b564fbabd24d1891efa&mpshare=1&scene=1&srcid=0410Dmv30VrzIqq76nVnKaCH&key=23818ac
胖哈勃 pwnhub Django框架下的安全开发:胖哈勃(Pwnhub)诞生记 http://mp.weixin.qq.com/s/1tlUpqdQFHm63gMDmzk6sg
云鼎实验室 YunDingLab ShadowBreaker方程式工具包浅析 https://mp.weixin.qq.com/s?__biz=MzU3ODAyMjg4OQ==&mid=2247483709&idx=1&sn=8f19c38422834efafd73eb473ae5cab5&chksm=fd7afdbbca0d74ad5fff9917c6e601225f779545c5320258a3bcd6cf5e29d2ee391ef1efc892&mpshare=1&scene=1&srcid=0415zaLTXxMmJ3OpyaGLpQnv&key=3936f58
阿里云应急响应 gh_12f3517e40de 先知白帽大会PPT来啦-第二波 https://mp.weixin.qq.com/s?__biz=MzI5MzY2MzM0Mw==&mid=2247483669&idx=1&sn=caa898eea9cb378115d96d81144486a5&chksm=ec6fe615db186f0351458e3349387ba684754de4cb37ea3149798d06f26ee769fb87cea489d0&mpshare=1&scene=1&srcid=0330AhRbiGhM8FIRszKjKmFn&key=69fcea0
漏洞盒子VulBox Vulbox_ MySQL Order By 注入总结 https://mp.weixin.qq.com/s?__biz=MzIxODIzNzgwMw==&mid=2654056022&idx=1&sn=0087cf7797dc4c0b25e0e0585ef6ee13&chksm=8c289052bb5f1944fc89e6ed31cfcf0d16ece879b861221a25ce1c374b88e616e944c950be0b&mpshare=1&scene=1&srcid=0329ATMPiA7rBZFD84sWuOPt#rd
数字观星 shuziguanxing 【原创】某种流量劫持攻击的原理简述和演示 http://mp.weixin.qq.com/s/cq-Hg7iNB4FP06JKWS7Rjg
SaviourTech secbugs 漏洞挖掘之域名信息收集 http://mp.weixin.qq.com/s?__biz=MzUzNzAzNzUzMA==&mid=2247483675&idx=1&sn=3d747238798e8b2162375a97398825b0&chksm=faec5eaecd9bd7b8497aadf9ec53c966d0180f4de22a3191699beee13a3c8f86f0f5664a75b5&mpshare=1&scene=1&srcid=0329SsiD1Q8fCaYygQEEsaYk#rd
凤凰牌老熊 shamphone 支付风控模型分析 http://mp.weixin.qq.com/s?__biz=MzI4OTQ3MTI2NA==&mid=2247483743&idx=1&sn=731cc0273731e52dc9daa109188f175d&scene=0#wechat_redirect
光翼通信 hnguangyi 伪基站那些事儿-专业版 http://mp.weixin.qq.com/s?__biz=MzA4NTEwMzQ5OQ==&mid=2649250331&idx=1&sn=0dfdd9c09f73996d8e95014ffa9162f9&scene=0#wechat_redirect
腾讯大数据 tencentbigdata 网卡收包流程 http://mp.weixin.qq.com/s/UhF2KCASoIhTiKXPFOPiww
安云信息 Anyuntec 新型Web攻击技术:RPO攻击初探 http://mp.weixin.qq.com/s/P-ncFmNZfBteJBQr8INzsw
亿级流量网站架构 kaitao-1234567 HTTP API网关选择之一Kong介绍 https://mp.weixin.qq.com/s?__biz=MzIwODA4NjMwNA==&mid=2652898217&idx=1&sn=77a391ca2e2e13ae907375958a3265c8&chksm=8cdcd7e6bbab5ef083f6f3b396eb497e5ea350f450ea9626940857c1555bab9e87f63816954f&mpshare=1&scene=1&srcid=0312vcViKaeP5NGx3IGsU1gB&key=04b8921
虎嗅APP huxiu_com 盗刷帝国:涌入消费金融的黑产 http://mp.weixin.qq.com/s?__biz=MTQzMjE1NjQwMQ==&mid=2655538952&idx=4&sn=c7db605415da86593c0b6624bdc1529e&scene=0#wechat_redirect
英国那些事儿 hereinuk CIA黑电脑黑手机,哭泣天使秘密基地肉身攻击...维基解密这波猛料,美国最近越来越魔幻了 http://mp.weixin.qq.com/s?__biz=MjM5NjAwNzI0MA==&mid=2651948229&idx=1&sn=e5b98d4f78fff701adf82ca4888f4a0a&scene=0#wechat_redirect
数说安全 SSAQ2016 http://mp.weixin.qq.com/s?__biz=MzI0MDY2MzE5NQ==&mid=2247484080&idx=1&sn=240df8492584fd2c4442d71b8a51ef06&scene=0#wechat_redirect
威努特工控安全 winicssec_bj 工业控制系统渗透测试浅析 http://mp.weixin.qq.com/s?__biz=MzAwNTgyODU3NQ==&mid=2651061165&idx=1&sn=176b8a4d5ee8250ebf95a0c96160d1ce&scene=0#wechat_redirect
腾讯安全联合实验室 txaqlhsys 腾讯CTF(TCTF)大赛正式启航,国际顶级高手等你来战! http://mp.weixin.qq.com/s/vTt-KHFwE7hrvnPwLFiEGQ
君哥的体历 jungedetili 一种虚拟安全控制的思路和实现 https://mp.weixin.qq.com/s?__biz=MzI2MjQ1NTA4MA==&mid=2247483702&idx=1&sn=a928648be97d24b339b597675d045daf&chksm=ea4bab71dd3c2267dd5d27d6878d7e77965193c693e1d969d37df53b06cd6f556000f3e96917&mpshare=1&scene=1&srcid=0226k0HTgcHK6Hbaj0QyJPDh&key=1b5c68b
分布式实验室 dockerone 基于Jenkins和Kubernetes的CI工作流 http://mp.weixin.qq.com/s?__biz=MzA5OTAyNzQ2OA==&mid=2649693456&idx=1&sn=b36ed8057c23113da2396b77208689f1&scene=0#wechat_redirect
上交所技术服务 SSE-TechService 【交易技术前沿】安全情报中心与红蓝军对抗演习 / 张嵩 http://mp.weixin.qq.com/s?__biz=MzI0NTAwNjMwOA==&mid=2650685700&idx=3&sn=8cceaf131a280618abaff340c63a5079&scene=0#wechat_redirect
ArkTeam gh_16875f8ce964 六种常用的网络流量特征提取工具 http://mp.weixin.qq.com/s/QsteT_86uwViXSFXspJHJQ
雷锋网 leiphone-sz 暗网买信用卡纪实:亲测盗刷无门槛 http://mp.weixin.qq.com/s?__biz=MTM2ODM0ODYyMQ==&mid=2651420682&idx=1&sn=a75446f83064b44b9a45db3f0f09eb42&scene=0#wechat_redirect
深信服千里目安全实验室 Further_eye 【漏洞演示视频】Windows SMBv3 Tree Connect响应拒绝服务漏洞 http://mp.weixin.qq.com/s?__biz=MzI4NjE2NjgxMQ==&mid=2650233023&idx=2&sn=6df48e6351b8f7a7e48049db4d859715&chksm=f3e2e2cbc4956bdd1f5e490bdcd3eb66e0abbb77a448c11b60d77719d34e0106a093500990c5#rd
启明星辰集团 venustech_weixin 启明星辰ADLab联合电信云堤追踪 Billgates僵尸网络大黑雀 http://mp.weixin.qq.com/s?__biz=MzA3NDQ0MzkzMA==&mid=2651674968&idx=1&sn=f84353990d34e22d2a6ebc7db7915748&scene=0#wechat_redirect
Web安全与前端 sec_fe 浅谈Discuz插件代码安全(内附0day) http://mp.weixin.qq.com/s/c2MIQnM9q9eMWaxUO9Pjjg
Panabit Panabit-Beijing 这个破DNS咋就总搞不好? http://mp.weixin.qq.com/s/Q0yvt9a-VmN9k-ikLXZzGQ
阿里聚安全 alijaq 开发者福利:史上最全Android 开发和安全系列工具 https://mp.weixin.qq.com/s?__biz=MzIwMTI4Nzk5Ng==&mid=2650219700&idx=1&sn=b0391c11e9ac599fffb8ada6860c2cb0&chksm=8ef3b4e7b9843df1ea4868fe41dc5059e9d5ee25a3778adc5794361dc0425076dd32ab23b1fc&mpshare=1&scene=1&srcid=02150dtv7LaWmbcINZZc1gYT&key=640f69b
网易安全中心 NetEaseSRC 情人节如何表达心意? http://mp.weixin.qq.com/s/eEp5SB4A8L8aBdZzmVtY0g
机器之心 almosthuman2014 资源 , 数据至上的人工智能时代,最好的公开数据集有哪些? https://mp.weixin.qq.com/s?__biz=MzA3MzI4MjgzMw==&mid=2650723201&idx=4&sn=129442fb2c4eec7a7fdbc1c99463e123
张铁蕾 tielei-blog 基于Redis的分布式锁到底安全吗(上)? http://mp.weixin.qq.com/s/JTsJCDuasgIJ0j95K8Ay8w
兜哥带你学安全 waf_ads_ids 企业安全建设之搭建开源SIEM平台(上) http://mp.weixin.qq.com/s?__biz=MzIwOTc0MDU3NA==&mid=2247483820&idx=1&sn=ea6aa48ec8b41cd07c930af4c0999b66&chksm=976e77dda019fecb78484076b7ac500c271e7ac64f96b8cb07700056eefdb36922935f8cdbc0&mpshare=1&scene=23&srcid=0216tzd9ZAOQ00IPPlNRi1o8#rd
京东安全应急响应中心 jsrc_team 关机后你的手机号就是别人的了! http://mp.weixin.qq.com/s?__biz=MjM5OTk2MTMxOQ==&mid=2727827969&idx=1&sn=11e01e3112000b1510c5f60ce4adb9f3&scene=0#wechat_redirect
互联网周刊 ciweekly 2016年度中国IDC分类排行榜 http://mp.weixin.qq.com/s/iBVHSsWLHDhILpfF1EfWOw
二手黑媒 hackmedia 梅姨勒姑脱欧忙,一女能顶三个郎 http://mp.weixin.qq.com/s/1tCLq3LGTQOPLKmeDVRCgg
ZLabs gh_339ee98cec1b 情报的场景与进阶 http://mp.weixin.qq.com/s?__biz=MzA3MTEwNDE1NA==&mid=2649431926&idx=1&sn=c604fc7b04268c0e729afefcbd4329f2&scene=0#wechat_redirect
道哥的黑板报 taosay 我回阿里的29个月 http://mp.weixin.qq.com/s/_snozlQIcfROxuexpVTe9Q
红日安全 sec-redclub Android逆向基础之Dalvik指令集 https://mp.weixin.qq.com/s?__biz=MzI4NjEyMDk0MA==&mid=2649846140&idx=1&sn=a248dbec47578c37f276fe461aa82b8f&chksm=f3e41fffc49396e9020490703eb4f7270e4dd6063575b65bedecedbe69c31e0a70e4a96f4cec&scene=0&key=63570224b333d6fd7954fa9343865bc0b865bbe08a0acb3c
安全学习那些事 SECXUE CISSP 知识体系权重和常见问题 http://mp.weixin.qq.com/s/i-9p2KD15yXCxhfB8E6T0A
唯品会安全应急响应中心 VIP_SRC 我的ELK搭建笔记(阿里云上部署) https://mp.weixin.qq.com/s?__biz=MzI5ODE0ODA5MQ==&mid=2652277928&idx=1&sn=5e44c058dbf9748a8c94098815c2a7eb&chksm=f748653cc03fec2aaa4f83dcb160089ff6874cfb4d1309142b15da738f44ad5be00f455f4d40hn71
即刻安全 gh_5b377f6748f8 环境搭建:Docker给你不一样的渗透体验 http://mp.weixin.qq.com/s/Sv9l--OK7ADihDG9kUsarA
中国信息安全 chinainfosec 前沿|中国科学院信息工程研究所:日本车联网信息安全发展现状与分析 http://mp.weixin.qq.com/s?__biz=MzA5MzE5MDAzOA==&mid=2664108338&idx=1&sn=aeb39e4c32d9b1181e68f40574a21012&scene=0#wechat_redirect
malwarebenchmark gh_01202b41c2f7 APT黑客利用.chm文件攻击俄罗斯重要机构 http://mp.weixin.qq.com/s/gjIEgqqQq_5czufuuiqM-Q
WeMedia研究院 WMyanjiuyuan 冰点调查 , 揭秘微信里的暴力色流,日流水400万 http://mp.weixin.qq.com/s/0i6VlEJjAXcYAsLrMF0JJA
DJ的札记 DJ_notes 从创新沙盒看效率将成为评估安全产品的首要标准 http://mp.weixin.qq.com/s?__biz=MzAwNjA3MzEwNg==&mid=2651329418&idx=1&sn=3dbcba973a9d7339aa7d5368c8d3a6f2&scene=0#wechat_redirect
BeaconLab gh_883a699986ec 面向工控系统的高交互蜜罐 https://mp.weixin.qq.com/s?__biz=MzA5OTMwMzY1NQ==&mid=2647833905&idx=1&sn=462ebf63e3402def50e2fec4ed9c6dfe&chksm=88a274b9bfd5fdaf759493716c2a2d183298ca8c449a259b1988a60b185d12b945891fcf652a
物联网智库 iot101 认知计算、区块链IoT、物联网安全…看懂的人将控制未来 https://mp.weixin.qq.com/s?__biz=MjM5MTM5ODQyMA==&mid=2651195423&idx=1&sn=59a0b358b16e402ffe62372c7ac539c8&chksm=bd4487648a330e72de3140294bed1a3dc2d3a84474701cbed2e2d3d47ad6827e8901a3708334e
懒人在思考 lazy-thought 推荐安全且匿名的邮箱 ProtonMail http://mp.weixin.qq.com/s/DTgMZPGKL7BpUQ2l0L3CHg
T00ls T00lsNet http://mp.weixin.qq.com/s/ybeVF8caasBJ7xyzLyajbw
PHP技术大全 phpgod http://mp.weixin.qq.com/s?__biz=MzAxNzMwOTQ0NA%3D%3D&mid=2653354832&idx=3&sn=a51b1cd27064b6fe12f6b3ff2fbc3b5e&chksm=8035d13bb742582df0d4f14a39692488098f3d8325db66090ec54a9bb801f5dc92f5292b480c
FreeBuf freebuf 法庭文件揭秘:美国联邦调查局是如何监听汽车15年的 https://mp.weixin.qq.com/s?__biz=MjM5NjA0NjgyMA==&mid=2651062785&idx=1&sn=e3a037b1ce21925145fb07eff6597e55&chksm=bd1f908a8a68199c0a1c4df8fb431dc26cff629abca0d76ea92f0ca19b842b2ab539bdcd4e1c
运维之路 HuashengPeng001 2016年运维工作及知识梳理 http://mp.weixin.qq.com/s?__biz=MzI2MjA5MjUwMQ==&mid=2650019671&idx=1&sn=a638e530be3e4d58e3e28895c21a575c&chksm=f250d4edc5275dfb6bbe4149aa35431fc791e7f54c5ff9bbe0d312d93d13280bec403e5cb4a7&mpshare=1&scene=23&srcid=0124adcwFGXc3Gjfg9NTL3ek#rd
张三丰的疯言疯语 zsfnotes 指尖上的威胁情报——ThreatPinch https://mp.weixin.qq.com/s?__biz=MzA3MTUwMzI5Nw==&mid=2654431102&idx=1&sn=09b7c56de3de3dbb856d82d257fd4a56&chksm=84ef5bd0b398d2c6e8437d70cd226b3870174d12bfebbeb6c7efd4451a415df8bbc1057c3910
鲸犀 whalerhino 深度 , 黑客特种兵潘少华:如何用人工智能“套路”一个骗子 https://mp.weixin.qq.com/s?__biz=MzA4ODUxNjIwMg==&mid=2654324135&idx=1&sn=876980890a7c8bf50ecdb390f02258d9&chksm=8be996a2bc9e1fb4c0be5646a0d0f48bf6fb373d69c3312c502b8434b5be0220281af15e0c04
高效运维 greatops 360网络运维自动化演进之路 https://mp.weixin.qq.com/s?__biz=MzA4Nzg5Nzc5OA==&mid=2651663899&idx=1&sn=06f4c7ee664f40fa6c6b77f524b00bb4&chksm=8bcbedb2bcbc64a42d31ba214a83b8b67f50caac369f116debb338dd145a84cde4d28a728eed
网路冷眼 gh_37ca35f41890 Google基础设施安全设计概述 https://mp.weixin.qq.com/s?__biz=MzI4NjYwMjcxOQ==&mid=2247483720&idx=1&sn=1ef57e5ae8b4f2af05d9a31467703934&chksm=ebdb25f8dcacacee8b45df995e01f9c7f8496435c47d1cd8d771bd2677f367dba9d7a4bf6c0a
看雪学院 ikanxue 【大牛】阎文斌|“玩命”的热爱 https://mp.weixin.qq.com/s?__biz=MjM5NTc2MDYxMw==&mid=2458281779&idx=1&sn=3e17ee8901969b5b39317c83f6e07253&chksm=b18157b986f6deaf5e5facd9a6e5458d56cb1192d909f0fff0ff75ab36b4e77adc5c50805d8a&scene=0
峰瑞资本 freesvc 张矩:信息安全创业必知手册 http://mp.weixin.qq.com/s/KKLThg2cgYqntb0nrfvLXg
安天移动安全 AVLTeam 前所未有的一次披露 , Dark•Mobile•Bank跟踪分析报告 https://mp.weixin.qq.com/s?__biz=MjM5NTY4NzcyNg==&mid=2650238614&idx=1&sn=234abb265be20f24222ab8c66d75728b&srcid=0428DhSoTlQzT0JaxWL5e8Fz&key=f20c318c778828bf1d5cd5ba121cf57289b8868a9cad6d7a2dcc4f45d687f651e070d9deaa57963aa077286e82eb6fd92d9a73a4076592987e7e2e1388e1bfb7a609da678964347398cd7a52a1c8aa
安天 Antiylab 安天发布方程式组织Drug攻击平台初步解析 https://mp.weixin.qq.com/s?__biz=MjM5MTA3Nzk4MQ==&mid=2650170273&idx=1&sn=05dc4033547c7ae63834ea959d075409&chksm=beb9c09389ce4985c4064a0c2163bad0cc5215c994f30150353520b52f061f3a25a845a19444
全频带阻塞干扰 RFJamming 隐私保护红宝书@反跟踪篇 https://mp.weixin.qq.com/s?__biz=MzIzMzE2OTQyNA==&mid=2648946423&idx=1&sn=abbfe770240ef39eb1e25d3aefe4179b&chksm=f09ea188c7e9289e786be8a84d4d88ec424eec1da1ad75469ca662c9f4e2cd8d0cc7d39aba83
InfoQ infoqchina 百度第三代 Spider 背后的万亿量级实时数据处理系统 https://mp.weixin.qq.com/s?__biz=MjM5MDE0Mjc4MA==&mid=2650995223&idx=1&sn=9c2722a2dcddbc26eefc437a1e82531b&chksm=bdbf02448ac88b52b0037900b3301c9d3b602354e5be2902da743409b5b663d3dc47f94c02e5
首席安全官 CIOCSO 全球网络安全融资排行榜发布 http://mp.weixin.qq.com/s?__biz=MzA4NDA3ODc3OQ==&mid=3045890648&idx=1&sn=928c6ab725a3d773d19ebeee49b02441
向日葵生活分享 SunF-security-share ThreatConnect出品:威胁情报平台(TIP) https://mp.weixin.qq.com/s?__biz=MzI4NzU2NjU4NQ==&mid=2247483690&idx=1&sn=85fd11220961f27e56a4e08dfda12238&chksm=ebcafebcdcbd77aa67fb968eb7fa1f691a610cf268f5d5f63f04405a5c86057513b43e6855df
互联网研究前沿 CIS-SASS https://mp.weixin.qq.com/s?__biz=MjM5Mzg0NTU0NQ==&mid=2649565440&idx=1&sn=15b2b507222c07f75360ddb236606a06&chksm=be89514689fed850917ad1ddba342143596080d09e5d62dd2b3291a79c59d508bff705be3c67
计算机与网络安全 Computer-network 黑产:“打码平台”与“羊毛党” https://mp.weixin.qq.com/s?__biz=MjM5OTk4MDE2MA==&mid=2655113653&idx=3&sn=223564a3bfa669f5d8fff887c136a2db&chksm=bc864c5a8bf1c54cf51e9f7ee392f66d5bca3ae5dc5e897bb4e85af5ce648324253af10e4905&mpshare=1&scene=1&srcid=0102epege22xuYhr2sFuGqhw
安在 AnZer_SH 杨大路:威胁情报版“今日头条”该怎么做?|新锐 https://mp.weixin.qq.com/s?__biz=MzIzMTAzNzUxMQ==&mid=2652877355&idx=1&sn=a5a80a487b502bf778b18506249beb90&chksm=f3415d03c436d415b22ecc601f84450aa76dfad8a3a758e08dc06b7a100bbc53aeaf21e15ad3
安全牛 aqniu-wx 开年头篇|《中国网络安全企业50强》(2016年下)发布 https://mp.weixin.qq.com/s?__biz=MjM5Njc3NjM4MA==&mid=2651069981&idx=1&sn=4e643b78aec9216406dd9a87464b150a&chksm=bd14aece8a6327d81168a5e8758d1c3acd4272dba5064203f4eba715a07df24be59811d6048c
Thoughtworks洞见 TW-Insights RESTful架构风格下的4大常见安全问题|洞见 https://mp.weixin.qq.com/s?__biz=MjM5MjY3OTgwMA==&mid=2652455776&idx=1&sn=047aea9144db8cf242e253083a0796a6&chksm=bd4f71778a38f861bd9399e96cf96a3d5f10a2cfbd73a8c5056c03335abd2baf73d61889c17c
Linux中国 linux-cn 2016 GIAC 全球互联网架构大会圆满结束,全部 PPT 开放下载 http://mp.weixin.qq.com/s/daAZ1tmcpsZt4pHdAW3oWg
GitChat精品课 CSDN_Tech 基于Spark的公安大数据实时运维技术实践 http://mp.weixin.qq.com/s?__biz=MzA4Mzc0NjkwNA==&mid=2650781974&idx=2&sn=e07c921425016ec1f626dbada6caed6a&chksm=87fad021b08d593726b97819c668d7fb51f2fb4a86bb1aef2b13cc9cb09d703bf3b2bba2d7d7
E安全 EAQapp 6步教你搞定网络威胁建模 https://mp.weixin.qq.com/s?__biz=MzI4MjA1MzkyNA==&mid=2655294723&idx=3&sn=4c6cbe71c8c3a59bbc5a3233d68bff20&chksm=f02fe948c758605e1bc05ed09516c472ad2ce31e50b3c8164ec9ecc833fc0bcf66923c6291ff

组织github账号 推荐

github_id title url org_url org_profile org_geo org_repositories org_people org_projects repo_lang repo_star repo_forks
Microsoft Hyper-V Top Level Functional Specification v5.0 - docs on Virtual Secure Mode VTL and Nested Virtualization - https://github.com/Microsoft/Virtualization-Documentation/blob/live/tlfs/Hypervisor%20Top%20Level%20Functional%20Specification%20v5.0.pdf https://opensource.microsoft.com Open source, from Microsoft with love Redmond, WA 2463 4258 0 Jupyter,TypeScript,Java,Python,JavaScript,Objective-C,C++,C#,Batchfile,HTML,Rich,Go,CMake,C,PowerShell 0 0
microsoft Microsoft.VisualStudio.Threading is now OSS under the MIT license. https://github.com/microsoft/vs-threading https://opensource.microsoft.com Open source, from Microsoft with love Redmond, WA 2463 4258 0 Jupyter,TypeScript,CMake,Python,JavaScript,Objective-C,C++,C#,Batchfile,HTML,Rich,Go,Java,C,PowerShell 0 0
mozilla AngularJS 1.6.3 also fixes a universal CSP bypass via add-on in Firefox: Context: mozilla/addons-linter#1000 (comment) Attack: mozilla/addons-linter#1000 (comment) https://wiki.mozilla.org/Github This technology could fall into the right hands. Mountain View, California 2025 283 34 TypeScript,FreeMarker,Python,Kotlin,JavaScript,C++,Shell,Nix,HTML,CSS,Rust 0 0
MicrosoftDocs 微软的文档中心( https://docs.microsoft.com/zh-cn/),其中保存中 GitHub 上的 WinDbg 文档: https://github.com/MicrosoftDocs/windows-driver-docs/tree/staging/windows-driver-docs-pr/debugger https://docs.microsoft.com The modern documentation service for Microsoft Redmond, WA 1862 624 0 C#,Python,HTML,JavaScript,PowerShell 0 0
google Tamper Chrome https://github.com/google/tamperchrome https://opensource.google.com/ Google ❤️ Open Source https://opensource.google.com/ 1474 2547 0 C,TypeScript,Java,Python,Kotlin,JavaScript,C++,Go,Ruby,Rust 0 0
18F domain-scan - 子域名扫描工具: https://github.com/18F/domain-scan/blob/master/docs/lambda.md#using-domain-scan-with-amazon-lambda https://18f.gov 18F builds effective, user-centric digital services focused on the interaction between government & the people it serves. Provided by GSA. United States 1120 119 1 TypeScript,HTML,Python,JavaScript,Shell,Go,Ruby,CSS 0 0
rancher rancher OS : Tiny Linux distro that runs the entire OS as Docker containers : https://github.com/rancher/os http://www.rancher.com http://www.rancher.com 352 31 0 Shell,Java,Python,JavaScript,Smarty,Go,CSS 0 0
alibaba druid/wallfilter:基于SQL语义分析来实现防御SQL注入攻击 https://github.com/alibaba/druid/wiki/%E9%85%8D%E7%BD%AE-wallfilter http://www.alibaba.com Alibaba Open Source Hangzhou, China 263 140 0 C,Shell,Java,Kotlin,JavaScript,C++,Dart,TypeScript,Go,Jupyter 0 0
rapid7 exploit module for CVE-2017-8464 LNK Code Execution Vulnerability rapid7/metasploit-framework#8767 http://www.rapid7.com/ Boston, MA 234 0 0 C,Java,Python,JavaScript,HTML,Go,Ruby 0 0
PortSwigger Backslash Powered Scanner v0.9 is now out, with JSON injection, server-side HPP, improved evidence clarity and more https://github.com/PortSwigger/backslash-powered-scanner https://portswigger.net/ https://portswigger.net/ 219 0 0 Python,Kotlin,Ruby,Java,JavaScript 0 0
Alfresco Prowler: AWS CIS Benchmark Tool 亚马逊基线检测工具 https://github.com/Alfresco/prowler http://alfresco.com http://alfresco.com 199 8 0 Shell,Java,HTML,XSLT,Python,JavaScript,Smarty,Objective-C,TypeScript,Ruby 0 0
nccgroup WSSiP: A WebSocket Manipulation Proxy https://github.com/nccgroup/wssip https://www.nccgroup.trust Please report all security issues to security at nccgroup dot com Global 180 15 0 C,Shell,Java,Python,JavaScript,C#,HTML,Elixir,Go,Rust 0 0
wireapp Wire messenger server code open-sourced : https://github.com/wireapp/wire-server https://wire.com Wire open source secure messenger https://wire.com 178 18 0 TypeScript,Java,HTML,Scala,Dockerfile,JavaScript,Smarty,Shell,Objective-C,Haskell,C++,Swift,Rust 0 0
dotnet .NET Core 运行时的 JIT 编译器 - RyuJIT 介绍: https://github.com/dotnet/coreclr/blob/master/Documentation/botr/ryujit-tutorial.md http://www.dotnetfoundation.org Home of the .NET Foundation http://www.dotnetfoundation.org 176 381 2 Shell,HTML,C#,Python,F#,Dockerfile,PowerShell 0 0
palantir windows-event-forwarding - 一款使用 Windows 事件转发来进行事件的检测与响应的工具: https://github.com/palantir/windows-event-forwarding https://palantir.com Palo Alto, CA 176 30 0 Groovy,Shell,Java,Scala,JavaScript,TypeScript,Go,Rust 0 0
airbnb BinaryAlert: Serverless, Real-time & Retroactive Malware Detection https://github.com/airbnb/binaryalert https://airbnb.io San Francisco 170 26 0 TypeScript,Java,Python,Ruby,JavaScript,Shell,HTML,Puppet,Swift 0 0
uber RT @ libber: Releasing https://github.com/uber/focuson http://uber.github.io/ Open Source Software at Uber 70+ countries and counting. 169 96 0 C,Java,Python,JavaScript,C++,Go,Swift,Thrift 0 0
OWASP OWASP Security Shepherd WEB和APP安全测试训练平台 https://github.com/OWASP/SecurityShepherd http://www.owasp.org The OWASP Foundation http://www.owasp.org 151 27 0 C,Shell,Java,Python,JavaScript,Perl,HTML,Go,CSS 0 0
PowerShell 如何在 Linux 系统中安装 PowerShell: https://github.com/PowerShell/PowerShell/blob/master/docs/installation/linux.md https://microsoft.com/powershell https://microsoft.com/powershell Redmond 132 23 1 C#,C,TypeScript,PowerShell,C++ 0 0
QubesOS Xen hypervisor 发布公告,修复多个重要安全漏洞(XSA 216-224): https://github.com/QubesOS/qubes-secpack/blob/master/QSBs/qsb-031-2017.txt https://www.qubes-os.org/ https://www.qubes-os.org/ 116 14 0 C,Shell,Roff,Python,Makefile,Perl,HTML,Ruby,CSS 0 0
yhat db.py: 数据库中数据分析助手 (结合 ipython 使用) https://github.com/yhat/db.py http://www.yhathq.com/ New York, NY 116 0 0 Jupyter,HTML,Python,JavaScript,Vim,R,Go,CSS 0 0
GoogleChromeLabs jsvu - Google Chrome Labs 开源的一个 JavaScript 引擎版本升级工具,有了 jsvu,就不用每次从头自己编译了。支持 Chakra、JavaScriptCore、SpiderMonkey、V8: https://github.com/GoogleChromeLabs/jsvu None Experimental projects from the Chrome team None 115 18 0 TypeScript,Java,HTML,JavaScript,C++,Shell,PHP 0 0
Kitware BroThon! Processing and analysis of Bro IDS data with Python https://github.com/Kitware/BroThon https://www.kitware.com Kitware develops software for web visualization, data storage, build system generation, infovis, media analysis, biomedical inquiry, cloud computing and more. https://www.kitware.com 106 18 0 C,Vue,Python,JavaScript,C++,Terra,HTML,PHP,CSS 0 0
sensepost kwetza - 向 Android 应用中注入 Meterpreter payload 的 Python 脚本: https://github.com/sensepost/kwetza http://sensepost.com South Africa 92 2 0 C,Shell,Java,Python,C++,Perl,C#,HTML,Go,CMake 0 0
trailofbits deceptiveidn(Internationalized Domain Names ) https://github.com/trailofbits/deceptiveidn https://www.trailofbits.com New York, New York 91 21 0 C,Shell,CMake,Python,C++,Rust,HTML,CSS,Ruby,HCL 0 0
m-labs Ive released a new version of my Rust TCP/IP stack, now with TCP client support! https://github.com/m-labs/smoltcp https://m-labs.hk Hong Kong / Anywhere / LEO 84 5 0 C,Python,C++,Perl,Nix,Batchfile,Verilog,Rust 0 0
yandex Gixy : Nginx Configuration Static Analyzer (prevents security misconfiguration and automate flaw detection) : https://github.com/yandex/gixy https://tech.yandex.com/ Yandex open source projects and technologies Moscow, Russia 78 31 0 C,Java,Python,JavaScript,C++,HTML,Go,PHP,Swift 0 0
Tencent HaboMalHunter: 哈勃Linux 恶意文件分析系统 https://github.com/Tencent/HaboMalHunter https://opensource.tencent.com Shenzhen, China 74 3 0 C,Java,Python,JavaScript,C++,Lua,Objective-C,Go,PHP,CSS 0 0
sparkfunX Skimmer Scanner - A Gas Pump Skimmer Detection App: https://github.com/sparkfunX/Skimmer_Scanner/ None The stable for SparkXs random bits None 73 0 0 Mercury,C,Python,JavaScript,C++,Batchfile 0 0
SpiderLabs Responder – spoofing LLMNR and NBT-NS to capture password hashes : https://github.com/SpiderLabs/Responder https://www.trustwave.com/Resources/SpiderLabs-Blog/ Earth 69 4 0 C,Java,Python,C++,Perl,Lua,PHP,Ruby,C# 0 0
RUB-NDS 打印机漏洞利用框架 https://github.com/RUB-NDS/PRET https://www.nds.ruhr-uni-bochum.de/ Research and development at the Chair for Network and Data Security concentrates on cryptographic protocols, Internet and XML security. Ruhr University Bochum 65 6 0 TeX,Python,JavaScript,Java,CoffeeScript 0 0
pothosware Bundled GNURadio + GrOsmoSDR For Windows Machine https://github.com/pothosware/PothosSDR/wiki/GNURadio #SDR #GNURadio https://github.com/pothosware/PothosSDR/wiki/GNURadio http://www.pothosware.com The Pothos dataflow programming software suite http://www.pothosware.com 63 2 0 C,CMake,VHDL,Python,C++,Go,Ruby 0 0
MISP Many new and updated MISP expansion modules available in misp-modules including @ ThreatMiner https://github.com/MISP/misp-modules/ https://www.misp-project.org MISP Project - Open Source Threat Intelligence Platform & Open Standards For Threat Information Sharing Worldwide 55 12 0 Shell,Python,JavaScript,TeX,HTML,PHP,Dockerfile,CSS 0 0
Qihoo360 MySQL Sniffer :基于 MySQL 协议的抓包工具 https://github.com/Qihoo360/mysql-sniffer/blob/master/README_CN.md http://www.360.cn 360 official github Beijing, China 55 7 0 C,TypeScript,Java,Scala,JavaScript,C++,Go,CSS 0 0
GDSSecurity Docker 安全部署手册: https://github.com/GDSSecurity/Docker-Secure-Deployment-Guidelines https://www.aon.com/cyber-solutions New York, NY 49 3 0 C,Shell,Java,XSLT,Python,JavaScript,Perl,C#,Objective-C,Lua,PHP,Ruby 0 0
ctxis WSUSpendu - 2015 年 BlackHat 会议,有研究员提出了针对 WSUS(Windows Server 更新服务)的中间人攻击。而今天这个工具更进一步,向 WSUS 服务器注入一条新恶意更新包,然后分发至其他客户端: https://github.com/AlsidOfficial/WSUSpendu https://github.com/ctxis/wsuspect-proxy http://www.contextis.com/documents/162/WSUSpect_Presentation.pdf https://github.com/ctxis/wsuspect-proxy http://www.contextis.co.uk London 49 0 0 C,Java,Python,JavaScript,C++,C#,HTML 0 0
cloudipsp All banks domains and IPs https://github.com/cloudipsp/all_banks_ips mailto:[email protected] CloudIPSP - Internet Payment Service Provider [email protected] 48 0 0 Java,C#,JavaScript,Python,Objective-C,HTML,PHP,CSS 0 0
fireeye remote_lookup - FireEye 开源了一个工具,用于从远程正在运行的进程解析 API 地址的符号信息,然后更新 IDA 的汇编指令符号信息: https://www.fireeye.com/blog/threat-research/2017/06/remote-symbol-resolution.html https://github.com/fireeye/remote_lookup https://www.fireeye.com/blog.html Milpitas, CA 48 1 0 C,Vue,Python,JavaScript,C++,C#,Go,PowerShell 0 0
quarkslab 基于 LLVM 的动态二进制框架: https://github.com/quarkslab/QBDI http://www.quarkslab.com http://www.quarkslab.com 46 2 0 C,Shell,Python,JavaScript,C++,TeX 0 0
mwrlabs The Leading Security Assessment Framework for Android. https://github.com/mwrlabs/drozer/ http://labs.mwrinfosecurity.com/ Basingstoke, Johannesburg, London, Manchester, Singapore, New York 45 0 0 C,Java,Python,JavaScript,C++,C#,Objective-C,PowerShell,CSS 0 0
ANSSI-FR Binacle - 为二进制 BIN 文件建立索引数据库的工具: https://github.com/ANSSI-FR/Binacle https://www.ssi.gouv.fr Paris, France 43 0 0 Coq,C,Java,Python,JavaScript,OCaml,C++,Go,Assembly,PowerShell,Rust 0 0
intrigueio intrigue-core: 基于扫描和接口的域名信息收集平台 https://github.com/intrigueio/intrigue-core http://intrigue.io Discover your attack surface http://intrigue.io 43 1 0 Go,Shell,JavaScript,Ruby,CoffeeScript 0 0
IAIK ChromeZero - Chrome 的一个扩展,它可以通过策略细粒度控制 JavaScript 的接口和函数,限制网站 JS 的危险行为: https://github.com/IAIK/ChromeZero https://www.iaik.tugraz.at Graz, Austria 41 5 0 C,Shell,Java,VHDL,Python,JavaScript,C++,HTML,Scilab 0 0
SecWiki 爬虫技能树-总览图 https://github.com/SecWiki/sec-chart/blob/master/%E5%AE%89%E5%85%A8%E5%BC%80%E5%8F%91/%E7%88%AC%E8%99%AB%E6%8A%80%E8%83%BD%E6%A0%9 http://www.sec-wiki.com http://www.sec-wiki.com 41 2 0 C,Python,JavaScript,HTML,PHP,CSS 0 0
threatstream mhn : Multi-snort and honeypot sensor management (Modern Honey Network) : https://github.com/threatstream/mhn http://www.anomali.com Redwood City, CA 40 0 0 C,Shell,Scala,Python,JavaScript,CoffeeScript,HTML,Go,Ruby,CSS 0 0
hackmdio hackmd: 团队多人同时写作平台(Markdown) https://github.com/hackmdio/hackmd https://hackmd.io/ Taipei, Taiwan 39 4 0 Go,TypeScript,JavaScript,Shell,HTML 0 0
hardenedlinux PaX/Grsecurity 代码分析 https://github.com/hardenedlinux/grsecurity-101-tutorials/tree/master/grsec-code-analysis https://hardenedlinux.github.io/ This is official repository of HardenedLinux community! Kaer Morhen 38 2 0 C,Shell,Jupyter,Roff,Python,JavaScript,C++,HTML,Assembly 0 0
Argonne-National-Laboratory nessus_compliance_generator - 为 Nessus 生成 Windows 和 SQL 服务的审计文件的 GUI 程序: https://github.com/Argonne-National-Laboratory/nessus_compliance_generator http://www.anl.gov Argonne, IL 37 0 0 C,Java,Python,JavaScript,Julia,HTML,C++,Ruby,CSS 0 0
mwsrc Malware source code database https://github.com/mwsrc None Malware source code database None 37 0 0 C,Java,Python,Pascal,TeX,C#,Visual,PHP 0 0
Cisco-Talos BASS - Talos 开源的、用于从恶意软件样本中自动提取模式特征的工具: https://github.com/Cisco-Talos/BASS http://www.talosintelligence.com The official Organizational account of the Talos Group at Cisco http://www.talosintelligence.com 36 0 0 C,Shell,Python,JavaScript,C++,Lua,HTML,PHP 0 0
radareorg 利用基于控制流图(CFG)的模糊 Hash 实现恶意软件的分类,来自 r2con 会议: https://github.com/radareorg/r2con-2017/blob/master/talks/cfg-fuzzy-hash/Machoke-cfg-based-fuzzy-hash.pdf http://www.radare.org/ http://www.radare.org/ 36 7 0 CSS,C,Shell,Python,Makefile,C++,C#,HTML,HCL,Go,Rust 0 0
pmem syscall_intercept - 在用户态 Hot Patch 进程内存实现劫持 Linux 系统调用的工具,Intel 开源的: https://github.com/pmem/syscall_intercept http://pmem.io Libraries and Examples for Persistent Memory Programming http://pmem.io 34 15 0 C,CMake,JavaScript,C++,Java,Ruby,CSS 0 0
kivy python-for-android : Turn your Python application into an Android APK : https://github.com/kivy/python-for-android https://kivy.org https://kivy.org 33 16 1 Python,Shell,C,HTML,JavaScript 0 0
cmu-sei Pharos - CMU 开源的一个二进制静态分析工具,最近更新过,新增了用于分析面向对象类继承关系的 OOAnalyzer、新增了 IDA Pro 的插件 PyObjDigger、新增了用于分析函数调用信息的 CallAnalyzer: http://insights.sei.cmu.edu/sei_blog/2017/08/pharos-binary-static-analysis-tools-released-on-github.html Github: https://github.com/cmu-sei/pharos http://cmu-sei.github.io The Carnegie Mellon SEI and its CERT Division advance acquisition, development, sustainment, and security of complex software systems. Pittsburgh, PA 33 1 0 C,Shell,Java,HTML,Python,JavaScript,C++,C#,R,CSS 0 0
appsecco Subdomain Enumeration Using Censys & Crtsh! https://github.com/appsecco/bugcrowd-levelup-subdomain-enumeration http://appsecco.com PRAGMATIC SECURITY ADVICE. PRACTICAL HELP. KEEPING YOU SAFE. London, Bangalore, Boston 32 5 0 Shell,Python,JavaScript,Visual,HTML,ActionScript,PHP,CSS 0 0
malwares Windows 平台多个 Crypter 恶意软件样本的收集: https://github.com/malwares/Crypter https://malwares.github.io Malware source code, sample database https://malwares.github.io 32 0 0 C,Java,C#,Visual,C++,Python,Pascal,HTML,PHP,Ruby,CSS 0 0
bugcrowd HUNT - Burp Suite PRO 和 ZAProxy 的漏洞扫描插件: https://github.com/bugcrowd/hunt https://www.bugcrowd.com A radical cybersecurity advantage. San Francisco 31 9 0 Shell,Python,JavaScript,Makefile,Elixir,Ruby 0 0
vidar-team HCTF2017题目开源列表 https://github.com/vidar-team/HCTF2017 http://vidar.club/ Hangzhou, China 29 4 0 C,Vue,Java,HTML,Python,JavaScript,C++,Perl,Batchfile,TypeScript,PHP,CSS 0 0
duo-labs 9 月份的时候 Duo Labs 研究员在 EkoParty 会议介绍了一个关于苹果固件的研究成果《The Apple of your EFI》,今天他们公开了一个工具 - EFIgy,利用 EFIgy 可是检查当前系统 EFI 固件版本是否正确: https://github.com/duo-labs/EFIgy/ https://duo.com/blog/the-apple-of-your-efi-mac-firmware-security-research https://github.com/duo-labs/EFIgy/ https://labs.duosecurity.com Duo Labs is the security research team at Duo Security. Ann Arbor, MI 28 0 0 TypeScript,Java,Python,JavaScript,Objective-C,Go,CSS 0 0
intezer Docker IDA: The Large Scale Reverse Engineering System https://github.com/intezer/docker-ida http://www.intezer.com The only solution replicating the concepts of the biological immune system into cyber-security. Intezer provides enterprises with unparalleled threat detection. http://www.intezer.com 28 0 0 YARA,C,Shell,Python,HTML,Go,CSS 0 0
kudelskisecurity check_all_apks - 检测已知的安卓恶意应用的脚本: https://github.com/kudelskisecurity/check_all_apks https://www.kudelskisecurity.com/ Switzerland 28 5 0 Go,Python,C,Erlang 0 0
ludios A list of publicly known but unfixed security bugs : https://github.com/ludios/unfixed-security-bugs https://ludios.org/ See also @ludiosarchive for unmaintained repositories https://ludios.org/ 28 1 0 Shell,Python,JavaScript,C++,Objective-C,Emacs,Rust,PLpgSQL 0 0
CheckPointSW android_unpacker - 在 AOSP 项目基础上实现的安卓应用通用解包工具: https://github.com/CheckPointSW/android_unpacker http://www.checkpoint.com Worlds leading provider of cyber security solutions to governments and corporate enterprises. Visit our CloudGuard Dome9 account at https://github.com/Dome9 http://www.checkpoint.com 27 2 0 C,TypeScript,Java,Python,JavaScript,C++,C#,HTML,Shell,ActionScript,CSS 0 0
endgameinc Predicting Domain Generation Algorithms using LSTMs DGA恶意域名自动发现 https://github.com/endgameinc/dga_predict https://www.endgame.com Washington, DC 27 0 0 C,Jupyter,Python,JavaScript,C++,C#,Go,Java,Ruby,Rust 0 0
IOActive RepoSsessed - 解析公共源代码库并查找各种类型的漏洞的项目: https://github.com/IOActive/RepoSsessed http://blog.ioactive.com/ IOActive Labs repository http://blog.ioactive.com/ 24 0 0 C,Shell,Java,Python,JavaScript,C++,C# 0 0
comaeio OPCDE slides + materials will be continuously uploaded on our GitHub repository. https://github.com/comaeio/OPCDE http://www.comae.io Dubai, UAE 24 0 0 C,Java,JavaScript,C++,Nginx,Smarty,PowerShell 0 0
didi VirtualAPK - 滴滴开源的一个 Android 插件框架,该框架可以动态加载和运行 APK 文件: https://github.com/didi/VirtualAPK https://didi.github.io/ 滴滴出行 Beijing, China 24 6 0 C,Vue,Java,Python,Kotlin,JavaScript,C++,HTML,Go,PHP,CSS 0 0
ernw AndroTickler - 针对 Android App 的渗透测试及审计工具: https://github.com/ernw/AndroTickler https://www.ernw.de/ Official ERNW development channel. Heidelberg, Germany 24 0 0 C,Shell,Java,XSLT,Python,Erlang 0 0
stampery mongoaudit: MongoDB 审计与测试工具 https://github.com/stampery/mongoaudit https://stampery.com We leverage blockchain technology to ensure existence, integrity and attribution of communications, processes and data. The Blockchains 24 1 0 Shell,Java,Scala,Python,JavaScript,CoffeeScript,Objective-C,HTML,Elixir,Erlang 0 0
TheTorProject ooni-probe - 网络干扰检测工具: https://github.com/TheTorProject/ooni-probe https://www.torproject.org/ https://www.torproject.org/ 23 12 0 Shell,Python,JavaScript,C++,HTML,Go 0 0
airbus-seclab bincat - 二进制代码静态分析工具,支持值分析、污点追踪、类型重建等等功能: https://github.com/airbus-seclab/bincat https://airbus-seclab.github.io/ https://airbus-seclab.github.io/ 23 5 0 C,Python,OCaml,C++,Ruby,PowerShell 0 0
HexHive 前两天推送过 IEEE 会议上关于 EPOXY 编译器的 Paper,这是个为保护嵌入式设备而设计的一套编译器框架,今天作者分享了他在 SyScan 360 会议关于 EPOXY 的演讲 PPT: https://nebelwelt.net/publications/files/17SyScan360-presentation.pdf 源码: https://github.com/HexHive/EPOXY http://hexhive.github.io Enforcing memory safety guarantees and type safety guarantees at the compiler and runtime level http://hexhive.github.io 22 2 0 Python,C,HTML,Brainfuck,C++ 0 0
phpstan phpstan : PHP Static Analysis Tool - discover bugs in your code without running it! : https://github.com/phpstan/phpstan None PHP Static Analysis Tool - discover bugs in your code without running it! None 21 5 0 PHP,Dockerfile,HTML 0 0
reswitched CageTheUnicorn - 任天堂 Switch 游戏机代码的调试环境: https://github.com/reswitched/CageTheUnicorn https://reswitched.team https://reswitched.team 21 6 0 C,Python,JavaScript,C++,C#,CSS 0 0
RiotGames cloud-inquisitor - 在 AWS 中加强所有权和数据安全性的工具: https://github.com/RiotGames/cloud-inquisitor http://www.riotgames.com http://www.riotgames.com 19 23 0 Python,JavaScript,HTML 0 0
openblockchains 区块链(Block Chains)相关的资料收集: https://github.com/openblockchains/awesome-blockchains None Open Public Distributed Databases / (Hyper) Ledger Books with Crypto Hashes - Revolutionize the World with Blockchains One Block at a Time None 19 1 0 Go,Solidity,Ruby,JavaScript 0 0
shieldfy API-Security-Checklist - 开发者的 API 安全检测清单: https://github.com/shieldfy/API-Security-Checklist https://shieldfy.io Shieldfy Open Source https://shieldfy.io 19 2 0 PHP,JavaScript,HTML 0 0
botpress Botpress : an open-source bot creation tool written in JavaScript : https://github.com/botpress/botpress https://botpress.io Enabling the conversational revolution Québec City 18 3 0 TypeScript,JavaScript,Dockerfile,C++,Haskell 0 0
scipag vulscan - Nmap 的漏洞探测脚本,根据版本信息判断是否存在漏洞: https://github.com/scipag/vulscan https://www.scip.ch Security is our Business. Zurich 18 4 0 Shell,Python,Lua,Visual,ASP,PHP,PowerShell 0 0
SecureSkyTechnology S2-045, S2-055 分析报告 https://github.com/SecureSkyTechnology/study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095 https://www.securesky-tech.com/ https://www.securesky-tech.com/ 17 3 0 C,PHP,Java,JavaScript 0 0
knownsec KCon 2017 PPT 下载 https://github.com/knownsec/KCon/tree/master/2017 http://blog.knownsec.com http://blog.knownsec.com 17 2 0 Python,Go,JavaScript 0 0
ysrc S2-052 Python检测脚本 https://github.com/ysrc/xunfeng/commit/f9ae69fe176c8bca622831e126cd94414ebe26f6?from=timeline&isappinstalled=0 None 前同程安全应急响应中心,项目由离职同事业余时间维护。 None 17 0 0 Java,Python,JavaScript,C++,HTML,Go,PHP 0 0
chaitin Passionfruit - 长亭科技开源的一款 iOS APP 黑客分析工具: https://github.com/chaitin/passionfruit http://chaitin.com 长亭科技 Beijing 16 7 0 TypeScript,Python,JavaScript,C++,Lua,HTML,Go 0 0
MooseDojo apt2 - 自动化渗透测试工具集: https://github.com/MooseDojo/apt2 http://moosedojo.net - Terra Firma 15 0 0 Python,Ruby,Dockerfile 0 0
ucsb-seclab New tool for obfuscation-resilient Android privacy leak detection! Code: https://github.com/ucsb-seclab/agrigento PDF: https://github.com/ucsb-seclab/agrigento http://seclab.cs.ucsb.edu The Computer Security Group at UC Santa Barbara Santa Barbara 15 4 0 Python,C,Java,C++ 0 0
zyantific x64dbg 调试器将用轻量级的 zydis 反汇编框架替换 Capstone: https://x64dbg.com/blog/2017/10/18/goodbye-capstone-hello-zydis.html https://github.com/zyantific/zydis https://zyantific.com/ InfoSec and reverse engineering team Germany 15 2 0 C,CMake,Python,C++,C#,Pascal,Rust 0 0
SQLab SymGDB - 一款基于 Triton 的 GDB 符号执行插件: https://github.com/SQLab/symgdb https://github.com/SQLab/symgdb None NCTU, Hsinchu, Taiwan 14 4 0 C,Python,JavaScript,C++,HTML,Puppet 0 0
SecarmaLabs IoTChecklist: Baseline IoT security checklist 物联网安全基线检查 https://github.com/SecarmaLabs/IoTChecklist https://www.secarma.co.uk Leaders in Cyber Security United Kingdom 14 0 0 Python,HTML,Java 0 0
baidu-security openrasp-testcases: OpenRASP 漏洞测试环境 https://github.com/baidu-security/openrasp-testcases https://oases.io/ Just to be awesome :-) https://oases.io/ 14 1 0 Go,JavaScript,Java,HTML,C++ 0 0
inversepath INTERLOCK release 2017.03.07: file creation feature, default-deny all resources in CSP, UI improvements. https://github.com/inversepath/interlock/releases/tag/v2017.03.07 https://inversepath.com F-Secure Hardware Security Team Trieste, Italy 14 0 0 C,JavaScript,Makefile,Perl,Verilog,Go,SaltStack,Ruby 0 0
RiskSense-Ops MS17-010 漏洞(SMB)扫描工具-单文件 https://github.com/RiskSense-Ops/MS17-010/blob/master/scanners/smb_ms17_010.py https://www.risksense.com https://www.risksense.com 13 0 0 C,Shell,Java,Python,Go,Ruby 0 0
refractionPOINT Limacharlie – Endpoint monitoring stack 终端安全 https://github.com/refractionPOINT/limacharlie http://www.refractionpoint.com http://www.refractionpoint.com 13 0 0 Python,Go,C,Shell,JavaScript 0 0
AlienVault-OTX A Yara rule generator for finding related samples and hunting https://github.com/AlienVault-OTX/yabin http://otx.alienvault.com Open source SDKs and projects related with AlienVault Open Threat Exchange and ThreatCrowd. http://otx.alienvault.com 12 0 0 C,Java,Python,JavaScript,Go,Jupyter 0 0
MobSF Mobile-Security-Framework-MobSF https://github.com/MobSF/Mobile-Security-Framework-MobSF https://mobsf.github.io/Mobile-Security-Framework-MobSF/ Automated pentesting framework for Android, iOS and Windows Apps Global 12 4 0 Shell,Java,Python,JavaScript,Makefile,CSS 0 0
SafeBreach-Labs Backdooring Your Python Programs (THOTCON 0x8 Talk Slides + Src Code) : http://www.ikotler.org/InYourPythonPath.pdf (Slides) , Github : https://github.com/SafeBreach-Labs/pyekaboo http://www.safebreach.com SafeBreach Labs Worldwide 12 2 0 Python,Shell 0 0
VerSprite Dolphin Browser for Android 不安全的 URI Scheme 解析漏洞披露 (CVE-2017-17553): https://github.com/VerSprite/research/blob/master/advisories/VS-2017-002.md None Atlanta, GA 12 0 0 C,Java,Python,JavaScript,HTML,PHP 0 0
embedi meloader - IDA 的一款插件,用于实现 Intel ME 的 Loader: https://github.com/embedi/meloader https://www.embedi.com Protects against known and unknown attacks 2001 Addison Street Berkeley, California 94704 12 0 0 Python,C,Assembly 0 0
secdr sec-ml: security machine learning 机器学习&网络安全资料 https://github.com/secdr/sec-ml http://secdr.github.io/ Security Research Team http://secdr.github.io/ 12 1 0 Python,TeX,HTML 0 0
Hack-with-Github 安全相关免费电子书集合 https://github.com/Hack-with-Github/Free-Security-eBooks-from-PacktPub https://twitter.com/hackwithgithub An Open Source Hacking Tools database. Bangalore, India 11 2 0 0 0
UndeadSec EvilURL - 用于 IDN 同形攻击的 Unicode 网络钓鱼域名生成器: https://github.com/UndeadSec/EvilURL https://www.youtube.com/c/UndeadSec Telegram Group: https://t.me/UndeadSec Brazil 11 6 0 Python,HTML,CSS,Dart 0 0
XiphosResearch Joomla 3.7.0 SQL Injection proof of concept exploit https://github.com/XiphosResearch/exploits/tree/master/Joomblah http://www.xiphosresearch.com/ UK and US based boutique security consultancy and software development company United Kingdom 11 1 0 Python,C,Shell,Makefile 0 0
linuxkit Docker announces LinuxKit! https://github.com/linuxkit/linuxkit and see also the blog post https://github.com/linuxkit/linuxkit None A toolkit for building secure, portable and lean operating systems for containers None 11 1 0 C,Shell,OCaml,Go,Ruby,PowerShell 0 0
nbs-system NAXSI: 基于 Nginx的开源、高性能、低规则 WAF 防护模块 https://github.com/nbs-system/naxsi https://www.nbs-system.com Paris, France 11 2 0 Python,C,PHP,JavaScript,CSS 0 0
DigitalSecurity btlejuice - 针对智能蓝牙设备的中间人攻击框架: https://github.com/DigitalSecurity/btlejuice http://www.digitalsecurity.fr Paris, France 10 2 0 Python,C,JavaScript,C++ 0 0
REhints Intel 第四代 CPU HasWell 新引入的 Intel Boot Guard 保护特性的防护机制与自身的安全性研究。Intel-Boot-Guard 用于确保 BIOS 启动过程中的安全性。来自研究员 Alex Matrosov,今年夏天他在 BlackHat 也演讲了一个相关的议题《Betraying the BIOS: Where the Guardians of the BIOS are Failing》: https://github.com/corna/me_cleaner/wiki/Intel-Boot-Guard https://medium.com/@matrosov/bypass-intel-boot-guard-cc05edfca3a9 https://github.com/REhints/BlackHat_2017 http://REhints.com http://REhints.com 10 2 0 Python,C,Assembly,CSS,C++ 0 0
RhinoSecurityLabs CFIRE - Bypass CloudFlare 的云安全防护功能: https://rhinosecuritylabs.com/cloud-security/cloudflare-bypassing-cloud-security/ https://github.com/RhinoSecurityLabs/Security-Research/tree/master/tools/cfire https://rhinosecuritylabs.com A boutique penetration testing and security assessment firm in Seattle, WA. Seattle, WA 10 0 0 Python,JavaScript,PowerShell,HCL 0 0
comsecuris some fw #RE helper i wrote a while ago: gdbida - a visual bridge between a GDB session and IDA Pros disassembler https://github.com/comsecuris/gdbida https://comsecuris.com https://comsecuris.com 10 1 0 Python,C,Shell,Dockerfile,HLSL 0 0
devlinkcn 2017 第三届PHP全球开发者大会PPT/Keynote(php安全开发) https://github.com/devlinkcn/ppts_for_php2017 http://devlink.cn 帮助开发者持续成长 Beijing 10 0 0 Go,HTML,Swift 0 0
libimobiledevice In case anyone is using libplist to parse plist files for security scanning, here are some fun parser differentials. libimobiledevice/libplist#83 http://libimobiledevice.org A cross-platform protocol library to access iOS devices Germany 10 2 0 C 0 0
DigitalInterruption 利用 Frida 框架提高逆向工程中的工作效率,来自 Hack.Lu 会议: https://github.com/DigitalInterruption/DigitalInterruption.github.io/blob/master/Prototyping%20and%20reverse%20engineering%20with%20frida_hacklu.pdf https://github.com/DigitalInterruption/FridaWorkshop https://www.digitalinterruption.com UK 9 0 0 PostScript,HTML,JavaScript 0 0
Invoke-IR PowerShellScripts - PowerShell 编写的集成化磁盘数字取证平台: https://github.com/Invoke-IR/PowerForensics http://www.invoke-ir.com http://www.invoke-ir.com 9 1 0 C#,PowerShell 0 0
ossec ossec-hids : Open Source Host-based Intrusion Detection Sys(log analysis, file integrity, rootkit detection & more): https://github.com/ossec/ossec-hids http://ossec.github.io http://ossec.github.io 9 4 0 Python,Shell,C,HTML,PHP 0 0
zxsecurity My slides discussing GPS Spoofing to attack NTPd & consequences from @ BSidesCbr are up https://zxsecurity.co.nz/presentations/201703_BSidesCBR-ZXSecurity_Practical_GPS_Spoofing.pdf code: https://github.com/zxsecurity/NMEAdesync https://www.zxsecurity.co.nz/ owning boxes since ages ago Wellington, New Zealand 9 0 0 Go,Python,Shell,PHP 0 0
WiPi-Hunter PiKarma - 检测 KARMA 无线攻击的工具: https://github.com/WiPi-Hunter/PiKarma None The Swiss Army knife against Malicious WiFi activity Monitor 8 1 0 Python 0 0
corkami I started cleaning up some older PoCs for re-releasing: uploaded mini GIF, PE, Mach-O, ELF, Java - w/ NASM source https://github.com/corkami/pocs None Reverse engineering & visual documentation None 8 2 0 TeX,Python,HTML,Assembly 0 0
x41sec 《X41 Browser Security White Paper》,来自 X41 D-Sec GmbH 团队分享的一份 Google Chrome、Microsoft Edge、Internet Explorer 3 大浏览器的深度安全研究报告。报告非常详细,涵盖浏览器的方方面面:浏览器漏洞 Bug Bounty 的情况、浏览器沙箱、浏览器利用缓解技术、Web 安全与同源策略、HTML 5、浏览器与硬件设备的交互、软件更新、加密机制、浏览器 Fuzzing: https://browser-security.x41-dsec.de/X41-Browser-Security-White-Paper.pdf https://github.com/x41sec/browser-security-whitepaper-2017 https://www.x41-dsec.de https://www.x41-dsec.de 8 0 0 C#,C,Java 0 0
zboxfs zbox - 专注隐私的嵌入式文件系统: https://github.com/zboxfs/zbox https://zbox.io Zero-details, privacy-focused embeddable file system. Worldwide 8 0 0 C,JavaScript,Java,Rust 0 0
FallibleInc 安全开发基线检查 checklist https://github.com/FallibleInc/security-guide-for-developers/blob/master/security-checklist-zh.md https://fallible.co Security for your APIs https://fallible.co 7 2 0 Python,HTML,C++,CSS 0 0
HatBashBR HatCloud: Bypass CloudFlare with Ruby 真实 IP 查找 https://github.com/HatBashBR/HatCloud http://hatbashbr.com Search Security, Programmers, Big Date Brazil 7 3 0 Python,HTML,Ruby 0 0
true-systems Open Mesh lock down exploit - true-systems/om5p-ac-v2-unlocker Wiki - GitHub https://github.com/true-systems/om5p-ac-v2-unlocker/wiki/Open-Mesh-lock-down-exploit http://www.true.cz Worldwide 7 0 0 C,Makefile 0 0
wpscanteam WordPress 漏洞扫描工具 wpscan 2.9.3发布: https://github.com/wpscanteam/wpscan/releases/tag/2.9.3 https://wpscan.org/ Europe 7 3 0 Python,PHP,Ruby 0 0
BugScanTeam DNSlog:监控 DNS 解析记录和 HTTP 访问记录 https://github.com/BugScanTeam/DNSLog https://www.bugscan.net/ https://www.bugscan.net/ 6 0 0 Python,JavaScript 0 0
SpamScope SpamScope - Fast spam analysts tool with Thug and VirusTotal integration by @ fedelemantuano https://github.com/SpamScope/spamscope None Fast Advanced Spam Analysis Tool None 6 0 0 Python,Dockerfile 0 0
droidefense Droidefense - 高级安卓恶意软件分析框架: https://github.com/droidefense/engine https://droidefense.com Advance Android Malware Analysis Framework Bilbao 6 1 0 Shell,HTML,Java 0 0
firehol netdata: 跨平台机器监视工具 https://github.com/firehol/netdata http://firehol.org/ The FireHOL Project http://firehol.org/ 6 7 0 Python,C,Shell,Ruby 0 0
shodan-labs iotdb: Nmap scans of Internet of Things devices https://github.com/shodan-labs/iotdb https://developer.shodan.io The official repository of code released by Shodan. Austin, TX 6 0 0 Python,JavaScript 0 0
504ensicsLabs LiME (Linux Memory Extractor) : Allows acquisition of volatile memory from Linux and Linux-based devices : https://github.com/504ensicsLabs/LiME http://www.504ENSICS.com Digital Forensics & Computer Security Research New Orleans, LA 5 1 0 Python,C 0 0
Checkmarx Go Secure Coding Practices guide v1.1.0 is out - https://github.com/Checkmarx/Go-SCP http://www.checkmarx.com http://www.checkmarx.com 5 0 0 C#,JavaScript,Java 0 0
EmpireProject 后渗透阶段攻击框架 Empire 更新 2.1 版本: https://github.com/EmpireProject/Empire/blob/master/changelog None The Empire project is a PowerShell and Python post-exploitation agent. None 5 0 0 Python,JavaScript,Java,PowerShell 0 0
PUNCH-Cyber YaraGuardian: Django web interface for managing Yara rules https://github.com/PUNCH-Cyber/YaraGuardian https://www.punchcyber.com https://www.punchcyber.com 5 0 0 Python,Scala 0 0
thezdi VMware Escapology - ZDI 研究员对 VMware 架构的简单剖析以及对 HGFS 和 Pwn2Own 2017 DnD 拖放逃逸漏洞的分析。来自 DerbyCon 2017 会议: https://github.com/thezdi/derbycon2017/blob/master/VMware-Escapology.pdf http://zerodayinitiative.com/ The Zero Day Initiative, Trend Micro Inc., founded by TippingPoint, is a program for rewarding security researchers for responsibly disclosing vulnerabilities Austin, TX 5 0 0 Python,HTML,Ruby,C++ 0 0
BSidesSF The sourcecode and deployment files for all of our @ BSidesSF #CTF challenges: https://github.com/BSidesSF/ctf-2017-release https://bsidessf.org Security BSides San Francisco San Francisco, CA 4 4 0 C,HTML,Ruby,CSS 0 0
RetireJS retire.js - 一款用于检测 JavaScript 库是否存在已知漏洞的工具: https://github.com/RetireJS/retire.js None What you require you must also retire None 4 1 0 JavaScript,HTML 0 0
advanced-threat-research Training: Security of BIOS/UEFI System Firmware from Attacker and Defender https://github.com/advanced-threat-research/firmware-security-training https://www.mcafee.com/enterprise/en-us/threat-center/advanced-threat-research.html https://www.mcafee.com/enterprise/en-us/threat-center/advanced-threat-research.html 4 0 0 Python,YARA 0 0
ciscocsirt GOSINT - 开源威胁情报收集与处理框架: https://github.com/ciscocsirt/gosint None Open Source Projects from Cisco CSIRT None 4 1 0 Python,Go,JavaScript 0 0
hashview hashview : A web front-end for password cracking and analytics : https://github.com/hashview/hashview ,More : https://github.com/hashview/hashview http://www.hashview.io Hashview is a project to help organize and automate the repetitious tasks related to password cracking. http://www.hashview.io 4 1 0 JavaScript,Ruby,CSS 0 0
nullsecuritynet tools - nullsecurity.net 团队收集的安全方向的工具、漏洞利用、POC、Shellcode 以及脚本: https://github.com/nullsecuritynet/tools http://www.nullsecurity.net/ From 0x00 till dawn! In your systems memory 4 0 0 Python,HTML 0 0
psconfeu Powershell Conference Europe 2017 Material #PSConfEU https://github.com/psconfeu/2017 http://www.psconf.eu PowerShell Conference Europe http://www.psconf.eu 4 4 0 PowerShell 0 0
securitywithoutborders Hardentools is an experimental utility in beta to harden certain Windows features. Looking for testing and code. https://github.com/securitywithoutborders/hardentools https://www.securitywithoutborders.org Internet 4 2 0 Go,CSS 0 0
ssllabs SSL and TLS Deployment Best Practices : https://github.com/ssllabs/research/wiki/SSL-and-TLS-Deployment-Best-Practices https://www.ssllabs.com https://www.ssllabs.com 4 1 0 Go,C 0 0
AlsidOfficial WSUSpendu - 2015 年 BlackHat 会议,有研究员提出了针对 WSUS(Windows Server 更新服务)的中间人攻击。而今天这个工具更进一步,向 WSUS 服务器注入一条新恶意更新包,然后分发至其他客户端: https://github.com/AlsidOfficial/WSUSpendu https://github.com/ctxis/wsuspect-proxy http://www.contextis.com/documents/162/WSUSpect_Presentation.pdf https://github.com/AlsidOfficial/WSUSpendu https://www.alsid.com Alsid builds innovative solutions to help companies secure their directory infrastructures. Paris, France 3 0 0 JavaScript,PowerShell 0 0
CENSUS An evolutionary knowledge-based fuzzer https://github.com/CENSUS/choronzon http://census-labs.com/ Greece 3 5 0 Python,C++ 0 0
Cybellum DoubleAgent https://github.com/Cybellum/DoubleAgent http://cybellum.com Tel Aviv, Israel 3 0 0 Python,C,JavaScript 0 0
DataSploit DataSploit - 用于搜集域名/邮箱/用户名等信息的工具: https://github.com/DataSploit/datasploit None Bangalore, India 3 2 0 Python 0 0
mogwaisec mjet: Mogwai Java Management Extensions (JMX) Exploitation Toolkit https://github.com/mogwaisec/mjet https://www.mogwaisecurity.de Ulm, Germany 3 0 0 Python,HTML,Java 0 0
novnc Just opened a bug report for WebSockify Stack based Buffer Overflow (Interesting bug) https://github.com/novnc/websockify/issues/274 https://novnc.com The HTML5 VNC Client https://novnc.com 3 4 0 Python,JavaScript,HTML 0 0
sakurity racer - 一键式应用,可用于测试条件竞争: https://github.com/sakurity/racer http://sakurity.com We find bugs others cannot http://sakurity.com 3 1 0 HTML,JavaScript 0 0
udark Peer-to-peer networking library for Android, with Wi-Fi and Bluetooth support.: https://github.com/udark/underdark-android http://underdark.io Mobile peer-to-peer mesh networking library. http://underdark.io 3 0 0 Protocol,Objective-C,Java 0 0
unicorn-engine Good news: Unicorn emulator now supports ARM in big-endian mode, available in latest code from our Github repo! https://github.com/unicorn-engine/unicorn/blob/master/bindings/python/sample_armeb.py http://www.unicorn-engine.org Multi-arch multi-platform CPU emulator framework http://www.unicorn-engine.org 3 6 0 Python,C,HTML 0 0
DGA-MI-SSI YaCo - 一个 Hex-Rays IDA 插件,目的在于让多个用户在同一个二进制文件上同时工作,所有的用户修改都会使用 git 进行同步: https://github.com/DGA-MI-SSI/YaCo http://www.defense.gouv.fr/dga http://www.defense.gouv.fr/dga 2 0 0 Python,C++ 0 0
exacity Deep Learning 中文翻译 https://github.com/exacity/deeplearningbook-chinese None China 2 0 0 TeX,Jupyter 0 0
quasar QuasarRAT - Windows 远程控制软件: https://github.com/quasar/QuasarRAT https://quasar.github.io/ https://quasar.github.io/ 2 1 0 C#,HTML 0 0
securitytxt security-txt - 用于定义网站安全策略的标准文件: https://github.com/securitytxt/security-txt https://securitytxt.org A proposed standard which allows websites to define security policies. https://securitytxt.org 2 1 0 HTML 0 0
Cognosec SecBee: ZigBee security testing tool https://github.com/Cognosec/SecBee http://www.cognosec.com http://www.cognosec.com 1 0 0 Python 0 0
SecYouth 信息安全实习和校招的面经、真题和资料 https://github.com/SecYouth/sec-jobs None 有关安全的面经, 实习, etc None 1 0 0 0 0
THIBER-ORG UserLine - Windows 安全类日志的关联可视化工具: https://github.com/THIBER-ORG/userline/blob/master/README.md http://www.thiber.org The cybersecurity think tank http://www.thiber.org 1 0 0 Python 0 0
TophantTechnology Osprey 鱼鹰开源漏洞检测框架 https://github.com/TophantTechnology/osprey https://www.tophant.com/ Shanghai 1 0 0 Python 0 0
iadgov Secure-Host-Baseline:Windows安全配置基线 https://github.com/iadgov/Secure-Host-Baseline https://www.iad.gov NSA Information Assurance is now NSA Cybersecurity Fort Meade, MD 1 0 0 0 0
phpinternalsbook phpinternals - 一本深入解析 PHP 内部架构的网络版书籍: https://github.com/phpinternalsbook/PHP-Internals-Book http://www.phpinternalsbook.com PHP Internals Book Worldwide 1 0 0 Python 0 0
synhack Mercure - Python open-source phishing framework https://github.com/synhack/mercure/ https://atexio.fr/ Sécurité informatique pour les petites et moyennes entreprises. Audit/Conseil, Sécurité, Formation en informatique, Services informatiques. https://atexio.fr/ 1 0 0 0 0
v3n0m-Scanner V3n0M-Scanner - 基于 Python 3.6 的渗透测试扫描器 : https://github.com/v3n0m-Scanner/V3n0M-Scanner None Mass scanning of Vuln IPs, SQLi/LFI/XSS, and Metasploit Scans None 1 1 0 Python 0 0
PentestLtd psychoPATH - a blind webroot file upload & LFI detection tool : https://github.com/PentestLtd/psychoPATH https://github.com/PentestLtd/psychoPATH https://pentest.co.uk/ #PenetrationTesting & #RedTeam specialists. Our goal is to assist clients in protecting their business from cyber attack. Part of Shearwater Group plc. Global 0 0 0 0 0
avast-tl retdec - Avast 团队开源的用于分析 ELF/PE/Mach-O 的静态分析工具: https://github.com/avast-tl/retdec https://github.com/avast Moved to https://github.com/avast Czech Republic 0 0 0 0 0
leviathan-framework Leviathan Framework : wide range mass audit toolkit : https://github.com/leviathan-framework/leviathan None Istanbul 0 1 0 0 0

私人github账号 推荐

github_id title url p_url p_profile p_loc p_company p_repositories p_projects p_stars p_followers p_following repo_lang repo_star repo_forks
phodal 开源电子书:大前端修炼之道 https://github.com/phodal/fe https://github.com/ThoughtWorksInc 待我代码编成,娶你为妻可好 Shenzhen, China @ThoughtWorksInc 303 0 2000 14300 15 TypeScript,JavaScript,HTML 0 0
MorvanZhou Python 机器学习教程 https://github.com/MorvanZhou/tutorials/blob/master/README.md?hmsr=toutiao.io&utm_medium=toutiao.io&utm_source=toutiao.io https://morvanzhou.github.io/ Deep Learning Research & Development in Tencent None None 17 0 28 11600 0 Python,Jupyter 0 0
fchollet [书籍] Deep Learning with Python https://github.com/fchollet/deep-learning-with-python-notebooks https://twitter.com/fchollet Mountain View None 8 0 120 8200 0 Python 0 0
donnemartin The System Design Primer : https://github.com/donnemartin/system-design-primer https://github.com/donnemartin/system-design-primer https://github.com/facebook Engineering Manager @facebook. twitter.com/donne_martin Washington, D.C. @facebook 27 0 1000 7200 3 Python 63400 9600
offensive-security exploit-database-papers - Exploit Databases Papers: https://github.com/offensive-security/exploit-database-papers https://www.offensive-security.com None Offensive Security 28 0 0 6500 3 Python,C,Shell 4300 1200
amitshekhariitbhu Android-Debug-Database : A library for debugging android databases and shared preferences - Make Debugging Great : https://github.com/amitshekhariitbhu/Android-Debug-Database https://github.com/MindorksOpenSource IIT , Co-Founder at MindOrks & AfterAcademy , Learner & Teacher at MindOrks & AfterAcademy , Open Source Contributor , #MakeEveryoneCode , Teaching Developers New Delhi, India @MindorksOpenSource 37 0 41 4500 2 Java 0 0
evilcos XSSOR XSS测试与利用在线工具 https://github.com/evilcos/xssor2 https://evilcos.me //:ALERT(/HACKING SYMBOL/)//余弦 None xeyeteam 10 0 150 4000 13 JavaScript 0 0
junegunn fzf - UNIX 命令行版本的模糊命令、文件、进程搜索工具: https://github.com/junegunn/fzf https://paypal.me/junegunn None None 131 0 819 3700 0 Go,Clojure,Ruby,Vim 0 0
evilsocket dnssearch -子域名收集工具: https://github.com/evilsocket/dnssearch https://www.evilsocket.net Hacker , I dont respectfully, I disagree. https://www.patreon.com/evilsocket Italy Zimperium 115 0 15 3700 0 Go,Python,JavaScript 0 0
KrauseFx 只需问一问,轻松获得 iOS 用户的 Apple ID 密码: https://github.com/KrauseFx/steal.password https://github.com/fastlane Professional iOS Code Signing Issue Resolver - Developer of @fastlane at @google https://whereisfelix.today Unemployed 119 0 1100 3700 10 Swift,JavaScript,Ruby,HTML 0 0
asLody VirtualApp:Android 双开沙箱 https://github.com/asLody/VirtualApp/blob/master/CHINESE.md None Just a boy China None 19 0 377 3600 9 Java,C++ 5700 1800
trustedsec Social Engineering Toolkit (SET) v7.7 发布 : https://github.com/trustedsec/social-engineer-toolkit/releases/tag/7.7 https://www.trustedsec.com Headquartered in Cleveland, Ohio, TrustedSec is an Information Security Consulting company, made up of researchers, hackers, advisors to help our customers. Cleveland, Ohio TrustedSec 24 0 2 3100 8 Python 4400 1400
vhf Free Programming Books : https://github.com/vhf/free-programming-books/blob/master/free-programming-books.md https://github.com/eXascaleInfolab @eXascaleInfolab → @recursecenter → @scigility → @livingdocsIO → @zazuko Switzerland @zazuko 118 0 711 3000 66 Go,Python,JavaScript,HTML 0 0
xoreaxeaxeax sandsifter - 一款 x86 处理器 Fuzz 工具: https://github.com/xoreaxeaxeax/sandsifter None None None 9 0 0 2900 0 Python,C,Assembly 0 0
x0rz NSA方程组又一波 https://github.com/x0rz/EQGRP_Lost_in_Translation https://0day.rocks hacking things France None 6 0 19 2600 0 Python,C,Perl 3500 2100
ring04h ring04h的白帽学习路线--20170325 https://github.com/ring04h/papers/blob/master/%E6%88%91%E7%9A%84%E7%99%BD%E5%B8%BD%E5%AD%A6%E4%B9%A0%E8%B7%AF%E7%BA%BF--20170325.pdf http://weibo.com/ringzero China None 41 0 844 2400 50 Python 941 514
hak5darren Mac OSX - Unauthenticated Sudo access for all users (USB Rubber Ducky) @ hak5darren @ mubix https://github.com/hak5darren/USB-Rubber-Ducky/wiki/Payload---OSX-Sudo-for-all-users-without-password https://hak5.org Darren Kitchen is the founder of Hak5, the award winning Internet television show inspiring hackers and enthusiasts since 2005. San Francisco, CA Hak5 LLC 6 0 2 2300 4 Python,C,Shell,HTML 3100 1000
0xAX Ive just fully rewrited eight part of the #linux #kernel initialization process about scheduler initialization - https://github.com/0xAX/linux-insides/blob/master/Initialization/linux-initialization-8.md https://github.com/travelping Elixir developer at @travelping. None @travelping 66 0 226 2300 7 Python,Go,C,Erlang,C++ 0 0
mubix Linux 后渗透测试常用命令列表: https://github.com/mubix/post-exploitation/wiki/Linux-Post-Exploitation-Command-List https://malicious.link/ Certified Checkbox Unchecker Internets @NoVAHA 160 0 124 2100 421 Python,C,HTML,Ruby,C++ 1100 283
zhengmin1989 一步一步学ROP https://github.com/zhengmin1989/ROP_STEP_BY_STEP None Android/iOS Senior Security Engineer @ Alibaba, CUHK PhD, a member of Blue-lotus and Insight-labs, worked in FireEye , Baidu and Tencent. None None 22 0 39 2000 6 Objective-C,HTML,Makefile 0 0
thedaviddias Web 前端工程师资料整理: https://github.com/thedaviddias/Resources-Front-End-Beginner https://github.com/influitive 👨🏽‍💻 Software Engineer with a Front-End & UX / UI passion 🤲 Open-source lover ❤️ code, meditation 🕵️‍♂️ human solver problems Toronto, Canada @influitive 23 0 496 1900 247 JavaScript,Ruby,HTML 0 0
DanMcInerney net-creds - 一款从网络嗅探或从 Pcap 文件提取敏感数据的工具: https://github.com/DanMcInerney/net-creds None I like automating security stuff so I dont have to work. Coalfire Sr. Pentester. None @danhmcinerney 82 0 236 1900 23 Python,Ruby,PowerShell 0 0
spacehuhn The USB Wi-Fi Ducky: inject keystrokes remotely with @ arduino and @ ESP8266https://github.com/spacehuhn/wifi_ducky https://github.com/spacehuhn/wifi_ducky https://spacehuhn.com Support me on patreon.com/spacehuhn Germany None 18 0 260 1800 12 C,C++,Arduino 0 0
lijiejie .DS_Store文件泄漏利用脚本 https://github.com/lijiejie/ds_store_exp http://www.lijiejie.com Just for fun None None 13 0 2 1700 7 Python 1400 639
LiveOverflow WebKit JS exploit used for iOS 9.3.3 jailbreak / Nintendo Switch(CVE-2016-4657/Demo): https://www.youtube.com/watch?v=xkdPjbaLngE , PoC: https://github.com/LiveOverflow/lo_nintendoswitch/blob/master/poc1.html https://www.youtube.com/LiveOverflowCTF wannabe hacker... None None 10 0 3 1700 0 Python,C,HTML,C++ 324 98
0xd4d Anyone have .NET guidance on preventing your application from being profiled? Some here... https://github.com/0xd4d/antinet None None None 15 0 34 1700 0 C# 0 0
ujjwalkarn Machine Learning & Deep Learning Tutorials https://github.com/ujjwalkarn/Machine-Learning-Tutorials https://github.com/facebook machine learning @ facebook None @facebook 82 0 274 1600 224 Python,R 0 0
hasherezade @ hasherezade The Pin Tool that I used in the video (at: https://youtu.be/QmiSsmnp54w?t=710) is here: https://github.com/hasherezade/MyPinTools/tree/master/SectionsTracer http://hasherezade.net Poland None 48 0 30 1600 9 Python,C,Assembly,C++ 746 129
orangetw Tiny-URL-Fuzzer - 台湾研究员 Orange Tsai 开源的一款 URL Fuzzer,之前他在 BlackHat 会议分享了一个相关的议题: https://github.com/orangetw/Tiny-URL-Fuzzer http://blog.orange.tw Taiwan None 37 0 506 1500 61 Python,C,PHP 0 0
misterch0c GithubLeakAlert: find credential associated with an host https://github.com/misterch0c/GithubLeakAlert https://github.com/misterch0c Im a hacker not a slacker ~ twitter:@misterch0c None None 65 0 811 1500 89 Python,ASP 3500 206
hfiref0x https://github.com/hfiref0x/UPGDSED None None None 23 0 24 1500 15 C 0 0
gentilkiwi Windows Credential Manager 是怎么保存密码的: https://github.com/gentilkiwi/mimikatz/wiki/howto-~-credential-manager-saved-credentials http://blog.gentilkiwi.com France None 11 0 18 1500 24 C 7800 1800
Screetsec MicroSploit: The Office Exploitation Toolkit! https://github.com/Screetsec/Microsploit http://dracos-linux.org Developer dracOs linux and Penetration Testing Tools , Join our community at https://t.me/bashidorg INDONESIA Dracos Linux ( Penetration OS from Indonesia ) 14 0 148 1400 5 Python,Shell,Java,C++ 0 0
1N3 ReverseAPK - 快速逆向分析安卓应用的 Bash 脚本: https://github.com/1N3/ReverseAPK... https://github.com/1N3/ReverseAPK... https://github.com/xer0dayz Founder of @XeroSecurity. Creator of Sn1per. Hacking since 93. 20+ yrs. IT exp. Sr. Penetration Tester. OSCE/OSCP/CISSP @xer0dayz @XeroSecurity @CrowdShield None XeroSecurity 19 0 671 1400 35 Python,C,Shell,BitBake 0 0
taviso Surprise, I ported Windows Defender to Linux. ? https://github.com/taviso/loadlibrary None None None 10 0 12 1200 1 C 0 0
smealum releasing udsploit, an exploit giving arm11 kernel code exec on 3DS firmware 11.3 with @ ylws8 https://github.com/smealum/udsploit http://smealum.net None None 37 0 15 1200 2 C 0 0
dexteryy Spellbook of Modern Web Dev,JavaScript Web 开发宝典(书): https://github.com/dexteryy/spellbook-of-modern-webdev https://twitter.com/dexteryy JS Hacker, Archmage of GUI, Web App Dev, Virtual World Builder, Fictional World Enthusiast, SF/F Nerd, Hardcore PC Gamer, Anime/Comic Otaku Beijing, China ByteDance 72 0 641 1200 108 JavaScript 0 0
Neo23x0 sigma: Generic Signature Format for SIEM Systems https://github.com/Neo23x0/sigma https://github.com/NextronSystems #DFIR #Python #YARA #Golang #SIEM #SOC #Sigma #Malware None @NextronSystems 79 0 101 1200 15 Python,Batchfile,Java 0 0
DrKLO The source code of Telegram for iOS and Android is open and free. Enjoy! https://github.com/DrKLO/Telegram https://github.com/DrKLO/Telegram None None None 2 0 1 1200 0 Java 11800 4600
yenchenlin Awesome Adversarial Machine Learning - 机器学习对抗相关的资料整理: https://github.com/yenchenlin/awesome-adversarial-machine-learning http://yclin.me PhD student at MIT CSAIL Cambridge, MA MIT CSAIL 91 0 315 1100 71 Python,Emacs,Shell,Ruby,Jupyter 0 0
neonichu trollface: AirDrop trollfaces to everyone. https://github.com/neonichu/trolldrop https://github.com/apple Et tu, sabes? San Francisco, USA @apple 372 0 4700 1100 288 C,Ruby,Objective-C,C++ 0 0
mandatoryprogrammer 俄罗斯 DNS 服务器出现问题,泄露了一份所有注册在俄罗斯顶级域名下的域名列表: https://github.com/mandatoryprogrammer/RussiaDNSLeak https://thehackerblog.com/ ><script src=https://y.vg></script> ><script src=https://y.vg></script> ><script src=https://y.vg></script> 41 0 97 1100 18 Python,JavaScript,Dockerfile 1400 208
cure53 DOMPurify 0.8.9 is out, with further hardening against the Safari DOMParser XSS https://github.com/cure53/DOMPurify/releases/tag/0.8.9 https://cure53.de And there is fire where we walk. Berlin Fine penetration tests for fine websites 16 0 30 1100 0 JavaScript,HTML 0 0
CHYbeta Software-Security-Learning: 软件安全的一些资料 https://github.com/CHYbeta/Software-Security-Learning https://chybeta.github.io https://xz.aliyun.com/u/2551 China XMU 43 0 1400 1100 89 Python,HTML 2200 634
jinfagang weibo_terminater: 微博终结者爬虫 https://github.com/jinfagang/weibo_terminater http://jinfagang.github.io I am the best! Sanfancisco Google 123 0 882 1000 67 Python,C++ 0 0
jgamblin jgamblin/nmaptable: Transform NMap Scans to an D3.js HTML Table https://github.com/jgamblin/nmaptable/ https://www.jerrygamblin.com Researcher. Builder. Hacker. Traveler. Cedere Nescio. United States None 65 0 0 1000 2 C,Shell 0 0
mossmann HackRF 2017.02.1 Release https://github.com/mossmann/hackrf/releases #HackRF #SDR https://github.com/mossmann/hackrf/releases http://greatscottgadgets.com/ None Great Scott Gadgets 21 0 5 973 0 Python,Eagle,C,C++,KiCad 2700 797
denysdovhan wtfjs - JavaScript 的一些有趣的小技巧(Tricks)总结: https://github.com/denysdovhan/wtfjs https://github.com/wix R&D Engineer at @wix, Speaker, Open Source addict, JS & Shell scripting fanboy, Founder of @chernivtsijs and @LambdaBooks Kyiv, Ukraine @wix 89 0 767 967 89 Shell,JavaScript 0 0
mattifestation PSSysmonTools - PowerShell 编写的 Sysmon 工具: https://github.com/mattifestation/PSSysmonTools http://www.exploit-monday.com/ None None 23 0 9 953 1 PowerShell 553 146
SwiftOnSecurity Watching @markrussinovich at #RSAC2017 talk about Sysmon?Get my Sysmon config file for a jump-start at deployment! https://github.com/SwiftOnSecurity/sysmon-config None None None 6 0 82 952 14 PowerShell 0 0
FuzzySecurity #PowerShell Kernel pwn for @ HackSysTeam Uninitialized Heap Variable => https://github.com/FuzzySecurity/HackSysTeam-PSKernelPwn/blob/master/Kernel_UninitializedHeapVar.ps1 https://github.com/FuzzySecurity/HackSysTeam-PSKernelPwn/blob/master/Kernel_UninitializedHeapVar.ps1 http://www.fuzzysecurity.com/ None None 13 0 0 952 0 C,PowerShell 0 0
NullArray Cypher – Pythonic ransomware proof of concept https://github.com/NullArray/Cypher https://github.com/GreySec-Official Cyber security enthusiast. Freedom advocate. I believe in sharing knowledge, tools, and value open source software development. None @GreySec-Official 34 0 204 933 164 Python,Shell 0 0
D4Vinci Dr0p1t-Framework: A framework create dropper that bypass most AVs https://github.com/D4Vinci/Dr0p1t-Framework https://github.com/Seekurity A hacker, high&low-level coder and a lot of things between. An extremely curious creature loves to learn. Break things or make things that break things. Egypt @Seekurity and @iSecur1ty 32 0 367 927 82 Python 0 0
enaqx Awesome Penetration Testing : A collection of awesome penetration testing resources : https://github.com/enaqx/awesome-pentest/blob/master/README.md http://enaqx.github.io/ Full Stack Developer None None 44 0 0 910 0 JavaScript 0 0
Ridter Pentest: 一些实用的渗透脚本和代码 https://github.com/Ridter/Pentest https://evi1cg.me None None 104 0 405 909 20 Python,C#,C 1800 358
swisskyrepo Wordpresscan: WPScan rewritten in Python + some WPSeku ideas https://github.com/swisskyrepo/Wordpresscan https://twitter.com/pentest_swissky Pentester & Bug Hunter None None 7 0 5 895 12 Python,Shell 0 0
ajinabraham Xenotix-Python-Keylogger : Xenotix Python Keylogger for Windows : https://github.com/ajinabraham/Xenotix-Python-Keylogger/blob/master/xenotix_python_logger.py https://github.com/OpenSecurityIN Security Research & Engineering https://opensecurity.in https://ajinabraham.com Montreal, Canada @OpenSecurityIN 125 0 50 893 13 Python,HTML,CSS 0 0
devttys0 Botox is a great tool from @devttyS0 which uses Keystone to statically-inject SIGSTOP to entry point of ELF file! https://github.com/devttys0/botox None None None 25 0 0 884 0 Python,C,Shell 658 223
xianhu LearnPython: 以撸代码的形式学习Python https://github.com/xianhu/LearnPython https://zhuanlan.zhihu.com/pythoner data miner None None 6 0 18 880 1 Python,Jupyter 0 0
jivoi awesome-osint: A curated list of amazingly awesome OSINT https://github.com/jivoi/awesome-osint https://jivoi.github.io 😈 Totally not a hacker Somewhere Out in Space None 45 0 3200 878 164 Python,Shell 2800 834
k4m4 movies-for-hackers: 黑客电影汇集 https://github.com/k4m4/movies-for-hackers https://nikolaskama.me/ Student by day 👔. (Aspiring) Hacker by night ⚡️. Athens, Greece None 60 0 1100 874 43 Python,Shell,JavaScript,CSS 0 0
cirosantilli x86-assembly-cheat - x86 汇编语言实现的多个用户态和系统级的组件源码收集,包括 ELF、linking、interrupt 等等: https://github.com/cirosantilli/x86-bare-metal-examples https://github.com/cirosantilli/x86-assembly-cheat https://www.cirosantilli.com 2018新疆改造中心,1989六四事件,1999法轮功 ,2019 996.ICU, 2018包子露宪,2015 710律师劫,2015巴拿马文件 邓家贵,2017低端人口,2008西藏骚乱<script>alert(1)</script> 2018新疆改造中心,1989六四事件,1999法轮功 ,2019 996.ICU, 2018包子露宪,2015 710律师劫,2015巴拿马文件 邓家贵,2017低端人口,2008西藏骚乱<script>alert(1)</script> 2018新疆改造中心,1989六四事件,1999法轮功 ,2019 996.ICU, 2018包子露宪,2015 710律师劫,2015巴拿马文件 邓家贵,2017低端人口,2008西藏骚乱<script>alert(1)</script> 423 0 830 871 1 Python,Makefile,C,Assembly 0 0
Xyntax 1000php: 1000个PHP代码审计案例(2016.7以前乌云公开漏洞) https://github.com/Xyntax/1000php https://www.cdxy.me Web developer, security researcher and data analyst. Hangzhou,China Alibaba Cloud 49 0 293 866 85 Python,HTML,PowerShell 1100 561
pirate List of Sites affected by Cloudflares #Cloudbleed HTTPS Traffic Leak https://github.com/pirate/sites-using-cloudflare https://github.com/Monadical-SAS Python ⑊ JS ⑊ Mac ⑊ web archiving ⑊ mesh networking ⑊ security ⑊ bicycles twitter.com/thesquashSH Montréal, Canada @Monadical-SAS 78 0 1000 843 646 Python,JavaScript 0 0
jas502n St2-048 Remote Code Execution Vulnerability 测试 POC https://github.com/jas502n/st2-048 None 1.misc 2.crypto 3. web 4. reverse 5. android 6. pwn 7. elf None None 138 0 125 842 113 Python,C,Shell,PHP 299 109
vanhoefm 路由器 KRACK(CVE-2017-13082)测试脚本,检查路由器(AP)是否受 KRACK 攻击影响: https://github.com/vanhoefm/krackattacks-test-ap-ft http://www.mathyvanhoef.com None None 50 0 10 827 1 Python,Shell,C,HTML 2700 680
botherder I updated by targeted threats tracker, with latest reports and indicators of compromise https://github.com/botherder/targetedthreats http://twitter.com/botherder None Amnesty International 42 0 12 809 0 Python,Go,JavaScript 0 0
brannondorsey sniff-probes - bash 脚本,用于嗅探 802.11 探测请求,获取对方历史连接过的 WIFI 网络名称: https://github.com/brannondorsey/sniff-probes https://github.com/runwayml Artist , Programmer , Researcher Philadelphia, PA @runwayml 231 0 1700 804 102 Python,C,TypeScript,JavaScript 0 0
wangyu- UDP tunnel:绕过UDP屏蔽或QoS https://github.com/wangyu-/udp2raw-tunnel/blob/master/doc/README.zh-cn.md https://twitter.com/wangyu0 For questions about software usage, plz dont email me, post an issue instead, thx. Suzhou USTCsz 58 0 131 799 58 Python,C++ 0 0
marcan takeover.sh : Wipe and reinstall a running Linux system via SSH, without rebooting : https://github.com/marcan/takeover.sh https://marcan.st If it aint broke, Ill fix it! Shibuya, Tokyo, Japan None 53 0 6 793 0 Python,C,Shell 0 0
ChrisTruncer WMIOps - 通过网络使用 WMI 来实现各种渗透测试目的的工具: https://github.com/ChrisTruncer/WMIOps https://github.com/FortyNorthSecurity A red teamer and tool developer None @FortyNorthSecurity 22 0 22 793 8 Python,Shell,Ruby 378 119
EdOverflow Bug Bounty Cheat Sheet https://github.com/EdOverflow/bugbounty-cheatsheet https://edoverflow.com/ Web developer & security researcher. ::1 None 38 0 168 790 20 Shell,HTML 1600 497
ethicalhack3r Added some updates to the WordPress Plugin Security Testing Cheat Sheet - https://github.com/ethicalhack3r/wordpress_plugin_security_testing_cheat_sheet https://dewhurstsecurity.com UK-FR-ES Dewhurst Security 18 0 105 788 9 Shell,PHP,Ruby 3100 913
WangYihang UsbKeyboardDataHacker: USB键盘流量包取证工具 https://github.com/WangYihang/UsbKeyboardDataHacker None If you can read assembly language then everything is open source. Harbin China Harbin Institute of Technology 103 0 1100 784 71 Python,Go,Ruby,Rust 0 0
CHEF-KOCH Android Vulnerabilities Overview - 研究员 CHEF-KOCH 整理的 Android 已知漏洞的情况总结: https://github.com/CHEF-KOCH/Android-Vulnerabilities-Overview https://github.com/microsoft Highly interested in PC games, demoscene and security-related topics. I worked for @microsoft and @NVIDIA over 15 years. - Since 2018 for NTT Security - Lausanne (づ。◕‿◕。)づ CKs Technology News 103 0 2800 778 60 Python,C,Batchfile,JavaScript 0 0
Mr-Un1k0d3r PowerLessShell - 在不调用 PowerShell.exe 的情况下执行 PowerShell 脚本: https://github.com/Mr-Un1k0d3r/PowerLessShell https://github.com/MrUn1k0d3r Mostly Red Team tools for penetration testing. I think that Ron Jemery is a good ambassador for anything regarding penetration. Twitter - @MrUn1k0d3r None RingZer0 Team 18 0 8 777 0 Python,Visual,PowerShell 0 0
feicong ISC 2016安全训练营-安卓app逆向与安全防护 https://github.com/feicong/android-app-sec https://zhuanlan.zhihu.com/android-sec 《Android软件安全权威指南》已上市: https://item.jd.com/12522178.html http://product.dangdang.com/26485897.html 微信公众号:feicong_sec None None 15 0 2400 776 82 Python,Objective-C,Shell 343 77
asciimoo wuzz : Interactive cli tool for HTTP inspection : https://github.com/asciimoo/wuzz https://github.com/asciimoo/wuzz None Budapest, Hungary None 65 0 161 764 84 Python,Go 0 0
boy-hack WEB端一句话管理系统 https://github.com/boy-hack/WebshellManager https://www.hacking8.com/ Hacking tools just for fun ~ china None 28 0 113 749 17 Python,JavaScript 211 69
m4ll0k Gathering Email Information Tool https://github.com/m4ll0k/infoga https://twitter.com/m4ll0k2 104,97,99,107,101,114,97,110,100&&112,114,111,103,114,97,109,109,101,114 127.0.0.1, Italy - Morocco localhost 14 0 13 743 20 Python,Shell 0 0
stanzhai 程序员路上用到的各种优秀资料、神器及框架 https://github.com/stanzhai/be-a-professional-programmer https://stanzhai.site Like programming, focus on BigData Beijing, China Haizhi Holding Inc. 79 0 1500 734 98 C#,Objective-C,JavaScript,HTML,Scala 0 0
sunnyelf Cheetah:一款基于字典的webshell密码爆破工具 https://github.com/sunnyelf/cheetah/blob/master/README_zh.md https://github.com/Qihoo360 Information security researcher, CTF enthusiast. Beijing, China @Qihoo360 105 0 893 710 98 Python 0 0
aozhimin MOSEC-2017: 第三届 MOSEC 移动安全技术峰会 PPT https://github.com/aozhimin/MOSEC-2017/tree/def4e06f3d1e80115c8066281a1b6261368cc105 https://twitter.com/aozhimin0811 📲 iOS Developer,🐍 Python Developer, 🔨 Reverse Engineer Shanghai, China None 86 0 394 710 84 CSS 1600 274
jpillora chisel : A fast TCP tunnel over HTTP : https://github.com/jpillora/chisel https://github.com/jpillora/chisel https://keybase.io/jpillora Sydney, Australia None 241 0 1300 702 45 Go,JavaScript 0 0
tyranid If youre attending my #HITB2017AMS workshop on Friday set up a 32 bit Win10 AU (or CU) VM and grab toolset from https://github.com/tyranid/windows-logical-eop-workshop/releases/tag/HITB-AMS-2017 None None None 32 0 0 700 2 C#,Python,C 0 0
zerosum0x0 koadic - 基于 JScript 实现的 Windows Rootkit,适用于 Windows 全版本: https://github.com/zerosum0x0/koadic https://zerosum0x0.blogspot.com USSA None 83 0 23 696 2 Python,C#,C,C++ 1300 362
vulnersCom getsploit - 在线搜索并自动下载漏洞利用的命令行工具: https://github.com/vulnersCom/getsploit https://vulners.com New generation vulnerability intelligence database None Vulners 15 0 6 687 0 Python,Lua,Java 0 0
guillaume-chevalier LSTM-Human-Activity-Recognition: 基于 LSTM 的人类活动行为识别 https://github.com/guillaume-chevalier/LSTM-Human-Activity-Recognition https://github.com/Neuraxio e^(πi) + 1 = 0 Canada @Neuraxio 78 0 508 681 132 Python,Jupyter 0 0
AlessandroZ BeRoot - Windows 本地提权工具,寻找本地机器配置上的疏漏实现提权: https://github.com/AlessandroZ/BeRoot None None None 12 0 13 681 9 Python 0 0
nixawk nmap_vscan: nmap service and application detection (without nmap) https://github.com/nixawk/nmap_vscan None /kernel/ None None 20 0 391 666 101 Python,Shell 0 0
objective-see sniffMK - macOS 上的鼠标与键盘事件嗅探工具: https://github.com/objective-see/sniffMK https://www.objective-see.com United States Objective-See 11 0 0 644 0 Objective-C 2900 142
Cryptogenic PS4-4.05-Kernel-Exploit - PS4 4.05 namedobj 内核完整的越狱 Exploit: https://github.com/Cryptogenic/PS4-4.05-Kernel-Exploit https://github.com/Cryptogenic/PS4-4.05-Kernel-Exploit https://twitter.com/SpecterDev PHP/C++ developer with an interest in user-land and web exploitation. None None 28 0 38 642 5 Go,C,JavaScript 0 0
saelo 用于重命名 iOS kernelcache function stubs 的 IDA Python 脚本: https://github.com/saelo/ida_scripts/blob/master/kernelcache.py http://twitter.com/5aelo Karlsruhe, Germany None 31 0 207 638 4 Python,C,JavaScript 646 113
3xp10it 3xp10it:一个自动化渗透测试框架 https://github.com/3xp10it/3xp10it http://3xp10it.cc None None 143 0 278 637 391 Python,PHP 543 210
Cyb3rWard0g The ThreatHunter Playbook - 专注威胁检测一个 GitHub 项目: https://github.com/Cyb3rWard0g/ThreatHunter-Playbook https://github.com/Cyb3rWard0g @Cyb3rWard0g None None 10 0 19 636 2 Jupyter,PowerShell 1400 336
lord slate: Beautiful static documentation for your API 项目文档编写助手 https://github.com/lord/slate https://lord.io Text input and editing for Fuchsia San Francisco Google 93 0 291 635 58 JavaScript,Ruby,CSS,Rust 27000 16700
xairy Proof-of-Concept local root exploit for the double-free in Linux kernel DCCP implementation (CVE-2017-6074): https://github.com/xairy/kernel-exploits/tree/master/CVE-2017-6074 https://andreyknvl.com/ None None 33 0 0 630 14 Python,C 2300 552
mumuy browser: 获取当前浏览器信息 https://github.com/mumuy/browser https://passer-by.com Im just a passer-by Xiamen,China passer-by.com 22 0 31 625 23 JavaScript 1700 421
pwntester Deserialization payload generator for a variety of .NET formatters https://github.com/pwntester/ysoserial.net http://www.pwntester.com Madrid None 70 0 5 623 16 C#,Java 578 121
peter-iakovlev The source code of Telegram for iOS and Android is open and free. Enjoy! https://github.com/DrKLO/Telegram https://github.com/peter-iakovlev/Telegram None None None 20 0 3 620 0 Objective-C,Swift,C 2700 773
DhavalKapil libdheap - 动态注入到其他进程,检测 glibc 堆内存破坏问题的动态库: https://github.com/DhavalKapil/libdheap https://github.com/sdslabs Software Security Enthusiast & Software Developer; Past: GSoC 15 & 16, @sdslabs, @amzn, IIT Roorkee Atlanta, GA Georgia Tech 43 0 255 619 95 Lua,C,Shell,JavaScript 2400 266
travisgoodspeed 借助 IDA Pro 逆向 MD380 固件: https://github.com/travisgoodspeed/md380tools/wiki/IDAPro None None None 31 0 36 606 24 Python,C,C++ 0 0
HackerFantastic Coppermine Gallery (all versions) <= 1.5.44 arbitrary file download 0day exploit https://github.com/HackerFantastic/Public/blob/master/exploits/cpg15x-dirtraversal.txt https://github.com/hackerhouse-opensource You can find my research and tools at Hacker House. 127.0.0.1 Hacker House @hackerhouse-opensource 12 0 21 601 159 C,TypeScript,Python,C++,Perl,Dockerfile 0 0
lcatro 如何使用Fuzzing挖掘ImageMagick的漏洞 https://github.com/lcatro/Fuzzing-ImageMagick/blob/master/%E5%A6%82%E4%BD%95%E4%BD%BF%E7%94%A8Fuzzing%E6%8C%96%E6%8E%98ImageMagick https://github.com/lcatro/my-blog Binary ,WEB vulnerability and Fuzzing Research .. China WeBank ,Tencent 51 0 171 596 20 Python,PHP,Mask,C++ 391 101
lrlna How the V8 javascript engine garbage collection works. V8 is used by Chrome and nodejs - https://github.com/lrlna/sketchin/blob/master/guides/garbage-collection-in-v8.md?utm_content=buffer29714&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer https://github.com/mongodb Berlin, Germany @mongodb 96 0 396 595 37 JavaScript 0 0
netxfly xsec-ssh-firewall: 一个简易的ssh密码防暴力破解程序 https://github.com/netxfly/xsec-ssh-firewall http://sec.lu China xsec 21 0 2900 577 75 Go,Python 346 150
kailashahirwar 机器学习与深度学习工程师的必备手册: https://medium.com/@kailashahirwar/essential-cheat-sheets-for-machine-learning-and-deep-learning-researchers-efb6a8ebd2e5 Github: https://github.com/kailashahirwar/cheatsheets-ai https://github.com/MateLabs Co-founder at @MateLabs , Democratising Machine Learning and Deep Learning. Bangalore India @MateLabs 10 0 229 577 18 Python 12200 2900
coffeehb struts2_check: 识别目标网站是否采用Struts2框架 https://github.com/coffeehb/struts2_check None 爱生活,爱安全。 None None 183 0 168 571 73 Python,Objective-C 982 623
Siguza 昨天推送了研究员 v0rtex 公开的 iOS 11.2 IOSurfaceRootUserClient Port UAF 漏洞的完整 Exploit 代码( https://github.com/Siguza/v0rtex/blob/master/v0rtex.m ),今天他又写了一篇 Blog 谈这个漏洞: https://github.com/Siguza/v0rtex/blob/master/v0rtex.m https://siguza.net Switzerland None 39 0 35 559 0 C,Objective-C 0 0
ResolveWang weibospider: 新浪微博爬虫(分布式) https://github.com/ResolveWang/weibospider https://rookiefly.cn infra ChengDu SiChuan University 169 0 1700 558 118 Python,C,Shell,Java 0 0
Cn33liz My version of the HEVD Arbitrary Overwrite exploit in C.@ HackSysTeam https://github.com/Cn33liz/HSEVD-ArbitraryOverwrite https://github.com/Cn33liz/HSEVD-ArbitraryOverwrite https://twitter.com/Cneelis Groningen, the Netherlands None 31 0 4 553 2 C#,Visual,JavaScript,C++ 1100 293
Chan9390 Awesome-MitM - GitHub 上一些不错的网络中间人攻击框架收集: https://github.com/Chan9390/Awesome-MitM https://github.com/Hack-with-Github On my path to attain nirvana in security ! None @Hack-with-Github 150 0 3700 553 206 Python,Go,HTML,CSS 0 0
dxa4481 XSSJacking : Abusing Self-XSS and Clickjacking to trigger XSS : https://github.com/dxa4481/XSSJacking https://security.love Full stack hacker USA None 83 0 22 550 4 Python,HTML,JavaScript 3600 444
vanhauser-thc hydra - 密码暴力破解工具: https://github.com/vanhauser-thc/thc-hydra https://www.mh-sec.de/ Security researcher since 1994 https://www.thc.org/ https://twitter.com/hackerschoice Berlin The Hackers Choice , mh-sec , me , myself 20 0 27 548 13 Batchfile,C,HTML,C++ 0 0
codingo VHostScan: HTTP Virtual Host Scanner https://github.com/codingo/VHostScan https://twitter.com/codingo_ Penetration tester from Australia. Current maintainer of NoSQLMap, VHostScan, Reconnoitre. Co-contributor to subfinder. Brisbane, Australia None 137 0 1000 544 239 Python,Go 0 0
macmade Another new macOS keychain cracker https://github.com/macmade/KeychainCracker by @ macmade The other one is https://github.com/macmade/KeychainCracker http://www.xs-labs.com/ Lead Developer at imazing.com Switzerland XS-Labs 178 0 89 527 52 Swift,Objective-C,Makefile,C 596 112
EgeBalci HERCULES : a special payload generator that can bypass antivirus softwares : https://github.com/EgeBalci/HERCULES https://pentest.blog Cyber Security Researcher İstanbul, Turkey INVICTUS/PRODAFT 80 0 953 526 115 Go,Ruby,Assembly,C++ 0 0
tandasat .NET Native Code hook 技术及相应的工具: https://github.com/tandasat/DotNetHooking http://standa-note.blogspot.ca/ Engineer @standa_t Vancouver, Canada None 56 0 16 524 3 C#,C++ 0 0
maldevel canisrufus - 基于 Python 的 Windows 隐藏后门,使用 Github 作为命令和控制服务器: https://github.com/maldevel https://github.com/twelvesec code, pentests, redteaming, research Greece @twelvesec 46 0 1100 522 1 Python,Shell 340 122
bit4woo passmaker: 可以自定义规则的密码字典生成器 https://github.com/bit4woo/passmaker http://code2sec.com/ Creating with coding,Learning by doing,Learning by sharing! shenzhen None 111 0 755 521 122 Python,C#,Ruby,Java 0 0
nneonneo Generate two PDFs with different contents but identical SHA1 hashes : https://github.com/nneonneo/sha1collider/blob/master/collide.py https://robertxiao.ca HCI researcher, CTF player. Vancouver, BC, Canada University of British Columbia 81 0 23 510 1 Python 752 440
averagesecurityguy Bypassing AntiVirus with Golang : https://averagesecurityguy.github.io/2017/01/06/bypassing-av-with-golang/ , Github : https://github.com/averagesecurityguy/scripts/blob/master/stealth.go http://averagesecurityguy.info None None 43 0 9 509 3 Python,Go,C,Shell 0 0
toolswatch blackhat-arsenal-tools - BlackHat 会议军火库涉及到的工具: https://github.com/toolswatch/blackhat-arsenal-tools https://vfeed.io Promoting security tools , Black Hat Arsenal Manager & Review Board Committee Chairman , Founder of @vfeed_io , Anti-conformist cloud vFeed IO 7 0 15 506 4 Python 0 0
jaybosamiya Fuzzing Numpy - 用于 Fuzz Python 数值运算库 NumPy 的工具: https://github.com/jaybosamiya/fuzzing-numpy https://www.jaybosamiya.com/ 🦊 Software security researcher. PhD student at CMU. BTech (CSE) from IIT Roorkee. Open source dev. CTFer (PPP). Former president and editor of Geek Gazette. Pittsburgh, PA None 58 0 599 501 148 Python,C,C++ 0 0
fdiskyou kcshell:Simple #Python interactive assembly / #disassembly shell for various architecturesAuthor: @fdiskyou https://github.com/fdiskyou/kcshell http://deniable.org Shut Up and Hack. London, UK None 60 0 146 500 30 Python,C,Shell,C++ 0 0
0xbug Howl: 网络设备 web 服务指纹扫描与检索 https://github.com/0xbug/Howl None Biu~ 404 None 15 0 560 497 34 Python,Vue 0 0
kgretzky obfusion - x86 汇编代码混淆工具: https://github.com/kgretzky/obfusion 作者还为此写了 3 篇 Blog: https://breakdev.org/x86-shellcode-obfuscation-part-1/ https://breakdev.org/x86-shellcode-obfuscation-part-2/ https://github.com/kgretzky/obfusion https://breakdev.org I do reverse engineering and C/C++ dev. A bit of blogging and mainly everything related to information security. None None 11 0 56 494 0 Go,Python,C++ 2300 370
vit9696 Lilu is a new MacOS kernel extension & framework to support patching kext, library & process. #CapstoneInside https://github.com/vit9696/Lilu None None None 7 0 0 477 0 C,C++ 0 0
brianwrf NagaScan: 一个简单的分布式WEB扫描器的设计与实践 https://github.com/brianwrf/NagaScan http://avfisher.win/ Security Researcher None None 229 0 319 476 8 Python,Shell,Batchfile,Perl 407 219
0x27 Leaked Linux.Mirai Source Code for Research/IoC Development Purposes https://github.com/0x27/linux.mirai http://0x27.me/ EIP None 77 0 3000 475 34 Python,Go,C 397 220
danielbohannon PowerShell Obfuscator https://github.com/danielbohannon/Invoke-Obfuscation http://danielbohannon.com Principal Applied Security Researcher (prev IR Consultant) Washington, D.C. Mandiant 7 0 0 472 5 PowerShell 0 0
tanjiti FingerPrint: Web应用指纹识别 (关注新指纹规则) https://github.com/tanjiti/FingerPrint http://tanjiti.com/ #Network Security Monitor #threat intelligence  #waf #ids #iOS App Security #Android App Security #game security shanghai baidu 16 0 4 470 166 Python,PHP,HTML,Perl 0 0
Manisso Fsociety - 一款渗透测试框架: https://github.com/Manisso/fsociety https://github.com/Manisso One day youll leave this world behind So live a life you will remember Algiers, Algeria @Manisso 26 0 0 470 1 Python 0 0
BrambleXu pydata-notebook: 利用Python进行数据分析 第二版 (2017) 中文翻译笔记 https://github.com/BrambleXu/pydata-notebook https://medium.com/@bramblexu An NLPer interested in Relation Extraction and Knowledge Graph Twitter: BrambleXu Tokyo None 24 0 258 465 52 Jupyter 2900 1100
joxeankoret Mal Tindex - 为二进制可执行文件建立索引的工具,基于 IDA,主要用于归类搜索恶意软件。这个工具来源于 Joxean Koret 在 EuskalHack 2017 会议的演讲《Call Graph Agnostic Malware Indexing 》: Github: https://github.com/joxeankoret/maltindex slides: https://github.com/joxeankoret/maltindex http://www.joxeankoret.com Basque Country None 30 0 87 458 2 Python 1300 207
Billy-Ellis Great work @ bellis1000 A collection of vulnerable ARM binaries for practicing exploit development https://github.com/Billy-Ellis/Exploit-Challenges https://zygosec.com iOS/ARM, Reverse Engineering, Exploit Development UK ZygoSec 20 0 10 458 32 Logos,C,Objective-C,CSS 618 133
kholia 如何在 QEMU/KVM 虚拟机环境中安装 OS X El Capitan 和 macOS Sierra: https://github.com/kholia/OSX-KVM https://twitter.com/DhiruKholia None None 75 0 2200 456 573 Python,Go,C,Shell,C++ 0 0
williballenthin python-idb - 用于解析与分析 IDA 数据库文件(.idb)的纯 Python 工具: https://github.com/williballenthin/python-idb https://github.com/fireeye /usr/bin/nethack None @fireeye 62 0 206 451 47 Python,Rust 0 0
zodiacon GFlagsX now supports Mitigation Options https://github.com/zodiacon/GflagsX/releases/tag/0.2 https://github.com/zodiacon/GflagsX/releases/tag/0.2 http://scorpiosoftware.net None None 50 0 99 448 8 C#,C 0 0
phunterlau 写给白帽子的数据科学手册 https://github.com/phunterlau/data_science_for_whitehat None North Korea None 35 0 526 445 3 TeX,Python,Shell,OpenEdge 232 65
wtsxDev List of reverse engineering resources https://github.com/wtsxDev/reverse-engineering#reverseengineering https://github.com/wtsxDev/reverse-engineering#reverseengineering http://www.kalitut.com Penetration Testing None None 18 0 2 444 0 Python,JavaScript 3800 460
Lucifer1993 struts-scan: struts2漏洞全版本检测和利用工具 https://github.com/Lucifer1993/struts-scan None 安全圈职业炮灰 None None 25 0 315 444 25 Python,Ruby 897 403
amaneureka AtomOS : A new hobby OS from “scratch” in C# (Monolithic Kernel based x86) : https://github.com/amaneureka/AtomOS https://github.com/amaneureka/AtomOS https://github.com/reactos Programmer , Hacker , GSoC16 @reactos , I ❤ Programming , Follow me on Twitter @amaneureka India AP 16 0 27 442 3 C#,Python,C,JavaScript,C++ 0 0
hugsy New #BinaryNinja plugin to decompile binary/functions using @ RetDec : https://github.com/hugsy/binja-retdec https://github.com/hugsy/binja-retdec https://twitter.com/_hugsy_ Yet another blah cat https://blahcat.github.io None 29 0 559 435 87 Python,C,JavaScript 0 0
dweinstein awesome-frida - 由 Frida 提供的项目、库以及工具的列表: https://github.com/dweinstein/awesome-frida https://gitlab.com/dweinstein Im focused on applied security research, mainly on mobile platforms. @insitusec NowSecure 265 0 2300 435 1200 Python,JavaScript,Java,Rust 0 0
MarioVilas WinAppDbg v1.6 is out! https://github.com/MarioVilas/winappdbg/releases/tag/winappdbg_v1.6 http://breakingcode.wordpress.com/ Madrid, Spain None 27 0 1700 429 581 Python,C 557 313
We5ter 开源CTF平台框架合辑 https://github.com/We5ter/Create_Your_CTFs https://lightrains.org You are being watched. Anywhere. Anytime. Chengdu,China None 11 0 1200 426 108 Python,CSS 0 0
Bo0oM Chrome 62 版本修复的 UXSS with MHTML(CVE-2017-5124)漏洞的分析和 PoC,分析部分是俄语: https://bo0om.ru/chrome-and-safari-uxss https://github.com/Bo0oM/CVE-2017-5124/ https://github.com/ONsec-Lab https://twitter.com/i_bo0om None @ONsec-Lab @wallarm 18 0 241 421 13 Python,HTML,PHP 0 0
qazbnm456 awesome-cve-poc:A curated list of CVE PoCs https://github.com/qazbnm456/awesome-cve-poc https://github.com/qazbnm456 See my posts :) https://medium.com/@qazbnm456 Taiwan None 96 0 1100 419 20 Python,JavaScript 0 0
unamer VMware Escape Exploit before VMware WorkStation 12.5.5 https://github.com/unamer/vmware_escape https://nonick.me/ <script>alert(Hello world)</script> C:\Windows\ None 39 0 27 418 4 Python,C,CSS,C++ 0 0
Ekultek whatwaf - 检测并绕过 Web 应用程序防火墙及防护系统: https://t.co/HnELtLJYaD https://github.com/Ekultek/WhatWaf None U3VjY2VzcyBpcyBpbiB0aGUgZXllIG9mIHRoZSBiZWhvbGRlci4= None None 87 0 121 414 11 Python 0 0
pfalcon ScratchABit (1.7) : Easily retargetable and hackable interactive disassembler with IDAPython-compatible plugin API : https://github.com/pfalcon/ScratchABit None None None 156 0 1200 410 123 Python,C,Makefile,C++ 0 0
secmobi The Underground Economy of AppleID : https://github.com/secmobi/slides/blob/master/2017.UndergroundEconomyAppleID_BSidesSF.pdf None None None 11 0 1300 400 97 0 0
ChALkeR 收集 NPM 弱密码的多种方式介绍: https://github.com/ChALkeR/notes/blob/master/Gathering-weak-npm-credentials.md https://twitter.com/skovorodan Moscow None 141 0 234 398 29 JavaScript 0 0
Arno0x A dumb PoC of shellcode brute force xor decryption. Just for the record - bfDecryptShellcode.cs https://github.com/Arno0x/CSharpScripts None None None 32 0 22 391 0 Python,JavaScript,PowerShell,C++,HTML 314 98
tiimgreen github-cheat-sheet : A list of cool features of Git and GitHub : https://github.com/tiimgreen/github-cheat-sheet None London None 41 0 339 387 31 Python,JavaScript,Ruby,CSS 28200 4300
ptresearch Disabling Intel-ME https://github.com/ptresearch/me-disablement None None Positive Research Team 13 0 1 385 0 Python 470 143
hatRiot 除了内核中的利用,Token Privileges 可以在攻击服务时被滥用实现本地提权: https://github.com/hatRiot/token-priv/blob/master/abusing_token_eop_1.0.txt http://hatriot.github.io Seattle FusionX 22 0 42 382 1 Python,C++ 916 293
az0ne AZSpider: 高性能分布式爬虫,基于Flask 数据库采用MongoDB 分布式采用Redis https://github.com/az0ne/AZSpider/blob/master/AZSpider_.rar http://az0ne.lofter.com China ANTIY 321 0 967 379 32 Python,JavaScript,Lua,HTML,Go,PowerShell 377 171
CoolerVoid Web security tool to make fuzzing at HTTP, Beta https://github.com/CoolerVoid/0d1n/ http://funguscodes.blogspot.com.br/ Just another computer programmer, twitter: @Cooler_freenode brazil - sao paulo None 67 0 177 378 101 C,C++ 0 0
CaledoniaProject WordPress Plugin Security Testing Cheat Sheet 插件代码审计列表 https://github.com/CaledoniaProject/wordpress_plugin_security_testing_cheat_sheet None BeiJing, China Security Architect 1300 0 205 378 109 Java,Python,C++,Perl,C#,CSS 192 72
tengzhangchao Sec-Box(信息安全工具集合) https://github.com/tengzhangchao/Sec-Box https://thief.one Information Security Engineer china None 62 0 437 377 36 Python,Go,Java 0 0
rasta-mouse New tool: https://github.com/rasta-mouse/Sherlock https://github.com/ZeroPointSecurity None @ZeroPointSecurity 20 0 58 377 7 C#,PowerShell 0 0
rshipp 恶意软件分析大合集 https://github.com/rshipp/awesome-malware-analysis/blob/master/%E6%81%B6%E6%84%8F%E8%BD%AF%E4%BB%B6%E5%88%86%E6%9E%90%E5%A4%A7%E5%90%88%E9%9B%86.md https://rshipp.com Software engineer, infosec hobbyist. None None 107 0 1500 376 12 Python 0 0
fate0 proxylist: 实时更新的代理IP列表 https://github.com/fate0/proxylist http://www.fatezero.org time waits for no one China None 15 0 4 376 5 Python,C,PHP,HTML 0 0
0x09AL DropboxC2C: Dropbox Infrastructure for command and control operations https://github.com/0x09AL/DropboxC2C https://twitter.com/0x09AL None None 94 0 114 372 19 Go,Python,Ruby,C++ 0 0
Idnan bash-guide : A guide to learn bash : https://github.com/Idnan/bash-guide http://adnanahmed.info/ I write code, read code, talk about code, and other stuff that developers do with code. Dubai, United Arab Emirates tajawal 31 0 621 370 32 Shell,JavaScript,HTML 0 0
xorrior 远程调用 Mimikatz 的 PowerShell 脚本 : https://github.com/xorrior/RandomPS-Scripts/blob/master/Invoke-RemoteMimikatz.ps1 https://www.xorrior.com PowerShell, C#, Obj-C, macOS Security, Red Team Operator None SpecterOps 53 0 93 369 9 C#,Objective-C,PowerShell,C++ 0 0
angryziber ipscan: Angry IP Scanner https://github.com/angryziber/ipscan http://photos.azib.net Estonia Codeborne 23 0 13 366 0 Kotlin,Java 274 49
secrary SSMA - Simple Static Malware Analyzer https://github.com/secrary/SSMA https://secrary.com @_qaz_qaz https://keybase.io/khasaia None 17 0 197 363 21 Python,C,C++ 0 0
humphd An absolute beginners guide to Machine Learning and Image Classification with Neural Networks : https://github.com/humphd/have-fun-with-machine-learning http://twitter.com/humphd CS prof in the Centre for Development of Open Technology (CDOT) at Seneca College. Developer with Mozilla. Canada None 165 0 100 361 1 Python,JavaScript,Dockerfile,HTML 0 0
mjg59 I modified Intels sample AMT code to tell you whether AMT is provisioned on Linux systems: https://github.com/mjg59/mei-amt-check https://github.com/google Oakland @google 74 0 2 359 0 Python,C 642 255
beefproject BeEF now supports persistent hooking in IE 11 using an invisible HTMLFile ActiveX object beefproject/beef#1364 http://beefproject.com None None 1 0 1 358 0 JavaScript 4300 1000
secmob 蝴蝶效应与程序错误 - 一个渣洞的利用之旅(CVE-2016-9651),介绍了 Gong Guang 如何利用 V8 对象私有属性的逻辑漏洞(利用对象赋值)->越界读(unescape)->越界写(堆风水)->任意地址读写(改写 JITted Code Buffer)->任意代码执行的过程,整个过程非常巧妙: https://github.com/secmob/pwnfest2016 https://github.com/OldFresher twitter @OldFresher None None 9 0 4 355 3 HTML,C++ 152 78
certsocietegenerale 恶意软件分析平台 FAME,来自 VirusTotal VB2017 会议的公开的一个分析系统: https://www.virusbulletin.com/uploads/pdf/magazine/2017/201710-FAME.pdf https://certsocietegenerale.github.io/fame/ https://github.com/certsocietegenerale/fame https://cert.societegenerale.com/en/contact.html None Société Générale 10 0 3 354 0 Python,C#,JavaScript 1100 342
cldrn macphish - 生成 Office for Mac 宏 Payload 的工具: https://github.com/cldrn/macphish https://github.com/nmap Network security specialist , Open Source contributor , @nmap NSE developer , OWASP IoT Goat Project Leader , Chapter leader of @owasp_riviera Mexico city Websec 39 0 44 352 37 Python,Lua,Batchfile,HTML 0 0
LoRexxar 中国网络安全技术对抗赛「钓鱼与黑页」检测代码 https://github.com/LoRexxar/check_py http://lorexxar.cn Vidar-Team/Knownsec 404-Team hacker or developer? who care None None 44 0 277 352 18 Python 0 0
DamonMohammadbagher NativePayload_DNS - 通过 DNS 流量传输后门载荷以绕过反病毒软件的 C# 代码示例: https://github.com/DamonMohammadbagher/NativePayload_DNS https://www.linkedin.com/in/damon-mohammadbagher-2b154484 Security Researcher 🇮🇷 https://twitter.com/_Damon_M_ None None 18 0 43 351 0 C#,Shell 0 0
ecthros uncaptcha - 对抗 Google 音频验证码的工具,介绍中称有 85% 的正确率: https://github.com/ecthros/uncaptcha None University of Maryland None None 27 0 86 349 113 Python 0 0
GoSSIP-SJTU 孤挺花(Armariris): 基于LLVM的支持多平台多语言的混淆器 https://github.com/GoSSIP-SJTU/Armariris https://loccs.sjtu.edu.cn/wiki/doku.php?id=gossipwiki Group of Software Security In Progress (GoSSIP) 小组,来自上海交通大学密码与计算机安全实验室(LoCCS)的活跃的学术安全团队 Shanghai, China Shanghai Jiao Tong University 9 0 0 344 0 TeX,C,Assembly,C++ 491 130
BlackHole1 Fastener: Web版在线Webshell管理工具 https://github.com/BlackHole1/Fastener https://github.com/alo7 Security oriented front-end developers ShangHai @alo7 77 0 294 338 53 Go,PHP,Java,JavaScript 0 0
lionsoul2014 ip2region: 准确率99.9%的IP地址定位库 https://github.com/lionsoul2014/ip2region http://yuanyu.ai Technology Enthusiasm Geek, Full Stack Developer. Web system architecture, NLP, Machine learning shenzhen, China @原语智能 5 0 90 336 6 C,Java 6400 1100
cr0hn nosqlinjection_wordlists: payload to test NoSQL Injections https://github.com/cr0hn/nosqlinjection_wordlists https://es.linkedin.com/in/garciagarciadaniel Security researcher, pentester, source code analyst & secure development, DevSecOps, Python developer and OWASP Madrid Chapter leader Madrid None 95 0 30 336 9 Python,JavaScript 829 137
cyrus-and mysql-unsha1 : Authenticate against a MySQL server without knowing the cleartext password : https://github.com/cyrus-and/mysql-unsha1 https://cardaci.xyz uid=0(root) gid=0(root) groups=0(root) Pisa / Tuscany / Italy None 31 0 163 335 7 Python,C,HTML,JavaScript,PHP 0 0
4w4k3 A Reverse Engineering Tool for py2exe applications. https://github.com/4w4k3/rePy2exe https://twitter.com/4w4k3Official Security Enthusiast, Python Coder, Lover of freedom. None None 12 0 3 334 0 Python,C++ 435 246
nihilus IDA 的 GUID/UUID Finder 插件: https://github.com/nihilus/GUID-Finder http://www.unixrus.se Sweden None 432 0 17 331 22 Python,C,C++ 173 47
derhuerst Tunnel TCP Through WebSockets (CLI Tool) https://github.com/derhuerst/tcp-over-websockets#tcp-over-websockets https://github.com/Bahn-X Making urban infrastructure more accessible & machine-readable using JavaScript. http://pronoun.is/he https://patreon.com/derhuerst Berlin @Bahn-X 439 0 3900 330 128 TypeScript,JavaScript 0 0
mbeaudru Modern JavaScript Cheatsheet: https://github.com/mbeaudru/modern-js-cheatsheet https://twitter.com/mbeaudru Javascript ecosystem, React and functionnal programming enthusiast None None 32 0 341 329 9 JavaScript,HTML 0 0
opsnull 和我一步步部署 kubernetes 集群 https://github.com/opsnull/follow-me-install-kubernetes-cluster https://blog.opsnull.com Yet another hacker! Beijing 4paradigm 60 0 892 325 152 Go,Shell,Emacs,C++ 0 0
mdsecactivebreach RDPInception: A proof of concept for the RDP Inception Attack https://github.com/mdsecactivebreach/RDPInception https://github.com/mdsecresearch MDSecs ActiveBreach Team Ring 0 @mdsecresearch 17 0 3 320 0 Python,C#,Visual,Batchfile 754 161
cryptolok ASLRay - 利用堆喷射绕过 Linux ELF x32/x64 ASLR 防御: https://github.com/cryptolok/ASLRay https://twitter.com/cryptolok trainer, hacker, OSCP, researcher, engineer, cypherpunk : #crypto #stegano #stealth #opsec #comsec #datasec #infosec #osint #pentest #redteam #unix #hardware Paris, France None 20 0 0 319 0 Python,Shell 285 84
jobertabma ground-control: 调试 SSRF / BLIND XSS / XXE 漏洞的脚本收集: https://github.com/jobertabma/ground-control None San Francisco / Groningen HackerOne 12 0 2 318 0 Shell,Ruby,JavaScript 337 77
hannob PHP Crashers https://github.com/hannob/php-crashers https://hboeck.de/ Berlin None 79 0 2 318 2 Python,Shell,PHP 1400 150
Tuhinshubhra RED_HAWK - 基于PHP编写的集信息收集、SQL漏洞扫描与爬虫于一体的渗透测试工具: https://github.com/Tuhinshubhra/RED_HAWK https://twitter.com/r3dhax0r I code and hack for fun! ... None 13 0 2 316 0 Python,PHP,JavaScript,CSS 0 0
re4lity Schtasks-Backdoor: Powershell 权限维持后门 https://github.com/re4lity/Schtasks-Backdoor https://github.com/PolarisLab @PolarisLab & MottoIN ShangHai PolarisLab 710 0 2700 312 101 C#,PowerShell,C++ 0 0
tinysec now , you can access dbghelp.dll and do some thing with pdb via js , enjoy it https://github.com/tinysec/dbghelp.js https://blog.tinysec.net Windows Kernel Researcher moon you can guess 8 0 4 310 0 C,JavaScript,Assembly 0 0
LordNoteworthy al-khaser - 恶意软件常用的虚拟机、模拟器、调试器、沙箱探测技术收集: https://github.com/LordNoteworthy/al-khaser https://twitter.com/LordNoteworthy Khwi Rassek. Morocco None 7 0 378 310 53 C,CSS,C++ 0 0
api0cradle Bypass AppLocker 的 30 种方法: https://github.com/api0cradle/UltimateAppLockerByPassList https://oddvar.moe None None 65 0 60 309 8 PowerShell,C++,XSLT 0 0
ufrisk PCILeech 2.0 released! - Mount Live RAM and Target File System over PCIe DMA! Makes pwning super easy ? https://github.com/ufrisk/pcileech None IT-Security Minion , DMA Hacker , @UlfFrisk Sweden None 15 0 68 307 15 Python,C,Verilog 0 0
JnuSimba Android 应用安全学习笔记 https://github.com/JnuSimba/AndroidSecNotes http://blog.csdn.net/jnu_simba Security engineer and developer ShenZhen, China Tencent 12 0 74 303 54 C,C++ 396 174
countercept doublepulsar-c2-traffic-decryptor: 网络层检测DOUBLEPULSAR攻击 https://github.com/countercept/doublepulsar-c2-traffic-decryptor https://github.com/countercept UK, New York, South Africa, Singapore @countercept 18 0 0 296 0 Python,C,Shell 922 321
worawit Eternalchampion SMB 漏洞(MS17-010)的多个 PoC: https://github.com/worawit/MS17-010 None Thailand None 3 0 6 295 0 Python,Go,C 1100 629
mazen160 An exploit for Apache Struts CVE-2017-5638 https://github.com/mazen160/struts-pwn https://mazinahmed.net Information Security Specialist / Penetration Tester None None 15 0 0 294 0 Python,Shell 341 119
CalebFenton apkfile - Android APP 分析与特征提取的库,将 APK 转化为 JSON 对象: https://github.com/CalebFenton/apkfile https://github.com/Sentinel-One I break stuff to make it better. Union City, CA @Sentinel-One 27 0 115 294 26 YARA,Ruby,Java,Smali 0 0
foospidy GrepBugs: A regex based source code scanner 基于正则的源码审计工具 https://github.com/foospidy/GrepBugs http://pxmx.io Human Internet None 75 0 321 292 50 Python,Shell 0 0
Te-k I have uploaded the source code and binaries of #FinSpy dumped by @ fleximinx on github : https://github.com/Te-k/flexidie https://www.randhome.io None None 60 0 135 288 104 Python,YARA,C 785 769
0x4D31 Deception-as-Detection - 基于欺骗的检测技术: https://github.com/0x4D31/deception-as-detection https://github.com/salesforce Lead Threat Detection Engineer @salesforce Sydney, Australia None 19 0 1100 285 77 Python,Go 0 0
wireghoul graudit - Bash 实现的源代码安全漏洞扫描器,可自定义漏洞的判断规则: https://github.com/wireghoul/graudit http://www.justanotherhacker.com www.justanotherhacker.com Melbourne, Australia None 45 0 92 280 41 C,Shell,Perl 559 134
vitalysim Awesome-Hacking-Resources : https://github.com/vitalysim/Awesome-Hacking-Resources None None None 13 0 59 280 8 Go,JavaScript,HTML 8100 1100
FanhuaandLuomu geetest_break: 极验验证码破解-源码+手册 https://github.com/FanhuaandLuomu/geetest_break https://github.com/soochow My research interest is Machine Learning, Deep Learning and NLP. suzhou @soochow University;@iqiyi 103 0 201 276 20 Python 0 0
tintinweb scapy-ssl_tls - 基于 scapy 的 SSL / TLS 层交互式数据包操作工具: https://github.com/tintinweb/scapy-ssl_tls http://www.oststrom.com breaks your things ❤ None None 55 0 83 274 22 Python,HTML,JavaScript 0 0
iBearcat S2-055 反序列化漏洞Exploit CVE-2017-7525 https://github.com/iBearcat/S2-055 https://twitter.com/d9g3gg Email: [email protected] China Liberal profession 48 0 2500 272 274 C,PHP,Java 0 0
nladuo 淘宝文胸商品评论内容爬取与简单分析 https://github.com/nladuo/taobao_bra_crawler http://nladuo.github.io A full-stack programer. Also a CS Ph.D candidate in Information Retrieval and Natural Language Processing. BeiJing,China ICT, UCAS. 47 0 285 270 41 C,Jupyter,Python,C++,Go,Java 0 0
aalhour awesome-compilers : A curated list of awesome resources on Compilers, Interpreters and Runtimes : https://github.com/aalhour/awesome-compilers https://github.com/trustyou Software Author. Data Juggler. (Martial) Artist. A well-versed tinkerer in many digital crafts, currently hyped distributed systems and big data processing! Munich, Germany @trustyou 157 0 1300 264 173 C#,Python,Shell,Assembly 0 0
graniet Operative - The Fingerprint Framework https://github.com/graniet/operative-framework https://twitter.com/graniet75 French security researcher, PoC terminator, coder of various tools,PHP Tokenizer, OSINT lover, creator of Operative Framework \xFF\xFF\xFF\xFF myAwakening 23 0 143 259 9 Go,Python,CSS 0 0
rxwx CVE-2017-11882 漏洞利用脚本,无需使用 WebDAV: https://github.com/rxwx/CVE-2017-11882/blob/master/packager_exec_CVE-2017-11882.py https://twitter.com/buffaloverflow UK NCC Group 19 0 1 255 0 Python,C# 0 0
maurosoria Web path scanner https://github.com/maurosoria/dirsearch None Argentina None 1 0 161 255 24 Python 2300 629
huntergregal MimiPenguin - Dumping cleartext credentials from memory on Linux hosts https://github.com/huntergregal/mimipenguin http://huntergregal.com Security Researcher None None 41 0 173 254 40 Python,C,Shell,PowerShell 2400 480
brandonprry wicked_cool_shellscripts_2e: PART DEUX!!! Full shell scripts for the 2nd edition of Wicked Cool Shell Scripts - https://github.com/brandonprry/wicked_cool_shell_scripts_2e https://volatileminds.net Working so hard to make it easier Austin, TX None 39 0 0 254 0 C#,Shell,HTML 234 145
ScottyBauer 研究员 ScottyBauer 公开了几个本月 Android 漏洞公告中涉及的 PoC(CVE-2017-8260 CVE-2017-0705 CVE-2017-8259): https://github.com/ScottyBauer/Android_Kernel_CVE_POCs/commit/0b4721f4c9061f2de2222bff50f6f719864b6a10 https://plzdonthack.me Indiana Qualcomm 15 0 8 254 8 TeX,C 594 201
Z-0ne SCADA-Rules: 工控网络通信协议中基于Snort构建报警规则 https://github.com/Z-0ne/SCADA-Rules http://plcscan.org/ 专注于工控安全攻防技术研究 & ICS/SCADA Security, SCADA/PLC Scanning and Census & BeaconLab China BeaconLab 6 0 584 253 261 Python,Lua 39 21
hlldz https://github.com/hlldz/Invoke-Phant0m. https://artofpwn.com Pwner, Red Teamer İstanbul, Türkiye None 5 0 186 249 23 Python,PowerShell,C++ 0 0
bhdresh CVE-2017-0199Python script to #exploit Microsoft RTF #RCE Author: @ bhdresh #meterpreter https://github.com/bhdresh/CVE-2017-0199 None This is a personal repository. Tools/opinions/comments are my own and not of my employer. None Personal repository 11 0 10 247 1 Python,C#,CSS 572 267
DrizzleRisk drizzleDumper: 一款基于内存搜索的Android脱壳工具 https://github.com/DrizzleRisk/drizzleDumper None Beijing None 79 0 24 246 2 Python,Makefile,C++ 1400 368
johngrib VimGameCodeBreak - VIM 编译器里也能玩游戏: https://github.com/johngrib/vim-game-code-break https://github.com/Artifriends-inc 기계인간 John Grib, 이종립 Seoul, South Korea @Artifriends-inc 85 0 68 240 9 JavaScript,Vim 1400 37
blacktop docker-cuckoo: Cuckoo Sandbox Dockerfile https://github.com/blacktop/docker-cuckoo https://github.com/maliceio Nowheresville @maliceio 89 0 167 240 18 Go,Python,Shell,Bro 0 0
r0oth3x49 Xpath Automated SQL Injection https://github.com/r0oth3x49/Xpath https://r0oth3x49.herokuapp.com Python & Info Sec lover. Pakistan None 9 0 0 238 0 Python 0 0
adtac autovpn : Automatically connect to a VPN in a country of your choice : https://github.com/adtac/autovpn https://adtac.in/ None None 31 0 18 234 0 Go,Zig 0 0
cherryljr PanDownload: 网盘下载器,支持百度云不限速度 https://github.com/cherryljr/PanDownload None 人生は、先の見えない航海です Japan; China None 7 0 4 233 3 Java 0 0
b-mueller Android App Security Checklist https://github.com/b-mueller/android_app_security_checklist https://github.com/ConsenSys Coder, researcher, security dude. Chiang Mai, Thailand @ConsenSys 73 0 169 233 29 Python,JavaScript,HTML 0 0
zcgonvh MS16-032: MS16-032(CVE-2016-0099)提权工具 https://github.com/zcgonvh/MS16-032 http://www.zcgonvh.com Window and .net None None 8 0 0 232 1 C#,C,Ruby,C++ 88 45
jseidl Babadook — PowerShell 编写的一个无连接弹性后门: https://github.com/jseidl/Babadook http://wroot.org Rio de Janeiro - Brazil None 30 0 12 232 17 Python,Shell,Java,PowerShell 463 230
tatsuyah Udacity 学习平台上的一个自动驾驶课程 Demo:利用机器学习和计算机视觉技术检测车辆: https://github.com/tatsuyah/vehicle-detection https://github.com/OryLab R&D Director at @OryLab Inc. Software Engineer/Machine Learning Engineer. Style matters. Tokyo, Japan @OryLab 29 0 523 231 160 Python,Jupyter 0 0
anshumanbh git-all-secrets - 通过利用多个开源 git 搜索工具来捕获所有 git 仓库中的敏感数据的工具: https://github.com/anshumanbh/git-all-secrets None Automatically secure all the things! None None 72 0 192 231 119 Go,Python,Shell,HCL 602 115
gh0stkey DoraBox: 多拉盒教学培训靶场 https://github.com/gh0stkey/DoraBox https://gh0st.cn 天行健,君子以自强不息;地势坤,君子以厚德载物。 China 米斯特安全团队 13 0 103 229 13 Python,PHP,HTML 358 98
superkojiman pwnbox : Docker container with tools for binary reverse engineering and exploitation : https://github.com/superkojiman/pwnbox https://www.techorganic.com Stand back! Im going to try hacking! 👨‍💻 None None 33 0 11 227 7 Python,Go,Shell 430 101
maK- scantastic-tool: masscan和nmap扫描结果存到elasticsearch https://github.com/maK-/scantastic-tool http://www.securit.ie Funky skunky code junky Dublin, Ireland Securit Consulting 42 0 59 225 47 Python,C 0 0
cw1997 NATBypass: 一款lcx在golang下的实现 https://github.com/cw1997/NATBypass http://www.changwei.me 热爱编程,热爱学习,喜欢交结朋友,对新生事物有着强烈的好奇心和求知欲。 台北市大安区基隆路4段43号 台湾科技大学 59 0 357 224 73 Python,Go,JavaScript,PHP,Verilog 0 0
Shellntel luckystrike - 恶意 Office 宏文档样本生成工具,PowerShell 代码编写: https://github.com/Shellntel/luckystrike None None None 7 0 2 224 0 Python,C,JavaScript,PowerShell,CSS 379 147
yeyintminthuhtut Awesome-Red-Teaming - 一份红队渗透测试资源列表: https://github.com/yeyintminthuhtut/Awesome-Red-Teaming http://pentest.space Twitter @yeyint_mth Singapore None 287 0 477 223 19 Shell 0 0
pandazheng Threat-Intelligence-Analyst: 威胁情报,恶意样本分析,开源Malware代码收集 https://github.com/pandazheng/Threat-Intelligence-Analyst http://pandazheng.blog.163.com Malware Analyst china pandazhengzheng 934 0 1900 223 299 Objective-C 502 195
lennartkoopmann Nzyme - 采集 802.11 管理数据帧,实现基于日志的 WiFi IDS: https://github.com/lennartkoopmann/nzyme https://github.com/Graylog2 Started @Graylog2, doing this and that. Houston, TX / Hamburg, GER Graylog, Inc 3 0 83 223 27 Ruby,Java 440 77
vesche basicRAT - A Python Remote Access Trojan https://github.com/vesche/basicRAT https://um.wtf please dont turn down my music USA Swimlane 35 0 689 219 93 Python,C,Shell 0 0
hzqst 用于Windows 7+的Intel VT-X / EPT进程监控工具(如Process Monitor) https://github.com/hzqst/Syscall-Monitor None China None 17 0 13 217 2 C,C++,POV-Ray 0 0
RUB-SysSec Open-sourced our research on C++ hierarchy reconstruction in binaries https://github.com/RUB-SysSec/Marx https://syssec.rub.de Bochum, Germany Ruhr-University Bochum 18 0 11 217 0 Python,C,C++ 358 98
meitar Awesome Lockpicking - 与开锁、锁具安全性有关的资料整理: https://github.com/meitar/awesome-lockpicking https://web.archive.org/web/20190206200948/https://maymay.net/blog/2019/02/06/why-i-am-publicly-disassociating-myself-from-the-recurse-center/ ⚑ Ⓐnti-capitalist Free Software developer, pro white genocide, abolish all prisons, 0xACAB ⚑ https://cyberbusking.org/ Code signing GPG key: C42F 2F04 C42D 489E 23DD 71CE 07EF AA28 AB94 BC85 193 0 45 215 0 Go,Shell,PHP,JavaScript,HTML 0 0
zer0yu ZEROScan: 借鉴了msf的漏洞利用框架 https://github.com/zer0yu/ZEROScan http://zeroyu.xyz/ Every light needs a shadow. You just have to learn how to control it,use it when you need it. None None 29 0 2100 214 1100 Python,C,CSS 0 0
0xdea frida-scripts: A collection of Frida.re scripts reverse Apps https://github.com/0xdea/frida-scripts/ https://0xdeadbeef.info/ You cant argue with a root shell. Italy None 11 0 81 214 0 Python,C,JavaScript,Assembly,PowerShell 506 84
xem Mini x86: x86 decompiler and emulator : https://github.com/xem/minix86 None None None 145 0 284 213 65 Assembly,HTML,Makefile 418 63
rocky python-uncompyle6: Python 反编译工具 https://github.com/rocky/python-uncompyle6 None NYC ConsenSys 118 0 162 213 1 Python,Ruby,C,Shell,Emacs 1200 142
eteran edb-debugger - 一款跨平台的 x86/x86-64 调试器: https://github.com/eteran/edb-debugger https://codef00.com United States Digital Operatives 38 0 431 211 58 C++ 0 0
giMini mimiDbg - 从内存中检索密码的 PowerShell 脚本: https://github.com/giMini/mimiDbg None None None 16 0 3 210 0 PowerShell 677 185
s0lst1c3 Toolkit for performing targeted evil twin attacks against WPA2 by @ s0lst1c3 http://bit.ly/2pTxt4t #cybersecurity... https://github.com/s0lst1c3/eaphammer http://twitter.com/s0lst1c3 Denver, CO None 87 0 72 209 62 Python,C,Makefile,PowerShell 0 0
gen0cide gscript - 可脚本执行的恶意软件动态运行库: https://github.com/gen0cide/gscript https://github.com/uber #InfoSec, #RedTeam, Golang Dev, FOSS advocate, hacker. Chaotic Good. San Francisco, CA Security Engineering @uber 138 0 44 208 32 Go,Java 0 0
pelya android-keyboard-gadget - 将 Android 设备模拟为 USB 键盘、鼠标来操作电脑,目前支持 Nexus、Sony、小米等一些手机型号: https://github.com/pelya/android-keyboard-gadget https://libsdl-android.sf.net/ Kiev None 62 0 47 207 0 C,Java 559 204
nethunteros Hunt domain names using DNSDumpster, WHOIS, Reverse WHOIS, (TODO: Shodan) https://github.com/nethunteros/punter None I make Nethunter for Kali Linux. This account is to test Nethunter as a ROM (for now). None None 72 0 311 207 2 Go 0 0
artkond Invoke-Vnc : Powershell VNC injector : https://github.com/artkond/Invoke-Vnc None Penetration Tester https://twitter.com/artkond None None 5 0 38 204 3 Python,C 0 0
ustayready CredSniper - 基于 Python 实现的网络钓鱼框架,支持抓取 2FA Tokens: https://github.com/ustayready/CredSniper None divergent thinker/breaker and researcher of stuff None None 39 0 7 203 7 Python,C#,HTML 724 155
Proteas macOS 10.12.4 的内核及驱动中的类型树,来自 Proteas: https://github.com/Proteas/macos-class-tree None Geek China None 35 0 194 203 61 C,Shell,C++ 193 44
rmusser01 Information Security Reference That Doesnt Suck https://github.com/rmusser01/Infosec_Reference http://rmusser.net/docs Contact Me: [email protected] None None 119 0 1700 202 30 Python,Lua,C 2000 496
codyd51 AxleOS : a UNIX-like kernel + userspace : https://github.com/codyd51/axle https://github.com/codyd51/axle https://twitter.com/phillipten I do a lot of reverse engineering on iOS, both the platform itself and first/third party apps. I also like to play with things in C. Paris, France None 80 0 391 202 30 Objective-C,HTML,Objective-C++ 378 40
alexhude Just pushed IDA plugin to load processor configurations. If you dont know what that is, you probably dont need it? https://github.com/alexhude/LoadProcConfig http://twitter.com/getorix Security Researcher ❖ Hardware Hacker ❖ Quality tools writer Melbourne, Australia None 9 0 0 202 0 Python,C++ 0 0
Raikia FirePhisha: full-fledged phishing framework to manage all phishing engagements https://github.com/Raikia/FirePhish https://twitter.com/raikiasec Dallas, TX Mandiant 16 0 80 202 4 Python,Lua,PHP,PowerShell,Perl 0 0
NytroRST NetRipper - 智能流量嗅探工具,最近新添加对 Chrome X64 SSL Hook 的支持: https://github.com/NytroRST/NetRipper/ None Interested in C/C++, ASM, Windows internals, reverse engineering, exploit and shellcode development Romania None 7 0 0 202 0 HTML,PowerShell,C++ 0 0
joaomatosf jexboss - Jboss 及 Java 反序列化漏洞利用工具: https://github.com/joaomatosf/jexboss http://twitter.com/joaomatosf Im just a fisherman. Brasil joaomatosf.com 4 0 59 199 5 Python,C,PHP,Java 1100 404
WeiChiaChang stacks-cli - 用于一键分析网站所用技术栈的命令行工具: https://github.com/WeiChiaChang/stacks-cli https://lihi.cc/VQ4ZS 🎹 X 📖 X 🏐 X 🏝 X 🌎 X 💻 My YouTube Channel https://lihi.cc/VQ4ZS Tainan, Taiwan Planet Earth 156 0 1300 198 92 JavaScript,Vue 0 0
SilentGhostX HighTouch-WPS-Breaker#Bash script to extract the #WPS pin of many #vulnerable #routers and get the password https://github.com/SilentGhostX/HT-WPS-Breaker None None None 1 0 1 198 0 Shell 514 230
bkerler Oppo/Oneplus 手机的固件解密工具: https://github.com/bkerler/oppo_decrypt https://twitter.com/viperbjk Reverse Engineer and Data/Crypto Analyst Germany RevSkills 314 0 3 197 14 Python,C,C++ 530 94
wainshine Chinese-Names-Corpus: 中文人名语料库 https://github.com/wainshine/Chinese-Names-Corpus None 一只产品汪! beijing None 10 0 488 195 1100 0 0
sam-b Papers, blogposts, tutorials for learning about Windows kernel exploitation, internals & (r,b)ootkits : https://github.com/sam-b/windows_kernel_resources https://twitter.com/_samdb_ UK None 34 0 206 195 5 Python,Go,HTML,C++ 0 0
rastating wordpress-exploit-framework: A framework for penetration testing of WordPress https://github.com/rastating/wordpress-exploit-framework/ https://github.com/DigitalInterruption United Kingdom @DigitalInterruption 144 0 154 195 0 Python,JavaScript,Ruby,PHP 0 0
cs01 A modern, browser-based frontend to gdb (gnu debugger). https://github.com/cs01/gdbgui/ https://github.com/grassfedcode Engineer at Oculus/Facebook, creator of gdbgui and various tools, occasional blogger (https://medium.com/@grassfedcode) Sunnyvale, California facebook 17 0 231 195 99 Python,JavaScript 0 0
RolfRolles SynesthesiaYS - Rolf Rolles 开源的一款 Shellcode 生成器: http://www.msreverseengineering.com/blog/2017/7/15/the-synesthesia-shellcode-generator-code-release-and-future-directions Github: https://github.com/RolfRolles/SynesthesiaYS None None None 9 0 0 194 0 Python,Java,C++ 207 48
emmericp ixy - 在用户态实现的 Linux 数据包处理驱动: https://github.com/emmericp/ixy https://github.com/croit PhD student at TUM, co-founder croit.io Munich, Germany @croit & Technical University of Munich 35 0 307 193 55 Lua,C,C++ 0 0
peewpw Invoke-WCMDump - 从凭据管理器转储 Windows 凭据的 PowerShell 脚本: https://github.com/peewpw/Invoke-WCMDump https://twitter.com/peewpw Philadelphia, PA None 7 0 8 190 0 Python,JavaScript,PowerShell,C++ 1100 236
xiaoxiaoleo windows_pentest_tools: Windows 渗透测试工具集 https://github.com/xiaoxiaoleo/windows_pentest_tools http://www.cnblogs.com/xiaoxiaoleo/ Be careful when execute my shit script. 🙃 Zion None 48 0 1100 189 354 C#,Python,Visual,PHP,JavaScript 154 95
urbanadventurer urbanadventurer:渗透中的用户名生成工具 https://github.com/urbanadventurer/username-anarchy http://www.MorningStarSecurity.com Melbourne, Australia None 8 0 17 188 8 Python,HTML,Ruby 1700 445
drivendata cookiecutter-data-science: 机器学习标准化模板生成工具 https://github.com/drivendata/cookiecutter-data-science http://www.drivendata.org None None 10 0 5 188 1 Python,HTML,Jupyter 2100 715
ropnop 破解 OpenNMS 系统中的密码 Hash: https://t.co/DBogVH5kHb Github: https://github.com/ropnop/opennms_hash_cracker None None None 24 0 125 187 1 Go,Python,JavaScript 206 43
thesp0nge owasp-orizon - Owasp Orizon 是一款源代码静态分析工具,用于发现 Java 应用中的安全问题: https://github.com/thesp0nge/owasp-orizon https://armoredcode.com Gessate, Milan, Italy codiceinsicuro.it 108 0 229 186 89 Java,Ruby 0 0
sorpaas Rux - A hobbyist microkernel written in Rust - https://github.com/sorpaas/rux https://that.world None None 186 0 481 186 172 Julia,CSS,Rust 0 0
moyix pdbparse - 用于解析 PDB 文件的 Python 库: https://github.com/moyix/pdbparse http://engineering.nyu.edu/people/brendan-dolan-gavitt Assistant Professor in CSE at NYU Tandon School of Engineering, focusing on security, program analysis, and reverse engineering. New York, NY None 30 0 19 186 13 Python,C,Objective-C 136 50
GrrrDog Java-Deserialization-Cheat-Sheet - Java 反序列化漏洞利用速查表: https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet https://agrrrdog.blogspot.com/ None None 20 0 219 185 36 Python,Java 1200 289
meirwah 应急响应大合集:用于安全事件响应的工具与资源列表 https://github.com/meirwah/awesome-incident-response/blob/master/README_ch.md https://www.demisto.com/ Tel Aviv Demisto 49 0 64 184 4 Go,Java 2700 674
SigPloiter SigPloit - 移动电信网络中针对 SS7, GTP, Diameter & SIP 协议的安全测试框架: https://github.com/SigPloiter/SigPloit None None None 6 0 65 182 108 Python,Java,Perl 528 224
shipcod3 mazda_getInfo - 攻击马自达汽车娱乐信息系统 USB 端口的 PoC: https://github.com/shipcod3/mazda_getInfo https://twitter.com/shipcod3 security researcher and appsec professional Philippines Bugcrowd Inc. 63 0 16 181 201 C,Shell,Python,C++,HTML,Ruby 116 44
neoneggplant EggShell - 命令行版的 iOS/macOS 远程管理工具,支持获得系统信息、设备控制、用户交互、定位信息等等: https://github.com/neoneggplant/EggShell None Atlanta GA iOS/Web Developer I like to mess around with python, node, swift, and objective c Atlanta, GA None 10 0 115 180 25 Logos,Objective-C,Shell,Swift 1000 271
5alt GitLeak:Github 上查找密码信息的小工具 https://github.com/5alt/GitLeak None None None 32 0 10 180 3 Python,JavaScript 100 22
roccomuso kickthemout : Kick devices off your network by performing an ARP Spoof attack with Node.js : https://github.com/roccomuso/kickthemout https://twitter.com/roccomuso Full Stack Developer - Linux, Iot, hacking, cryptos and Node.js enthusiast. Open Source addicted Rome None 105 0 2900 179 125 TypeScript,JavaScript 275 41
Ne0nd0g merlin - 使用 HTTP 通信的跨平台后渗透测试工具,介绍: https://medium.com/@Ne0nd0g/introducing-merlin-645da3c635a GitHub: https://github.com/Ne0nd0g/merlin None None None 19 0 11 179 6 Go,Python 2100 259
JusticeRage Manalyze: A static analyzer for PE executables https://github.com/JusticeRage/Manalyze None None None 12 0 14 179 8 Python,YARA,Java 0 0
breenmachine 之前推送过 RottenPotato - 从本地服务用户提权至 SYSTEM 的工具,有研究员将 RottenPotato 封装成了一个独立 DLL 模块 - RottenPotatoNG: https://github.com/breenmachine/RottenPotatoNG None United States None 16 0 2 178 0 Python,C#,C++ 359 226
yarrick iodine: Official git repo for iodine dns tunnel https://github.com/yarrick/iodine http://code.kryo.se Zürich, Switzerland None 9 0 13 176 6 C,Shell 0 0
Prodesire Python最佳实践指南 https://github.com/Prodesire/Python-Guide-CN https://github.com/aliyun Pythonista Hangzhou @aliyun 17 0 379 175 53 Python,Batchfile,Makefile 0 0
Sliim pentest-lab - 基于 OpenStack 的渗透测试实验环境: https://github.com/Sliim/pentest-lab None None None 30 0 6000 174 110 Python,Emacs,Ruby 0 0
ant4g0nist Susanoo - 一个 REST API 安全测试框架: https://github.com/ant4g0nist/Susanoo https://twitter.com/ant4g0nist Independent Security Researcher Den Haag, Netherlands None 153 0 233 173 61 Python,C,JavaScript 0 0
aguinet #wannacry in-memory private RSA key recovery for Windows XP : https://github.com/aguinet/wannakey https://twitter.com/adriengnt None None 46 0 34 172 6 Python,C++ 1000 154
eldraco domain_analyzer - 一个可以搜寻域名的各类信息并分析安全问题的工具: https://github.com/eldraco/domain_analyzer http://researchgate.net/profile/Sebastian_Garcia6 None CVUT University 34 0 36 171 62 Python,JavaScript,C++ 1500 187
lifetyper FreeRouter_V2: 一个适用于OpenWRT的全平台xx路由方案 https://github.com/lifetyper/FreeRouter_V2 http://www.lifetyper.com Father-Husband-Son None None 22 0 180 169 4 Python,KiCad,C,Shell,HTML 0 0
jopohl urh : Universal Radio Hacker - a software for investigating unknown wireless protocols : https://github.com/jopohl/urh None Research Associate / PhD Student. Interests: Wireless Security, Infrastructure Automation (DevOps), Artificial Intelligence Stralsund, Germany University of Applied Sciences Stralsund 2 0 4 169 0 Python 4000 379
govolution betterdefaultpasslist 设备或者常见端口默认用户名和密码列表 https://github.com/govolution/betterdefaultpasslist https://danielsauder.com/ None None 34 0 4 169 7 Python,C,Assembly,C++ 890 265
stanislaw awesome-safety-critical : Resources about programming practices for writing safety-critical software : https://github.com/stanislaw/awesome-safety-critical https://stanislaw.github.io/ Berlin, Germany PTScientists GmbH 114 0 1700 168 5 Objective-C,Makefile,C++ 0 0
whid-injector WHID - WiFi HID Injector - An USB Rubberducky / BadUSB On Steroids: https://github.com/whid-injector/WHID None An USB Rubberducky On Steroids None None 17 0 1 167 0 C,TypeScript 743 120
erevus-cn scan_webshell: 简单的webshell扫描 https://github.com/erevus-cn/scan_webshell None None None 18 0 20 165 7 Python,Ruby 466 258
edwardz246003 IIS 6.0 远程代码执行 https://github.com/edwardz246003/IIS_exploit/ None None None 9 0 4 161 4 Python,C++ 539 220
davehull Kansa - 一个基于 Powershell 的事件响应框架: https://github.com/davehull/Kansa http://trustedsignal.blogspot.com/ I am from enternetz Various and sundry 51 0 35 161 57 C#,Python,PowerShell 0 0
rockyzhengwu FoolNLTK: 最准的开源中文分词 https://github.com/rockyzhengwu/FoolNLTK http://www.midday.me None None 34 0 124 159 58 Python,Java 1300 324
jonluca Anubis - 子域名枚举及信息收集工具: https://github.com/jonluca/Anubis https://github.com/google Taking time off to travel. previously @google, @apple, @ElevateSecurity. Ex-Managing Director at @scopeusc. San Francisco, CA None 61 0 211 158 98 Python,Swift,Shell,JavaScript,Jupyter 0 0
cyberheartmi9 Apache Tomcat < 9.0.1 (Beta) / < 8.5.23 / < 8.0.47 / < 7.0.8 - JSP Upload Bypass / Remote Code Execution Exploit: https://github.com/cyberheartmi9/CVE-2017-12617 https://intx0x80.blogspot.com/ security Researcher ,Pwner CTFer , @intx0x80 None None 63 0 757 157 24 Python,HTML 316 118
OALabs Weekend project: automatic IAT rebuilder in Python! I built it because I couldn’t find one... https://github.com/OALabs/PyIATRebuild#DFIR https://github.com/herrcore @herrcore @idiom None None 7 0 0 157 0 Python,C,JavaScript 128 37
Arturus Kaggle网页流量时序预测比赛第一名方案 https://github.com/Arturus/kaggle-web-traffic http://suilin.me Moscow Yandex 22 0 123 155 1 Java,HTML,Jupyter 1000 457
MortenSchenk Windows 10 Creators 内存写漏洞的利用,来自 MortenSchenk 在 BlackHat 2017 会议演讲,PPT 和 相关代码: https://github.com/MortenSchenk/BHUSA2017 None None None 14 0 0 154 0 HTML,Assembly,PowerShell,C++ 163 56
p3nt4 https://github.com/p3nt4/PowerShdllPowerShdll https://twitter.com/xP3nt4 localhost None 25 0 259 153 28 C#,JavaScript,PowerShell 0 0
emptymonkey revsh is a tool for establishing reverse shells with terminal support https://github.com/emptymonkey/revsh https://twitter.com/emptymonkey Water Curtain Cave None 17 0 105 152 53 C 0 0
w3h icsmaster: 整合工控安全相关资源(ICS/SCADA Security Resource) https://github.com/w3h/icsmaster http://icsmaster.org Focus On ICS/SCADA Network Security (专注于工控网络安全研究) None None 20 0 175 148 15 Python,Lua,HTML,Shell 0 0
michalmalik linux-re-101 : A collection of resources for linux reverse engineering : https://github.com/michalmalik/linux-re-101 https://github.com/michalmalik @michalmalik Bratislava, Slovakia None 22 0 10 148 0 0 0
jesusprubio bluebox-ng - 基于 Node.js 实现的 VoIP 渗透测试框架: https://github.com/jesusprubio/bluebox-ng https://github.com/IBMResearch A Coruña @IBMResearch 37 0 2500 148 75 TypeScript,JavaScript,Rust 0 0
h2hconference H2HC 2017 Slides/Materials/Presentations: https://github.com/h2hconference/2017 https://www.h2hc.com.br Hackers To Hackers Conference (H2HC) é uma conferência organizada por pessoas que trabalham ou que estão diretamente envolvidas com pesquisas e desenvolvimento Brazil H2HC 17 0 0 147 0 Python,HTML 48 9
Cryin JAVA安全编码与代码审计 https://github.com/Cryin/JavaID/blob/master/JAVA%E5%AE%89%E5%85%A8%E7%BC%96%E7%A0%81%E4%B8%8E%E4%BB%A3%E7%A0%81%E5%AE%A1%E8%AE%A1.md https://cryin.github.io/ Enjoy programming. Write some interesting programs! None None 8 0 237 146 70 Python,PHP,C++ 253 90
onethawt idaplugins-list - 一份 IDA Plugin列表: https://github.com/onethawt/idaplugins-list/blob/master/README.md http://one.thawt.io Kernel None 58 0 14 144 0 Python,C#,C++ 1500 296
tatanus SPF - 一款社会工程学钓鱼框架: https://github.com/tatanus/SPF http://www.hillbillystorytime.com Stanford, KY 40484 None 14 0 81 143 21 Python,JavaScript,Perl 335 102
iSpring WebGlobe: 基于HTML5原生WebGL实现的轻量级Google Earth三维地图引擎 https://github.com/iSpring/WebGlobe None Beijing, China None 15 0 541 143 35 TypeScript,Java,JavaScript 0 0
AnthonyCalandra 新版本 C++ 语言(C++ 17/14/11)的新特性整理: https://github.com/AnthonyCalandra/modern-cpp-features https://anthony-calandra.com University of Waterloo - Undergraduate CS Waterloo, Ontario, Canada None 26 0 389 143 26 C,Java,C++ 0 0
adi0x90 AttifyOS - 针对 IoT 设备进行渗透测试的系统: https://github.com/adi0x90/attifyos https://github.com/attify San Francisco @attify - IoT and Mobile Security 18 0 10 142 1 Python,Shell 413 81
corna Intel 第四代 CPU HasWell 新引入的 Intel Boot Guard 保护特性的防护机制与自身的安全性研究。Intel-Boot-Guard 用于确保 BIOS 启动过程中的安全性。来自研究员 Alex Matrosov,今年夏天他在 BlackHat 也演讲了一个相关的议题《Betraying the BIOS: Where the Guardians of the BIOS are Failing》: https://github.com/corna/me_cleaner/wiki/Intel-Boot-Guard https://medium.com/@matrosov/bypass-intel-boot-guard-cc05edfca3a9 https://github.com/corna/me_cleaner/wiki/Intel-Boot-Guard None Bergamo, Italy None 25 0 14 141 1 Python,C++ 0 0
D35m0nd142 LFISuite - 本地文件包含漏洞的自动化扫描、攻击工具: https://github.com/D35m0nd142/LFISuite https://twitter.com/d35m0nd142 Grey Hat Hacker and programmer. I love computer security, with particular interest to web vulns. Creator of automatized hacking tools and scripts. None None 5 0 0 141 0 Python,C++ 663 209
tom0li 安全list 收藏 https://github.com/tom0li/collection-document https://tom0li.github.io/ Security Research None None 8 0 222 140 172 Python,HTML 0 0
jeremylong DependencyCheck: OWASP 一款检查Java依赖库缺陷的工具 https://github.com/jeremylong/DependencyCheck# None None None 26 0 24 140 4 Groovy,Java,Scala,HTML,Clojure,Dockerfile 0 0
huntcve Android 内核 ASoC 驱动的安全性分析,来自趋势科技的 Seven Shen: https://github.com/huntcve/slides/blob/master/seven_shen_shakacon.pdf None 深挖洞,广积粮,不称霸 China, Nanjing None 15 0 2 139 3 Python,C,HTML,Java 50 25
gitpitch Introducing GitPitch – Markdown Presentations for Devs on GitHub and GitLab : https://github.com/gitpitch/gitpitch https://gitpitch.com Founder and developer of gitpitch.com - modern slide decks for developers. None None 31 0 4 139 0 Java,CSS 4900 435
kshvmdn fsql : Search through your filesystem with SQL-esque queries : https://github.com/kshvmdn/fsql https://github.com/kshvmdn/fsql https://kshvmdn.com a friendly fellow Toronto, Canada None 57 0 420 138 40 Go,Shell,JavaScript 0 0
aancw Belati: The Traditional Swiss Army Knife for OSINT https://github.com/aancw/Belati https://petruknisme.com Just a puppet lovers and Open Source Enthusiast. Interested in Research Development and Non-Profit Organization. Passionate with OSINT. Indonesia None 245 0 1500 138 189 Python,Shell,HTML 0 0
P1kachu talking-with-cars - 汽车 CAN 总线分析工具: https://github.com/P1kachu/talking-with-cars http://p1kachu.github.io I do low level programming, security and whatever looks fun to me. Currently working on cars. None None 14 0 156 138 60 Python,C,Java,C++ 276 96
bartblaze Made a small tool to disable Intel AMT on Windows. Runs on both x86 and x64 Windows operating systems: https://github.com/bartblaze/Disable-Intel-AMT https://bartblaze.blogspot.com/ None None 9 0 359 137 12 Python,PHP 0 0
justinsteven Remote directory traversal in Metasploits downloading of files from victims. Patch em if you got em! https://github.com/justinsteven/advisories/blob/master/2017_metasploit_meterpreter_dir_traversal_bugs.md https://ring0.lol Brisbane, Australia None 12 0 6 135 0 C 0 0
interference-security Damn Vulnerable Web Sockets - vulnerable web application which works on web sockets for client-server communication: https://github.com/interference-security/DVWS https://twitter.com/xploresec None None 46 0 233 135 9 Python,C,PHP,JavaScript,Perl 284 94
m4b bingrep - 专门搜索二进制文件的 Grep 工具: https://github.com/m4b/bingrep/ http://www.m4b.io None None 63 0 85 134 13 Rust 1200 58
6IX7ine certstreamcatcher - 通过观察证书透明度日志来捕获网络钓鱼的工具: https://github.com/6IX7ine/certstreamcatcher https://github.com/6IX7ine Brazilian player. Cyber Security research, Infosec, Writer, Hacker / Full Stack Developer 🌌 São Paulo, Brazil @6IX7ine 145 0 189 132 191 Python,JavaScript 0 0
yadutaf 使用 Linux tracepoints, perf and eBPF 跟踪网络数据包的流程: https://blog.yadutaf.fr/2017/07/28/tracing-a-packet-journey-using-linux-tracepoints-perf-ebpf/ Github: https://github.com/yadutaf/tracepkt https://github.com/EasyMile I torture packets / containers. Toulouse, FR @EasyMile 41 0 101 130 3 Python,Go,C,Shell 402 33
szcf-weiya 动态IP解决新浪的反爬虫机制 https://github.com/szcf-weiya/SinaSpider https://hohoweiya.xyz Ph.D (Pre-candidacy) in Statistics Hong Kong The Chinese University of Hong Kong 63 0 179 129 74 Jupyter,Python,Julia,TeX,R,C++ 0 0
nongiach Linux 内核 waitid 系统调用本地提权漏洞(CVE-2017-5123)Exploit: https://github.com/nongiach/CVE/tree/master/CVE-2017-5123 None @chaignc on twitter None None 29 0 78 129 50 Python,C,Assembly 509 71
Dor1s 学习使用Clang Libfuzzer Fuzz C/Cpp代码 https://github.com/Dor1s/libfuzzer-workshop/tree/master/lessons https://github.com/google Information Security Engineer @ Google Chrome None @google 19 0 34 129 54 C,Shell,C++,Hack 0 0
ninjaprawn async_awake-fun - 在 Ian Beer 上周公开的 async_awake Exploit 的基础上写的一个更完善的 Exploit: https://github.com/ninjaprawn/async_awake-fun http://ninjaprawn.com 18yo. - Security Australia None 32 0 134 128 51 HTML,Shell,C,JavaScript,Objective-C 0 0
v-p-b A list tracking real-world exploits against anti-virus software: https://github.com/v-p-b/avpwn http://blog.silentsignal.eu None Silent Signal 48 0 118 127 40 Python,Java,Ruby,PowerShell 69 26
sashs A little introduction into semantic search feature in ropper. https://scoding.de/semantic-search-in-ropper https://github.com/sashs/Ropper/tree/dev https://github.com/sashs/Ropper/tree/dev https://scoding.de None None 6 0 78 127 6 Python,Ruby 782 140
exp-db AI-Driven-WAF: Artificial intelligence-driven Web Firewall https://github.com/exp-db/AI-Driven-WAF http://www.evilclay.com Web Security Development & Research None None 12 0 168 125 17 Python,PHP 0 0
nathanlopez Stitch - a cross platform python RAT https://github.com/nathanlopez/Stitch None None None 2 0 12 124 0 Python 1300 377
konstruktoid Ubuntu Systemd 安全加固: https://github.com/konstruktoid/hardening https://www.linkedin.com/in/thosjo Sweden None 40 0 0 124 3 Python,Shell 375 71
RamadhanAmizudin python-icap-yara: An ICAP Server with yara scanner for URL or content. https://github.com/RamadhanAmizudin/python-icap-yara http://blog.rz.my Daydreamer Malaysia None 49 0 1500 124 263 Python,PHP,JavaScript 0 0
masatokinugawa 浏览器 XSS Filter Bypass Cheat Sheet : https://github.com/masatokinugawa/filterbypass http:///////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////////twitter.com/kinugawamasato None None 6 0 0 122 0 Python,HTML,JavaScript,C++ 616 120
debasishm89 OpenXMolar: An MS OpenXML Format Fuzzing Framework https://github.com/debasishm89/OpenXMolar http://www.debasish.in/ Information Security Enthusiast. https://twitter.com/debasishm89 None None 18 0 8 122 0 Python 89 34
MichielDerhaeg Build yourself a Linux : https://github.com/MichielDerhaeg/build-linux https://derhaeg.be Belgium None 17 0 19 120 2 Go,Shell,Haskell 4700 268
haccer subjack: Hostile Subdomain Takeover tool written in Go https://github.com/haccer/subjack https://github.com/Hacker0x01 Tampa, FL @Hacker0x01 5 0 107 118 0 Go,Python 0 0
NickstaDB BaRMIe - Java RMI枚举和攻击工具: https://github.com/NickstaDB/BaRMIe https://www.cognitous.co.uk/ Security researcher, exploit developer, pentester, and founder of Cognitous Cyber Security. United Kingdom Cognitous Cyber Security 16 0 14 118 3 Python,Shell,Java 327 62
fuzzbunch NSA/fuzzbunch https://github.com/fuzzbunch/fuzzbunch None None None 1 0 0 117 0 Python 764 407
eth0izzle bucket-stream - 通过检测证书透明报告日志监测 Amazon S3 Buckets: https://github.com/eth0izzle/bucket-stream http://www.darkport.co.uk I make stuff, break stuff, and protect stuff from getting hacked. @darkp0rt London None 8 0 18 117 7 Python,C# 0 0
daniestevez gr-satellites - 针对特定卫星的 GNU Radio 解码器集合: https://github.com/daniestevez/gr-satellites http://destevez.net Madrid, Spain None 42 0 33 117 2 Python,CMake,Jupyter,C++,OpenEdge 0 0
bitwiseshiftleft SJCL – Stanford JavaScript Crypto Library : https://github.com/bitwiseshiftleft/sjcl None None None 5 0 2 117 0 Python,C,JavaScript,C++ 5400 735
arkadiyt Hackerone/Bugcrowd 平台的漏洞数据 DUMP,有研究员在 GitHub 上离线存储了 Hackerone/Bugcrowd 的漏洞报告并且定期更新: https://github.com/arkadiyt/bounty-targets-data https://arkadiyt.com San Francisco, CA None 21 0 16 116 0 Ruby 0 0
sebdraven Python 与机器学习:恶意软件数据集的聚类,来自 Hack.Lu 2017 会议上的一个 Workshop https://github.com/sebdraven/hack_lu_2017 http://twitter.com/Sebdraven CEO of SCTIF and Researcher at LSE (Epita) Anywhere None 42 0 11 114 6 Python,Jupyter 0 0
1u4nx Exploit-Exercises-Nebula 渗透教程 https://github.com/1u4nx/Exploit-Exercises-Nebula/ http://www.shellcodes.org Chengdu None 17 0 230 113 63 Python,JavaScript,Emacs,Common 199 96
withzombies use computer vision to find deceptive IDNs https://github.com/withzombies/deceptiveidn None New York, NY None 18 0 175 112 18 Python,CMake,Swift,C++ 26 4
ion-storm My Sysmon Threat Intelligence Dashboard for Graylog Available for Download: https://github.com/ion-storm/sysmon-config https://github.com/ion-storm/sysmon-config None None None 95 0 697 112 138 Go,Shell,C,Batchfile,Python 394 74
SycloverSecurity 2017补天沙龙成都站 papers https://github.com/SycloverSecurity/papers/tree/master/2017%E8%A1%A5%E5%A4%A9%E6%B2%99%E9%BE%99%E6%88%90%E9%83%BD%E7%AB%99 http://www.sycsec.com/ SiChuan, China Syclover Security Team 4 0 0 112 0 C,HTML,Ruby 49 15
t3ntman Advanced Social Engineering for Red Teams. https://github.com/t3ntman/Conference-Talks/blob/master/Advanced%20Social%20Engineering%20for%20Red%20Teams.pdf None None None 4 0 14 111 26 C#,Python 216 57
plajjan Run virtual routers with docker https://github.com/plajjan/vrnetlab https://github.com/SpriteLink Network Automation Ninja at Deutsche Telekom / TeraStream. Stockholm, Sweden Deutsche Telekom / Terastream, @SpriteLink 73 0 186 111 17 Python 416 89
SadProcessor EmpireDog - BloodHound 和 PowerEmpire 的 PowerShell 模块收集: https://github.com/SadProcessor/EmpireDog None None None 7 0 3 111 0 PowerShell 163 42
vah13 SAP_vulnerabilities: DoS exploits for SAP products https://github.com/vah13/SAP_vulnerabilities None https://twitter.com/vah_13 Armenia, Yerevan None 65 0 117 110 1 Python,Java,HTML,JavaScript,C++ 384 113
talos-vulndev Great work on Windows Intel PT driver, now support kernel mode tracing. Cool guys @richinseattle and @aall86 !. https://github.com/talos-vulndev/WindowsIntelPT None None None 7 0 0 110 0 Python,C,C++ 124 35
richinseattle Evolutionary Kernel Fuzzing,来自 Talos 团队研究员在 BlackHat 会议关于 Windows/Linux 内核 Fuzzing 技术的演讲: https://github.com/richinseattle/EvolutionaryKernelFuzzing/blob/master/slides/Evolutionary%20Kernel%20Fuzzing-BH2017-rjohnson-FINAL.pdf None None None 185 0 921 109 26 Python,C,Java,Rust 61 11
milostosic MTuner - 一个可用于 Windows, PS4, PS3 上的 memory profiler、内存泄漏分析工具: https://github.com/milostosic/MTuner https://twitter.com/milostosic Shenzhen, China None 14 0 30 109 12 Lua,C,C++ 1500 92
hteso iaito : A Qt and C++ GUI for radare2 reverse engineering framework : https://github.com/hteso/iaito cc @ hteso https://github.com/hteso/iaito http://www.commandercat.com None None 14 0 14 108 1 Python,C,C++ 1500 137
vallejocc 用于解密 Cerber 勒索软件二进制文件中字符串的 IDA Pro 脚本: https://github.com/vallejocc/ida_scripts/blob/master/malware_analysis_scripts/cerber_string_decryptor.py http://www.vallejo.cc None None 17 0 40 107 30 Python,C# 0 0
deroko liberty writeup defcon 2017 https://github.com/deroko/liberty http://deroko.phearless.org None None 19 0 6 106 7 Python,C,Assembly 118 20
Kkevsterrr Introducing Backdoorme - a powerful backdooring utility https://github.com/Kkevsterrr/backdoorme None None University of Maryland 16 0 84 106 12 Python,JavaScript 0 0
ArmisSecurity Armis 团队分享的 BlueBorne 蓝牙漏洞 Exploit PoC: https://github.com/ArmisSecurity/blueborne http://www.armis.com Armis is the agentless IoT security platform that lets businesses discover, profile, and sanction the devices around them. Palo Alto, CA Armis, Inc. 2 0 0 106 0 Python,C 456 183
katjahahn Added hints for code injection functions to #PortexAnalyzer. New version is online.https://github.com/katjahahn/PortEx/tree/master/progs https://github.com/katjahahn/PortEx/tree/master/progs None None None 6 0 21 105 15 Python,Java,Scala 266 61
SYWorks waidps: Wireless Auditing, Intrusion Detection & Prevention System https://github.com/SYWorks/waidps https://www.facebook.com/syworks None SYWorks 9 0 5 105 2 Python,HTML 387 159
brainsmoke ASLR on the Line - 利用 CPU 处理器的侧信道问题从 JavaScript 中 Bypass 浏览器的 ASLR: https://github.com/brainsmoke/pub-archive/raw/master/slides/aotl-34c3-slides.pdf None None None 34 0 7 104 0 Python,Go,C,Assembly 0 0
n4xh4ck5 V1D0m: Enumerate subdomains through Virustotal https://github.com/n4xh4ck5/V1D0m https://twitter.com/@n4xh4ck5 fwhibbit.es None 30 0 0 103 9 Python 89 28
monoxgas sRDI - 用 Shellcode 实现的 DLL 反射注入。可以将指定 DLL 文件转换成 Shellcode 输出: https://github.com/monoxgas/sRDI None Utah, United States Silent Break Security 14 0 28 103 1 C#,Python,Ruby,PowerShell 381 107
blacknbunny ShellcodeToAssembly - shellcode 转汇编代码的工具: https://github.com/blacknbunny/ShellcodeToAssembly https://blacknbunny.github.io/ 筑路工人 17 y/o Youtube : http://tiny.cc/2y944y https://twitter.com/0DAYanc None None 20 0 15 103 3 Python,HTML 0 0
Lingerhk 基于机器学习的分布式webshell检测系统-项目代码 https://github.com/Lingerhk/fshell https://www.s0nnet.com s0nnet is on the way. hangzhou XiyouLinuxGroup 35 0 13 103 27 Python,PHP,JavaScript,C++ 0 0
rajeshmajumdar BruteXSS is a tool written in python simply to find XSS vulnerabilities in web a https://github.com/rajeshmajumdar/BruteXSS https://github.com/SigBitsLabs Founder & Security Researcher @SigBitsLabs India @SigBitsLabs 34 0 6 102 3 Python,JavaScript,Ruby 175 74
mempodippy snodew:PHP root (suid) reverse shell https://github.com/mempodippy/snodew None [email protected] Edinburgh, Scotland None 5 0 5 101 3 C,Shell 684 161
dzonerzy GoWAPT - Web 应用渗透测试工具: https://github.com/dzonerzy/goWAPT None 0xdeadbeef Italy, Rome Consulthink 38 0 46 101 6 Go,Python,C,Swift 213 55
m0rtem CloudFail - 利用 DNS 的配置错误以及旧数据记录,定位 CloudFlare CDN 背后的真实 IP: https://github.com/m0rtem/CloudFail https://sploit.io Your friendly neighborhood hacker follow me: http://twitter.com/m0rtem None SPLOIT SECURITY 5 0 65 100 5 Python,PHP,HTML 766 165
gaasedelen Lighthouse ( https://github.com/gaasedelen/lighthouse) None None None 2 0 1 100 0 Python 823 157
doadam Zimperium 发布 iOS <= 10.3.1 的内核漏洞利用: https://github.com/doadam/ziVA 为此,蒸米spark写了一篇《关于iOS 10.3.1 ziVA内核漏洞利用的简单分析》: https://github.com/doadam/ziVA None None None 4 0 2 100 0 Objective-C,C,C++ 311 114
ewilded psychoPATH - hunting file uploads & LFI in the dark https://github.com/ewilded/psychoPATH None The Ministry of Health warns: programming seriously harms you and others around you. Poland hackingiscool 47 0 858 99 42 PHP,Java,C++,Perl 245 74
depthsecurity haveIbeenHarvested - Automated HaveIbeenPwned lookups using theharvester results https://github.com/depthsecurity/haveIbeenHarvested http://www.depthsecurity.com Kansas City, MO Depth Security 12 0 1 99 1 Python,Ruby 316 40
RoliSoft ReconScan - 一款网络侦察和漏洞评估工具: https://github.com/RoliSoft/ReconScan https://rolisoft.net Târgu Mureș, Romania None 30 0 50 99 0 Python,C#,Java,C++ 1400 144
floyd-fuh 破解 Java Key Store (JKS) 文件中存储的密钥信息,Java 和 Android 一直默认使用 JKS 文件存储密钥。这个项目来源于 POC,,GTFO 杂志的一篇文章《Nail in the Java Key Store Coffin》: https://github.com/floyd-fuh/JKS-private-key-cracker-hashcat http://www.floyd.ch http://www.floyd.ch None None 34 0 6 97 10 Python,Shell,Java 171 33
federicodotta HandyCollaborator: Burp Suite plugin created for using Collaborator tool https://github.com/federicodotta/HandyCollaborator None None None 16 0 24 97 3 Java 0 0
Plazmaz MongoDB-HoneyProxy : A honeypot proxy for mongodb. It will proxy and log all traffic to a dummy mongodb server : https://github.com/Plazmaz/MongoDB-HoneyProxy https://github.com/pluralsight Born 1998, been programming since age 9. I enjoy messing with things until they break/work. Seattle, WA, USA @pluralsight 39 0 68 96 6 Python,JavaScript 0 0
mbechler Java Unmarshaller Security - Turning your data into code execution https://github.com/mbechler/marshalsec https://mbechler.github.io/ Germany None 5 0 0 95 0 HTML,Java 0 0
SharadKumar97 OSINT-SPY Search using OSINT(Open Source Intelligence) https://github.com/SharadKumar97/OSINT-SPY None None None 1 0 0 95 0 Python 266 82
codewatchorg sqlipy - Burp Suite 的 Python插件,使用SQLMap API 集成了 SQLMap: https://github.com/codewatchorg/sqlipy https://www.codewatch.org None None 15 0 0 94 0 Python,Java,PowerShell,C++,Perl 237 78
Paradoxis The PHP module rootkit [CODE] https://github.com/Paradoxis/PHP-Rootkit https://github.com/DearBytes Whats up, Im Luke Paris; a Dutch software engineer with a passion for penetration testing, my weapons of choice are Python and Linux. The Netherlands @DearBytes 40 0 441 94 30 Python,C,Shell,HTML 0 0
Lcys lcyscan:Python插件化漏洞扫描器 https://github.com/Lcys/lcyscan https://phpinfo.me None None 3 0 327 94 21 Python,PHP,Dockerfile 0 0
ITAYC0HEN A journey into Radare 2 – (Part 1) : Simple crackme : https://www.megabeets.net/a-journey-into-radare-2-part-1/ , Source-code : https://github.com/ITAYC0HEN/A-journey-into-Radare2/blob/master/Part%201%20-%20Simple%20crackme/megabeets_0x1.c https://github.com/radareorg I am a security researcher, reverser, blogger, activist and a big fan of the open-source reverse engineering framework radare2. aka Megabeet None @radareorg , @CheckPointSW 26 0 12 94 3 C,Shell,Python,C++,HTML,PowerShell 0 0
0ang3el EasyCSRF - 用于测试 CSRF 的 BurpSuite 插件: https://github.com/0ang3el/EasyCSRF None None None 9 0 0 93 0 Python,Java,Perl 122 34
i3visio OSRFramework: Open Sources Research Intelligence Framework https://github.com/i3visio/osrframework http://www.i3visio.com España i3visio 32 0 21 91 0 Python,JavaScript,CSS 328 105
ThomasTJdev WMD (Weapon of Mass Destruction) : Python framework for IT security tools : https://github.com/ThomasTJdev/WMD http://ttj.dk Nim & Arch None TTJ codefactory 63 0 104 91 11 Python,Nim 0 0
vy hrrs : Record and replay HTTP requests in Java EE and Spring applications : https://github.com/vy/hrrs https://vlkan.com/ The Netherlands None 58 0 66 90 0 C,Java,Common 60 15
lowleveldesign wtrace - Command line tracing tool for Windows, based on ETW. - https://github.com/lowleveldesign/wtrace https://lowleveldesign.org System Engineer • Interested in profiling, security, and OS internals Poland None 18 0 89 90 0 C#,ASP,C++ 0 0
putterpanda Mimikittenz - A post-exploitation powershell tool for extracting juicy info from memory https://github.com/putterpanda/mimikittenz https://au.linkedin.com/in/jamieson-o-reilly-13ab6470 None None 3 0 2 89 0 HTML,PowerShell 1300 284
SilverMoonSecurity Vulnerability-Exploit-Fuzz-Mitigation 漏洞利用与挖掘思维导图 https://github.com/SilverMoonSecurity/Security-misc https://twitter.com/flyic Moony Li @Flyic Vulnerability hunt and exploit Mac, Win, ios, Android, SandBox, Prsentate BlackHat EU/Pacsec/CodeBlue since2016 Buddist of 阿弥陀佛 None T 13 0 0 89 25 C 196 56
DenizParlak Zeus - AWS 安全审计与加固工具: https://github.com/DenizParlak/Zeus http://www.denizparlak.com/ linux/unix ninja. RHCSA - RHCE - LFCS - OCA Samsun None 15 0 4 89 1 Shell,JavaScript 542 65
dineshshetty iOS-SandBox-Dumper - iOS 中每个 APP 都运行在自己的 Sandbox 中,程序 Binary 文件、数据文件也都相应地存储在自己的隔离 GUID 文件夹,iOS-SandBox-Dumper 这个工具用于帮助研究员定位 Binary 和数据文件的路径: https://github.com/dineshshetty/iOS-SandBox-Dumper None None None 13 0 6 88 7 CMake,Objective-C,Java,C,Dockerfile 600 199
fozavci VIPROY - VoIP Pen-Test Kit for Metasploit Framework https://github.com/fozavci/viproy-voipkit http://viproy.com/fozavci Australia None 6 0 8 87 13 Ruby 273 71
lachesis scallion : GPU-based Onion Hash generator : https://github.com/lachesis/scallion https://alloscomp.com/ San Francisco, CA None 54 0 35 86 0 C#,Python,Shell 0 0
blazeinfosec bt2 - 使用 Python 编写的一款利用 Telegram 通信平台作为 C&C 服务的后门工具: https://github.com/blazeinfosec/bt2 https://www.blazeinfosec.com South America and Europe Blaze Information Security 12 0 4 86 7 Python,Ruby 152 54
d30sa1 RootKits-List-Download : This is the list of all rootkits found so far on github and other sites : https://github.com/d30sa1/RootKits-List-Download None Dont Ask.. None None 15 0 32 85 3 Python 515 230
Quitten Autorize - BurpSuite 自动化认证测试插件: https://github.com/Quitten/Autorize None None None 17 0 3 85 1 Python,PHP 242 88
skavanagh KeyBox - a web-based SSH console that centrally manages administrative access to systems : https://github.com/skavanagh/KeyBox https://github.com/skavanagh/KeyBox https://twitter.com/spkavanagh6 Cleveland, OH None 13 0 69 84 4 JavaScript,Java 63 10
hgascon Pulsarnetwork fuzzer with automatic protocol learning and simulation capabilites by @ hgascon https://github.com/hgascon/pulsar https://hugogascon.com None None 21 0 185 84 68 Python,JavaScript 224 49
bitvijays Execute Infra PenTest engagements faster! https://github.com/bitvijays/Pentest-Scripts None None None 6 0 0 84 0 Ruby,Shell,Puppet,HTML 166 53
tazjin Reverse-engineering WatchGuard Mobile VPN : https://www.tazj.in/en/1486830338 , watchblob : https://github.com/tazjin/watchblob https://github.com/google computers London, UK @google 139 0 135 83 51 Go,Nix,Emacs,Rust 0 0
nurupo rootkit - 针对 Ubuntu 16.04 和 10.04 的 rootkit: https://github.com/nurupo/rootkit None GPG: 0x6F5509774B1EF0C2 nurupo at irc://chat.freenode.net None 64 0 301 83 13 AutoIt,C,Assembly,C++ 0 0
jandre safe-commit-hook - Git pre-commit hook,在提交前检测本次提交是否包含敏感文件: https://github.com/jandre/safe-commit-hook http://jenpire.com Boston, MA None 90 0 255 83 12 Go,Python,JavaScript,C++ 0 0
yanxiu0614 subdomain3:a simple and fast tool for bruting subdomains https://github.com/yanxiu0614/subdomain3 None A person who can not do anything! None china 3 0 111 82 12 Python 365 97
t94j0 AIRMASTER: 红蓝对抗中对过期域名的利用 https://github.com/t94j0/AIRMASTER https://github.com/ireallydontcare Wonderful, the Flatline said, I never did like to do anything simple when I could do it ass-backwards. ―Neuromancer Charleston, SC @ireallydontcare 75 0 132 82 154 Go,Python,Ruby,C# 0 0
kokjo UniversalROP - 基于 Z3 求解器和 Unicorn 模拟器写的一个 Gadgets 搜索工具: https://github.com/kokjo/universalrop http://ebfe.dk Matematician. Hacker with the Pwnies student organization from DIKU. Denmark None 31 0 13 82 1 Python,C,CSS 0 0
marin-m pbtk: A toolset for reverse engineering and fuzzing Protobuf-based apps https://github.com/marin-m/pbtk https://medium.com/@marin_m Paris, France None 3 0 0 81 0 Python 503 53
k3170makan PyMLProjects: Python 机器学习项目: https://github.com/k3170makan/PyMLProjects https://blog.k3170makan.com Cape Town None 29 0 70 81 10 Python,C,Shell 128 29
jtesta ssh-mitm : SSH MITM tool : https://github.com/jtesta/ssh-mitm https://www.positronsecurity.com/ Senior penetration tester and founder of Positron Security. Board member & treasurer of B-Sides Rochester. @therealjoetesta Rochester, NY Positron Security 20 0 21 80 7 Python,C,Shell,Ruby 0 0
pyllyukko user.js - Firefox 配置安全加固脚本: https://github.com/pyllyukko/user.js https://twitter.com/pyllyukko Finland None 31 0 152 79 17 Shell,JavaScript,Ruby,PowerShell,Vim 1600 152
Voulnet 昨天推送的 Microsoft Office RTF WSDL Parser 野外被利用 0Day 的 PoC: https://github.com/Voulnet/CVE-2017-8759-Exploit-sample https://github.com/Voulnet/CVE-2017-8759-Exploit-sample https://twitter.com/voulnet Kuwait None 8 0 11 79 10 Python 251 107
ssooking CTFDefense: 一些CTF的离线工具 https://github.com/ssooking/CTFDefense http://www.cnblogs.com/ssooking 征途漫漫,步履铿锵,无畏、无惧、无阻! None None 13 0 67 78 2 Python,Shell,JavaScript 222 70
sergey-pronin Awesome-Vulnerability-Research: 漏洞研究技术资源 https://github.com/sergey-pronin/Awesome-Vulnerability-Research None getCurrentPosition(); None 105 0 331 78 102 Python 0 0
zacbrown . 基于 Windows ETW(事件日志)的入侵检测,来自微软研究员在 DerbyCon 2017 会议的演讲。之前推送过他在微软 Blog 上写过的两篇相关文章: https://github.com/zacbrown/hiddentreasure-etw-demo/blob/master/zbrown-HiddenTreasureETW-DerbyCon7.pdf https://blogs.technet.microsoft.com/office365security/hidden-treasure-intrusion-detection-with-etw-part-1/ https://github.com/zacbrown/hiddentreasure-etw-demo/blob/master/zbrown-HiddenTreasureETW-DerbyCon7.pdf https://github.com/redcanaryco Principal Software Engineer/Dev Lead at @redcanaryco. I like OSes, compilers, and security. Formerly with @microsoft Office 365 Security and Windows. Seattle, WA @redcanaryco 42 0 198 77 15 C#,Emacs,C++ 77 19
leoloobeek LAPSToolkit - 对部署了 LAPS 解决方案的域环境的利用工具: https://github.com/leoloobeek/LAPSToolkit None None None 22 0 36 77 0 Go,C#,PowerShell 0 0
denandz fuzzotron - 一个基于 TCP/UDP 的 fuzz 工具: https://github.com/denandz/fuzzotron https://pulsesecurity.co.nz Auckland, New Zealand None 11 0 0 77 0 C,Python,C++,Verilog,Go,PowerShell 750 119
dark-lbp ISF - 基于 Python 的工控漏洞利用框架: https://github.com/dark-lbp/isf https://dark-lbp.github.io/ None None 47 0 211 77 22 Python 0 0
vnik5287 Intel TSX/RTM (Restricted Transactional Memory) 缓存侧信道攻击 Bypass Linux kASLR PoC: https://github.com/vnik5287/kaslr_tsx_bypass http://cyseclabs.com Sydney None 9 0 0 76 0 Python,C,CSS 58 26
ron190 jsql-injection - Java 编写的 SQL 注入工具: https://github.com/ron190/jsql-injection https://twitter.com/ron190jsql None None 2 0 21 76 16 Java 608 226
droope 基于CMS插件的扫描器 https://github.com/droope/droopescan https://droope.org/ New Zealand Freelance Security Consultant 53 0 50 76 16 Python,C,Shell 0 0
Mosuan FileScan: 敏感文件扫描 / 二次判断降低误报率 https://github.com/Mosuan/FileScan http://www.0aa.me/ Huobi Security - SDL Team BeiJing None 32 0 117 76 29 Python,JavaScript 132 36
akayn 研究员 akayn 整理的 HEVD Windows 内核驱动漏洞利用方面的资料和代码: https://github.com/akayn/demos http://rce.wtf None None 14 0 23 75 0 Python,C,HTML,C++ 0 0
restran web-proxy: 基于 Tornado 实现的 Web 站点反向代理 https://github.com/restran/web-proxy http://www.restran.net 浩瀚山海,浪漫宇宙,伴着我行 Email: Z3Jlc3RyYW5AZ21haWwuY29t China None 79 0 572 74 70 Python,C#,C 0 0
aipengjie sensitivefilescan: 目录遍历与敏感文件扫描工具 https://github.com/aipengjie/sensitivefilescan None 社会主义接班人 hangzhou china None 118 0 712 74 104 Python,PHP,Java 121 67
0xdeadbeefJERKY Office-DDE-Payloads - 生成嵌入 DDE 的 恶意 Office 文档的脚本: https://github.com/0xdeadbeefJERKY/Office-DDE-Payloads https://0xdeadbeefjerky.com (Information,Cyber) security professional with particular interest in mobile security, red teaming and exploit development. None None 15 0 132 74 30 Python,PowerShell,HCL,CSS 413 104
411Hall JAWS - Windows 渗透测试过程中提权之前用于收集系统信息的脚本,基于 PowerShell 编写: https://github.com/411Hall/JAWS http://www.ducktoolkit.com Incident Responder and creator of the Duck Toolkit. England None 4 0 33 73 1 Python,PowerShell 0 0
zerokeeper WebEye:识别WEB服务器类型、CMS类型、WAF类型、WHOIS信息 https://github.com/zerokeeper/WebEye http://www.zerokeeper.com/ None None 8 0 367 72 28 Python,PHP 152 46
mateuszk87 BadIntent - 使用 Burp Suite 拦截、修改、重放和攻击 Android 的 Binder 通信: https://github.com/mateuszk87/BadIntent https://ethermat.com White-Hat Hacker , Founder Berlin, DE ETHΞRMAT GmbH 5 0 339 72 20 Python,Java 0 0
Cybereason Siofra - 用于发现并利用 Windows DLL 劫持漏洞的工具: https://github.com/Cybereason/siofra None None None 4 0 0 72 0 Python,C,Assembly,PowerShell 184 50
derrekr Public Android Vulnerability Information (CVE PoCs etc) https://github.com/derrekr/android_security None http://twitter.com/derrekr6 None None 8 0 11 71 9 C,HTML 178 21
t00lsnet T00ls.Net 沙龙第一期 2017上 PPT合集 https://github.com/t00lsnet/Salon1 https://www.t00ls.net HongKong None 6 0 0 70 1 HTML 15 12
cocoahuke iOSkextdump is a new tool to dump kernel extension information from iOS kernel cache. #CapstoneInside https://github.com/cocoahuke/ioskextdump None Security researcher. None None 23 0 105 70 17 Objective-C,C 78 15
Twi1ight TSpider: Yet Another Web Spider 动态Web爬虫 https://github.com/Twi1ight/TSpider http://twi1ight.com None None 26 0 260 70 6 Python,Visual 0 0
xiamx wesome-sentiment-analysis: A curated list of Sentiment Analysis methods https://github.com/xiamx/awesome-sentiment-analysis https://www.cs.mcgill.ca/~mxia3/ Distributed System Engineer - Mobile/Web Full Stack - Devops. NLP researcher in progress. Montreal None 92 0 215 69 27 Python,TypeScript,HTML,Elixir 0 0
seb-m pyinotify:Linux文件系统监控工具 https://github.com/seb-m/pyinotify http://seb.dbzteam.org/ Marseille, France, EU None 16 0 1200 67 0 Python,C,Rust 1900 323
polymorf IDA pro plugin to find crypto constants (and more) based on YARAhttps://github.com/polymorf/findcrypt-yara https://github.com/polymorf/findcrypt-yara http://www.davidberard.fr france polymorf.fr 29 0 11 67 2 Python,Perl 341 89
wizicer 开源项目挣钱实用手册 https://github.com/wizicer/FinancialSupportForOpenSource/blob/master/README.md http://icerdesign.com Software Architect Shanghai, China Honeywell 50 0 377 66 41 C#,TypeScript,HTML 0 0
oranav Samsung GT-I9300 手机 eMMC 芯片研究相关的一些工具和 sboot Exploit 代码: https://github.com/oranav/i9300_emmc_toolbox https://oranav.me Israel None 11 0 13 66 14 C,JavaScript 0 0
deadPix3l CryptSky - 一个简单的,完全由 python 编写的勒索软件样本: https://github.com/deadPix3l/CryptSky/ None A jack of all trades, master of none. Still oftentimes better than a master of one. None None 12 0 105 66 30 Python,Vim 0 0
Jsitech relayer - SMB 重放攻击脚本: https://github.com/Jsitech/relayer http://www.jasonsoto.com IT Security Professional , Information Security Manager , Security+ , SSCP , Pentester None None 24 0 12 66 3 Shell,PHP 0 0
bollwarm sectoolset -- 搜集的Github关于安全工具集合 https://github.com/bollwarm/sectoolset http://ijz.me Perl , OP and SEC china ijz.me 340 0 189 65 38 Python,Pascal,PHP,Perl 0 0
Microwave89 逃避内存扫描 https://github.com/Microwave89/rtsectiontest None None Stealth Enhancements Providers LLC 24 0 7 65 4 C 62 41
A-mIn3 Powershell-based Windows Security Auditing Toolbox https://github.com/A-mIn3/WINspect https://twitter.com/_A_mIn3 If it is useful it can be abused LSASS None 165 0 172 65 39 C,Java,Python,C++,C#,PowerShell 0 0
ring0lab catphish - 用于网络钓鱼和企业间谍活动中的相似域名生成工具: https://github.com/ring0lab/catphish http://ring0lab.com Matrix None 37 0 273 64 3 C,Shell,Python,Go,Ruby,PowerShell 459 106
mikesart GPUVis - 可视化的 GPU Trace 工具: https://github.com/mikesart/gpuvis None Colorado Springs None 41 0 26 64 6 Python,C,C++ 0 0
joe-shenouda awesome-cyber-skills:黑客技术训练环境 https://github.com/joe-shenouda/awesome-cyber-skills https://nl.linkedin.com/in/josephshenouda Principal Cyber Analyst at Verizon The Netherlands Verizon 1 0 56 64 6 0 0
ak1t4 open-redirect-scanner - 任意网址跳转漏洞扫描脚本: https://github.com/ak1t4/open-redirect-scanner http://hackerone.com/ak1t4 None None 6 0 0 64 2 Python,HTML 170 54
AviAvni NativeLeakDetector - 调用 ETW 检测 Windows 内存泄漏: https://github.com/AviAvni/NativeLeakDetector https://twitter.com/AviAvni3 Consultant at SELA Group .NET C# Spark F# Compiler Contributor Neo4j Certified Professional Israel SELA Group 33 0 705 64 144 C#,F# 0 0
lauixData leakPasswd: Python 密码泄露查询模块 https://github.com/lauixData/leakPasswd https://5a8.org In me the tiger sniffes the rose. China None 2 0 60 63 9 Python 0 0
knightmare2600 ShadowBrokers 泄露的攻击工具,包括最近几个月的 monthlyleaks,有可能是最近的用户付费订阅服务中的那些攻击工具: https://github.com/knightmare2600/ShadowBrokers/tree/master/monthlyleaks None knightmare@granada[~]$ vlc wia.avi -V aa && nmap -A 0.0.0.0/0 , tee http://nmap.report && vim http://nmap.report The 80s None 59 0 22 63 5 Python,C,Batchfile,Visual,Perl 0 0
bee13oy AV_Kernel_Vulns - 研究员 bee13oy 上周分享了几个 Avast 杀软内核的漏洞,本周又公开了几个 AVG/Ariva/K7 杀软的漏洞: https://github.com/bee13oy/AV_Kernel_Vulns None Security Researcher & Bug Hunter None None 1 0 5 63 1 C++ 211 70
gellin TeamViewer_Permissions_Hook_V1 - 通过向 TeamViewer 注入 DLL 并改写内存的方式实现对特殊功能限制的破解,譬如特殊菜单的启用: https://github.com/gellin/TeamViewer_Permissions_Hook_V1TeamViewer 紧急推出了补丁,已修复这个问题: https://github.com/gellin/TeamViewer_Permissions_Hook_V1TeamViewer None Integration Engineer, red/blue team hacker, avid AWS user Denver, CO None 4 0 29 62 12 C#,JavaScript,C++ 248 71
yrp604 I wrote a ptrace based assembly repl for x86, armv7, amd64. Useful for quickly playing with unknown instructions. https://github.com/yrp604/rappel None Vancouver, BC None 32 0 76 60 0 C,C++ 702 39
reinterpretcat 用于构建 LFS(Linux From Scratch system)系统的 Docker 配置文件: https://github.com/reinterpretcat/lfs None Berlin, Germany None 10 0 3 60 2 Shell,C++ 0 0
ntrippar sekey - 使用 Touch ID / Secure Enclave 进行 SSH 身份验证: https://github.com/ntrippar/sekey None New York, NY None 20 0 108 60 40 Jupyter,Python,Perl,HTML,Rust,Swift,CSS 78 21
mxcxvn BurpUnlimited: EXTENDS BurpLoaders license https://github.com/mxcxvn/BurpUnlimited None None None 3 0 1 60 0 JavaScript,CSS 60 8
dyjakan Fuzzing results for various interpreters. https://github.com/dyjakan/interpreter-bugs https://dyjak.me Application Security. Vulnerability Research. Fuzzing. Exploit Development. Warsaw, Poland None 73 0 1200 60 107 Python,DTrace,C,Ruby 73 14
Song-Li (Cross-)Browser Fingerprinting via OS and Hardware Level Features : http://yinzhicao.org/TrackingFree/crossbrowsertracking_NDSS17.pdf (pdf) ,Github : https://github.com/Song-Li/cross_browser http://www.songli.io Ph.D. student at Johns Hopkins University, Keep Young, Keep Simple, Keep Naive. None The Johns Hopkins University 57 0 13 60 6 Python,CoffeeScript,JavaScript,C++ 874 192
MiniSafe MicroScan 基于B/S架构微扫描器 https://github.com/MiniSafe/microscan None 我系渣渣辉,快啦玩贪玩拦月 None None 22 0 67 60 3 Python,Shell,JavaScript 74 30
milesrichardson docker-nfqueue-scapy : Docker container for intercepting packets with scapy from a netfilter queue : https://github.com/milesrichardson/docker-nfqueue-scapy https://github.com/splitgraph Startup founder and software consultant. Working on @splitgraph Cambridge, UK @splitgraph 17 0 810 59 82 Python,TeX,Shell,Ruby 0 0
h4ck0ne 安全技能树小密圈2017精选 https://github.com/h4ck0ne/security_circle_2017/blob/master/SUMMARY.md http://hackone.cc http://hackone.cc None None 247 0 2 59 20 C,Java,Python,JavaScript,HTML,PowerShell 74 79
diogo-fernan malsub - 用于在线恶意软件分析和威胁情报服务的 Python RESTful API 框架: https://github.com/diogo-fernan/malsub?utm_content=buffer51301&utm_medium=social&utm_source=twitter.com&utm_campaign=buffer https://twitter.com/dfernan__ Somewhere in Portugal None 17 0 448 59 21 Python,TeX,C,Batchfile,PowerShell 0 0
joanbono Snorter: Snort + Barnyard2 + Pulledpork → The easy way! https://github.com/joanbono/Snorter http://joanbono.github.io IT Security Analyst / Pentester Prague ¯_(ツ)_/¯ 30 0 56 58 103 Go,Shell 0 0
eviltik evilwaf: Web Application Firewall (WAF) Detection Tool https://github.com/eviltik/evilwaf None nodejs & security tools addict Sri Lanka (or not) None 19 0 35 58 21 JavaScript 375 48
rexdex 把 Xbox360 的可执行文件移植到 Windows 系统上运行: https://github.com/rexdex/recompiler None A one happy programmer. Warsaw, Poland True Rebels 3 0 12 57 1 CSS,C++ 1300 73
mdhiggins ESP8266 兼容的远红外控制器(IR Blaster): https://github.com/mdhiggins/ESP8266-HTTP-IR-Blaster/ None None None 14 0 28 57 1 Python,C#,C++,Perl 877 181
kevin2600 Bluetooth that bites -SmartLock-Hacking 蓝牙开锁技术研究 https://github.com/kevin2600/BTLE-SmartLock-Hacking/blob/master/Ozlockcon-2017-Bluetooth%20that%20bites.pdf https://www.youtube.com/user/ReverseKevin None None 3 0 0 57 11 Python 20 5
MRGEffitas Ironsquirrel - 以加密的方式将浏览器漏洞利用代码发往受害者浏览器的工具: https://github.com/MRGEffitas/Ironsquirrel https://www.mrg-effitas.com None Effitas Ltd 15 0 2 57 0 Python,C#,C,JavaScript,HTML 153 46
Nitr4x whichCDN: 网站 CDN 服务商识别工具 https://github.com/Nitr4x/whichCDN None Pentester / Hacker / Risk analyst None None 11 0 28 56 10 Python,Go,Shell,Dockerfile,Perl 105 42
sa7mon S3Scanner: Scan for open S3 buckets and dump https://github.com/sa7mon/S3Scanner https://github.com/mnsu-isso Computer Science student - currently looking for a job! Contact info available at personal website. USA @mnsu-isso 76 0 236 55 20 Python 0 0
cuijianxiong Cmscan基于fofa搜索规则指纹识别工具 https://github.com/cuijianxiong/cmscan http://cuijianxiong.top LVU None None 49 0 122 55 44 Python,JavaScript,Roff 53 26
a7vinx angr-doc-zh_CN: Angr-doc的中文翻译 (开源符号执行框架) https://github.com/a7vinx/angr-doc-zh_CN https://a7vinx.github.io None None 20 0 1300 55 52 Python,C,C++ 0 0
V-E-O 上周五推送的 Janus Android APK 签名有效性漏洞(CVE-2017-13156),有研究员公开了 PoC: https://github.com/V-E-O/PoC/tree/master/CVE-2017-13156 None None None 59 0 43 55 45 C,Makefile 0 0
Eun ctf.tf - CTF 题目及其解决方案收集整理: https://t.co/ffhj5FNqy3,GitHub : https://github.com/Eun/ctf.tf https://salzmann.to Berlin (Germany) None 150 0 583 55 0 Go,JavaScript,C++ 1000 81
Biprodeep wesome-ml-for-cybersecurity - 优秀的网络安全机器学习资源整合: https://github.com/Biprodeep/awesome-ml-for-cybersecurity None Researcher on integrated logics,information security and artificial intelligence. None Virtually Unvoid Defensive 61 0 28 55 50 Python,C,Shell 30 9
h-j-13 Malicious_Domain_Whois: 非法域名挖掘与画像系统 https://github.com/h-j-13/Malicious_Domain_Whois?from=timeline http://houjie13.com/ Student. Weihai, China Harbin Institute of Technology at Weihai 58 0 323 54 56 Python,C++ 0 0
timest 用Go开发可以内网活跃主机嗅探器 timest/goscan#1 None China None 9 0 145 53 7 Go,JavaScript 557 75
technion 3652fa - 绕过 Office 365 多因素认证抓取密码: https://github.com/technion/3652fa https://lolware.net Sydney, Australia None 73 0 30 52 1 TypeScript,Shell,Ruby,Erlang 0 0
nim4 数据库防火墙 https://github.com/nim4/DBShield None Izmir, Turkey None 13 0 7 52 7 Go,Python,PHP,HTML,C++ 573 132
NolanZhao 实时监控1000家中国企业的新闻动态 https://github.com/NolanZhao/news_feed None Beijing.China None 51 0 104 52 63 Python,Go,CSS 0 0
j91321 rextRouter EXploitation ToolkitAuthor: @ j91321#router #exploit https://github.com/j91321/rext None None None 10 0 75 51 1 Python,Ruby,Java 0 0
igogo-x86 HexRaysPyTools : An IDAPython framework targeting Hex-Rays and classes/structures : https://github.com/igogo-x86/HexRaysPyTools None None None 3 0 92 51 2 Python,C++ 560 114
chr4 Using Vim? Configuring or programming SSL/TLS servers? You better use this https://github.com/chr4/sslsecure.vim https://chr4.org Devops. Ive never asked for this. None None 68 0 2 51 7 Go,SaltStack,Shell,Rust,Vim 0 0
biggiesmallsAG nightHawkResponse - 事件响应取证框架: https://github.com/biggiesmallsAG/nightHawkResponse None None None 4 0 1 51 0 Go,JavaScript 530 119
SnakeHacker QA-Snake: 基于多搜索引擎和深度学习技术的自动问答 https://github.com/SnakeHacker/QA-Snake http://www.snakehacker.me You cannot improve your past, but you can improve your future. Once time is wasted, life is wasted. None None 66 0 315 51 52 Python,JavaScript 0 0
ydkhatri macOS 全盘镜像(Image)文件静态解析工具: https://github.com/ydkhatri/mac_apt https://www.swiftforensics.com Professor @ Champlain College None None 19 0 9 48 1 Python 146 22
BryanSharp HiBeaver is an android plugin for modifying your library jars byte code. https://github.com/BryanSharp/hibeaver https://github.com/microsoft Be creative Beijing @microsoft 86 0 574 48 24 Groovy,Python,Java 0 0
m0l1ce wooyunallbugs: wooyun_all_bugs 历史存档数据和图片 https://github.com/m0l1ce/wooyunallbugs None None vipkid 14 0 16 47 16 Lua,Dockerfile,JavaScript,Shell,CSS 353 138
cliffe Security Scenario Generator (SecGen) - 随机创建存在漏洞的虚拟机,方便学习渗透测试技术: https://github.com/cliffe/SecGen http://z.cliffe.schreuders.org Most of my code is hosted elsewhere, but I am growing to like GitHub... None 9 0 1 47 0 JavaScript,Ruby 0 0
UltimateHackers XSSight:自动化XSS漏洞扫描以及Payload注入 https://github.com/UltimateHackers/XSSight None This profile has been moved to: https://github.com/s0md3v None None 0 0 0 47 0 0 0
securing GATTacker - BLE(蓝牙低功耗)设备的中间人劫持测试工具,是个 Node.js 包: https://tirateunping.wordpress.com/2016/11/01/gattacker-ble-bluetooth-low-energy-man-in-the-middle/ https://github.com/securing/gattacker https://www.securing.pl None None 7 0 3 46 0 Python,JavaScript,Swift 342 96
securesocketfunneling SSF - 在 TLS 隧道下提供 TCP/UDP 端口转发、SOCKS5 代理以及远程 Shell 的工具: https://github.com/securesocketfunneling/ssf None None None 7 0 0 46 0 C,CMake,C++ 859 125
repoog GitPrey: GitHub敏感信息扫描工具 https://github.com/repoog/GitPrey None Hacker, Engineer, PM None None 11 0 20 46 1 Python,Shell,C,PHP 336 131
pbiernat ripr - 将二进制工具打包成 Python 软件包的工具,基于 Binary Ninja 和 Unicorn Engine 实现: https://github.com/pbiernat/ripr https://github.com/ret2 New York @ret2 6 0 28 46 0 Python,C++ 264 25
hegusung AVSignSeek - 在恶意软件 Payload 二进制文件中定位杀软查杀特征(Signature)偏移量的工具: https://github.com/hegusung/AVSignSeek https://twitter.com/hegusung Behind you None 14 0 19 46 0 Python,JavaScript 264 54
f0rgetting 《Make LoadLibrary Great Again》,来自绿盟科技张云海在 POC 2017 会议的演讲。介绍了如何 Bypass 各种缓解措施,实现 Windows 10 系统中 LoadLibrary 的再次利用: https://github.com/f0rgetting/Presentations/blob/master/POC%202017%20-%20Make%20LoadLibrary%20Great%20Again.pdf None None None 1 0 0 46 0 76 22
Professor-plum Just posted my source code to GitHub for reflectively loading a Windows kernel driver https://github.com/Professor-plum/Reflective-Driver-Loader None None None 6 0 2 46 3 HTML,Ruby,C++ 252 114
1111joe1111 用于辅助 IDA 逆向的多个脚本工具: https://github.com/1111joe1111/ida_ea None None None 2 0 13 46 0 Python 372 75
toyakula Luna: 开源的轻量级被动式扫描框架 https://github.com/toyakula/luna None None None 1 0 2 45 0 Python 264 64
bowu678 php_bugs: PHP代码审计分段讲解 https://github.com/bowu678/php_bugs http://www.bowu8.com More efforts to more happiness. None None 1 0 2 45 15 PHP 727 212
GoFetchAD BloodHound 是一个模拟攻击计划的应用,可以用它画出 Active Directory 环境中攻击步骤与关系。而 GoFetch 是 BloodHound 攻击计划的自动化实施工具: https://github.com/BloodHoundAD/BloodHound https://github.com/GoFetchAD/GoFetch None None None 2 0 1 45 1 C,PowerShell 438 82
dekimir RamFuzz - 基于深度神经网络、自动化生成单元测试用例的 C++ 代码 Fuzzing: https://github.com/dekimir/RamFuzz/blob/master/sci/ramfuzz.md https://github.com/google @google 2014-16; Endeca 2004-14; ProfitLogic 2001-04; Sun Microsystems 1999-2001; @rice-university 1993-99 Waterloo, Ontario None 7 0 3 44 4 Jupyter,C++ 269 36
HackingThings Just finished uploading all past publications, including code and demo videos. now available at https://github.com/HackingThings/Publications http://laplinker.com None None 8 0 14 44 12 C#,JavaScript,HTML 48 16
ALSchwalm dwarfexport - 从 IDA Pro 中导出 dwarf 调试信息的工具,dawrf 信息可以导入 gdb 等调试器: https://github.com/ALSchwalm/dwarfexport https://github.com/starlab-io Im a software engineer and security researcher, mostly working with rust and C. Sometimes some elisp stuff too. Huntsville, AL @starlab-io 95 0 162 44 5 Python,C,Emacs,Rust,C++ 0 0
vitaly-kamluk Bitscout - 一款用于远程数字取证的工具: https://securelist.com/bitscout-the-free-remote-digital-forensics-tool-builder/78991/ Github: https://github.com/vitaly-kamluk/bitscout None None None 5 0 1 43 1 C,Shell,C++ 285 66
exakat Static analysis tools for PHP (PHP静态分析工具列表) https://github.com/exakat/php-static-analysis-tools http://www.exakat.io/ Exakat is a static analysis engine for PHP. Internet Exakat 14 0 3 43 0 Shell,PHP,Makefile 2000 200
CapacitorSet box-js : A tool for studying JavaScript malware : https://github.com/CapacitorSet/box-js https://keybase.io/CapacitorSet I move electrons around. None None 68 0 156 43 2 Go,JavaScript,C++,Scala 0 0
wolfpack1 intel_collection_tools: 多个威胁情报分析的脚本文件 https://github.com/wolfpack1/intel_collection_tools http://wapacklabs.com/ Manchester NH Wapack Labs 10 0 7 42 3 Python,Shell,Ruby 30 7
A3sal0n CyberThreatHunting: A collection of resources for Threat Hunters https://github.com/A3sal0n/CyberThreatHunting None None None 5 0 1 42 0 Python 293 73
leveryd vulndocker: 漏洞靶场平台 https://github.com/leveryd/vulndocker None None None 50 0 600 41 41 Python,Visual,JavaScript,CSS 41 14
brunofacca zen-rails-security-checklist: Ruby 程序基线检查列表 https://github.com/brunofacca/zen-rails-security-checklist https://github.com/toptal Backend Developer (Ruby on Rails) at @toptal. Brazil @toptal 6 0 82 41 55 Ruby 0 0
abazhaniuk 给手机的一颗蓝色药丸,来自 BlackHat 会议的一篇,关于 ARM TrustZone 和 Hypervisor 的逆向和攻击: https://github.com/abazhaniuk/Publications/blob/master/2017/BlackHat_USA_2017/us-17-Bazhaniuk-Bulygin-BluePill-for-Your-Phone.pdf None Independent Security Researcher None None 61 0 4 41 1 Python,Shell,Java,C++ 60 8
CERT-W certitudePython-based tool which aims at assessing the compromised perimeter during IR assignments https://github.com/CERT-W/certitude http://wavestone-advisors.com/ La Défense, Paris, France Wavestone 4 0 3 41 0 Python 106 27
tbarabosch quincy - 内存取证工具,从内存转储中检测代码注入攻击: https://github.com/tbarabosch/quincy http://tbarabosch.de/ I ❤️ everything that compiles down to machine code 🤓. Bonn, Germany Fraunhofer FKIE 20 0 164 40 40 Python,C,Emacs,OCaml 0 0
subTee Heres the code/dllx86 for now/ should work as normal userhttps://github.com/subTee/RegistrationFreeCOMDLL inject via ActCTX COM Object https://github.com/subTee/RegistrationFreeCOMDLL None None None 1 0 0 40 0 1 0
silverf0x RpcView - powerfull RPC interface explorer (http://www.rpcview.org/features.html) now w/ source code - https://github.com/silverf0x/RpcView None None None 8 0 6 40 1 Python,C,C++ 248 67
ortegaalfredo 硬盘也能变成临时的麦克风,Paper: https://github.com/ortegaalfredo/kscope/blob/master/doc/HDD-microphones.pdf https://github.com/ortegaalfredo/kscope None bio #5 Buenos Aires, Argentina None 13 0 3 40 5 Python,TeX,C,Verilog 149 23
hillbrad 从实现角度对几款 U2F 双因素认证 TOKEN 设备的比较: https://github.com/hillbrad/U2FReviews#implissues https://github.com/hillbrad/U2FReviews#implissues None Seattle Facebook 33 0 14 40 6 HTML,JavaScript 362 22
gymgle 区块链资料 https://github.com/gymgle/blockchain-reference https://g2ex.github.io Im nobody. None None 30 0 424 40 15 Python,Go,HTML 180 59
gdelugre Shell Factory is a framework for compiling shellcodes from a C++ source for multiple systems and architectures: https://github.com/gdelugre/shell-factory https://twitter.com/lapinhib0u São Paulo None 14 0 17 40 0 Python,C,Ruby,C++ 0 0
36hours uEmu - 基于 Unicorn 实现的 IDA CPU 模拟器插件,之前还推送过一个类似的 idaemu: https://github.com/alexhude/uEmu https://github.com/36hours/idaemu None China,guangzhou None 6 0 177 40 0 Python,JavaScript,HTML 0 0
z00nx Analyse SQL injection attempts in web server logs https://github.com/z00nx/reversemap https://z00nx.github.io None None 51 0 428 39 149 Python,PowerShell 0 0
pellegre libcrafter: 用于网络数据包嗅探和制作的高等级 C++ 库: https://github.com/pellegre/libcrafter https://twitter.com/zesteban None None 6 0 11 39 12 JavaScript,C++ 227 77
linchaolong 可视化的跨平台 apk 分析工具 https://github.com/linchaolong/ApkToolPlus http://www.jianshu.com/users/149dc6683cc7 Guangzhou China linchaolong 9 0 201 39 1 Java 483 140
danielplohmann apiscout - aims at simplifying Windows API import recovery on arbitrary memory dumps. Based on IDAPython, pefile. https://github.com/danielplohmann/apiscout https://github.com/fkie Malware Researcher. Working for Fraunhofer @fkie. None None 7 0 79 38 0 Python 0 0
tylabs Open source QuickSand.io Document Malware analysis tool updated with some safety and performance enhancements https://github.com/tylabs/quicksand_lite/releases/tag/01.01.002 https://tylabs.com Tools to detect malware in common document formats. Canada tylabs 17 0 30 37 0 Bro,Python,C,HTML,PHP 113 30
gelim 基于Censys API 的命令行搜索脚本 https://github.com/gelim/censys None Insecurity researcher None None 15 0 14 37 1 Python 0 0
eliasgranderubio dagda: static analysis of known vulnerabilities in docker images/containers https://github.com/eliasgranderubio/dagda https://twitter.com/3grander Spain None 9 0 8 37 4 Python 0 0
aurel26 TS-Security-Editor: Windows 远程桌面服务安全配置工具: https://github.com/aurel26/TS-Security-Editor None None None 5 0 1 37 0 C,HTML,C++ 40 8
simonclausen dnscrypt-autoinstall - 自动安装和配置 DNSCrypt 的脚本: https://github.com/simonclausen/dnscrypt-autoinstall https://simonclausen.dk Denmark None 33 0 42 36 2 C#,Python,Shell,PHP,CSS 228 83
maximehip Safari-iOS10.3.2-macOS-10.12.4-exploit-Bugs,利用以下几个漏洞穿越 Safari 的沙箱(TOCTOU in diskarbitrationd/PID reuse logic bug in authd/Arbitrary dylib loading in speechsynthesisd/NULL ptr dereference in nsurlstoraged): https://github.com/maximehip/Safari-iOS10.3.2-macOS-10.12.4-exploit-Bugs None None None 25 0 1 36 1 Logos,C,JavaScript,Swift,Objective-C 82 19
Sambor123 最全的中文版深度学习资源索引 https://github.com/Sambor123/Awesome-Deep-Learning-for-Chinese None A deep spider interested in machine learning Beijing Haidian Beijing Jiaotong Univercity 27 0 9 36 4 Python,JavaScript,Java,HTML 157 90
JKO nsearch: minimal script to help find script into the nse database https://github.com/JKO/nsearch None Colombia DragonJAR SAS 37 0 29 36 33 Python,Shell,JavaScript,PHP 113 36
paulgclark waveconverter : An Open Source tool for RF reverse engineering : https://github.com/paulgclark/waveconverter https://github.com/paulgclark/waveconverter http://www.factorialabs.com Bellevue, WA Factoria Labs 13 0 62 35 2 Python,C,Shell 379 47
c0d3z3r0 有研究者公开了一个前两周的 Linux Sudo get_process_ttyname()(CVE-2017-1000367) 漏洞的 Exploit: http://seclists.org/oss-sec/2017/q2/470 https://github.com/c0d3z3r0/sudo-CVE-2017-1000367 None 3072R/22274CD17216A9FC None 63 0 19 35 5 Python,C,Shell 114 38
Den1al JSShell - An interactive multi-user web JS shell written in #Python https://github.com/Den1al/JSShell/ http://blog.den1al.com None None 9 0 7 35 4 Python 212 54
segment-srl htcap - Web 应用扫描器,可扫描 SPA: https://github.com/segment-srl/htcap None None None 0 0 1 34 0 0 0
kd8bny LiMEaide - 基于 Python 实现的远程转储 Linux 客户端 RAM 工具: https://github.com/kd8bny/LiMEaide https://kd8bny.github.io/ Information Engineer with past experience in security, mobile, hardware, and autonomous dev. None None 35 0 174 34 28 Python,C 0 0
icchy Windows API tracer with @ unicorn_engine https://github.com/icchy/unitracer https://github.com/TokyoWesterns capturing the flag at @TokyoWesterns Tokyo None 32 0 42 34 9 Python,Go,C,Java 0 0
AndreaOm 小密圈备份-json版本 https://github.com/AndreaOm/xiaomiquan_bak None Nothing z None 18 0 901 34 26 Python,HTML,JavaScript 0 0
int0 Decided to release my old Code Integrity bypass PoC https://github.com/int0/ltmdm64_poc None None None 9 0 0 33 0 C,Batchfile,C++ 58 19
freener Exploit for CVE-2016-5342 https://github.com/freener/exploits/tree/master/CVE-2016-5342. http://freener.github.io https://twitter.com/freener0 None None 3 0 115 33 42 C,HTML 32 17
zyrikby Releasing data related to the evolution of the Android permissions work https://github.com/zyrikby/android_permission_evolution https://zhauniarovich.com Minsk, Belarus Perfect Equanimity 13 0 174 32 4 Python,HTML,Java 51 14
nsmfoo Script to create templates to use with VirtualBox to make vm detection harder https://github.com/nsmfoo/antivmdetection http://blog.prowling.nu Sweden None 19 0 24 32 15 Python 0 0
mrschyte socksmon: Monitor arbitrary TCP traffic using your HTTP proxy https://github.com/mrschyte/socksmon None None None 32 0 11 32 2 Python,C,Shell 148 39
maxwellkoh 2FAssassin - 双因素认证绕过工具: https://github.com/maxwellkoh/2FAssassin None None None 10 0 0 32 0 Python,Ruby 0 0
daniel-gallagher Automated install scripts for Cuckoo sandbox 一键安装 Cuckoo https://github.com/daniel-gallagher/cuckoo-autoinstall None None None 36 0 37 32 17 Python,Shell,Jupyter 0 0
BeetleChunks redsails - 一个基于 Python 的后渗透项目,旨在绕过基于主机的安全监控与日志记录: https://github.com/BeetleChunks/redsails https://redsails.io OSCP, Red Teamer, Pentester, Developer, Hacker None None 9 0 51 32 2 Python,C,PowerShell 208 57
samizzo hexed - Windows 终端下的 hex 编辑器: https://github.com/samizzo/hexed http://www.horsedrawngames.com Console, PC, mobile video games outsourcing and development. Melbourne, Australia Horse Drawn Games 30 0 4 31 11 C#,JavaScript,Assembly,C++ 0 0
jjf012 PassiveScanner: 基于Mitmproxy和Arachni的被动式扫描器 https://github.com/jjf012/PassiveScanner None None None 80 0 349 31 4 Python,Shell,PHP 93 28
antoinet valora - 发送随机 MAC 地址和 SSID 以迷惑 WiFi 追踪系统的工具: https://github.com/antoinet/valora http://ant0i.net Zürich None 37 0 23 31 16 C,Java,Python,JavaScript,Objective-C,CMake,PowerShell 64 10
rudSarkar crlf-injector: Auto CRLF Injector https://github.com/rudSarkar/crlf-injector https://proghub.net Like To Break Things And Build.Just another security researcher interested in exploring new things. Natore, Bangladesh @GeekSoftBD 49 0 46 30 40 Python 0 0
retbandit 微软威胁防护(ATP)平台的对抗技术研究,来自 BlackHat 2017 会议: https://github.com/retbandit/BlackHat2017/blob/master/eu-17-Thompson-Red-Team-Techniques-for-Evading-Bypassing-and-Disabling-MS-Advanced-Threat-Protection-and-Advanced-Threat-Analytics.pptx https://twitter.com/retBandit None None 22 0 9 30 5 Python,Shell,PowerShell 23 5
nluedtke linux_kernel_cves - Linux 内核 CVE 追踪: https://github.com/nluedtke/linux_kernel_cves https://github.com/fireeye Security Engineer. None FireEye @fireeye 8 0 19 30 6 Python,C,Vue,CSS 215 32
enzet 从时间轴的角度回顾符号执行(Symbolic execution)及其衍生技术/工具的发展: https://github.com/enzet/symbolic-execution http://enzet.ru Moscow, Russia Institute for System Programming RAS 12 0 128 30 28 TeX,Python 0 0
alexander-hanel idapython6to7 - IDA Pro 7.0 的 IDAPython 与上一个版本(6.x) 的 API/变量名 差异对照表: https://github.com/alexander-hanel/idapython6to7 None Boulder, Colorado USA None 6 0 57 30 26 Python,C++ 63 13
GradiusX ArbitraryOverwrite exploit for Win10 x64 v1511 w/ SMEP bypass : https://github.com/GradiusX/HEVD-Python-Solutions/blob/master/Win10%20x64%20v1511/HEVD_arbitraryoverwrite.py cc @ GradiusX https://github.com/GradiusX/HEVD-Python-Solutions/blob/master/Win10%20x64%20v1511/HEVD_arbitraryoverwrite.py None None None 3 0 1 30 0 Python,CSS 132 45
0xM3R cgPwn : A lightweight VM for hardware hacking, RE (fuzzing, symEx, exploiting etc) & wargaming tasks : https://github.com/0xM3R/cgPwn None BSoD None None 69 0 218 30 169 C,Shell,Assembly,Python,C++,Vim 314 63
xd4rker MinerBlock - 用于阻止基于 Web 页面的加密货币挖矿后门的浏览器扩展: https://github.com/xd4rker/MinerBlock https://twitter.com/xd4rker Morocco None 15 0 594 29 13 Python,JavaScript,PHP 0 0
koenbuyens kalirouter - 将 Kali Linux 搭建成路由器,该路由可将所有 HTTP/HTTPS 请求发送到 Burpsuite 代理以便分析: https://github.com/koenbuyens/kalirouter http://koen.buyens.org/ appsec for fun and profit None None 5 0 118 29 36 Python,Shell,JavaScript 0 0
jasonsheh SiteScan: 网站基本信息自动扫描系统 https://github.com/jasonsheh/SiteScan http://octfive.cn China None 11 0 9 28 8 Python,JavaScript,HTML 99 28
frranck asm2c tool to convert 386-era TASM code to C https://github.com/frranck/asm2c used to convert old 8-players Bomberman clone... https://github.com/frranck/asm2c http://mumblecore.org Berlin None 27 0 87 28 23 Java,Assembly 0 0
elcodigok wphardening -WordPress 安全加固工具: https://github.com/elcodigok/wphardening http://caceriadespammers.com.ar Ing. en Computación, Analista en Sistemas y Técnico Informático por la Universidad Católica de Santiago del Estero D.A.S.S. San Salvador de Jujuy - Argentina. Jujuy - Argentina Cacería de Spammers 22 0 18 28 4 Python,Shell,JavaScript 141 28
Hopsken SaaS 创业公司安全基础(security-101-for-saas-startups ) https://github.com/Hopsken/security-101-for-saas-startups-zh_CN https://hopsken.com Shanghai, China None 20 0 465 28 17 Swift,HTML,JavaScript,CSS 93 18
virqdroid ZNIU - 趋势科技发现了一款利用 Linux 内核 Dirty COW 漏洞攻击 Android 手机的恶意软件。并且认为这是来源于国内的黑产组织的行为: http://blog.trendmicro.com/trendlabs-security-intelligence/zniu-first-android-malware-exploit-dirty-cow-vulnerability/ http://weibo.com/2255436844/FnHBwFWPb http://blog.tetrane.com/2017/09/dirtyc0w-1.html https://github.com/virqdroid/Android_Malware/tree/master/DirtyCow-trj http://virqdroid.com None None 31 0 130 26 14 Python 0 0
securifybv ShellLink - 处理 ShellLink(LNK) 文件的 .Net 类库: https://github.com/securifybv/ShellLink... https://github.com/securifybv/ShellLink... https://securify.nl Amsterdam Software Security 7 0 0 26 0 C#,Python,PHP,Java,C++ 55 20
vtky Swizzler2 - 协助分析 MDM / EMS iOS 应用程序的工具: https://github.com/vtky/Swizzler2 None None None 16 0 0 25 0 Go,Objective-C,JavaScript 0 0
niallmcl Code for Deep Android Malware Detection paper https://github.com/niallmcl/Deep-Android-Malware-Detection None None Queens University Belfast 4 0 96 25 1 Python,Lua,MATLAB 87 49
magicming200 tomcat后台弱口令扫描器,命令行版+图形界面版 https://github.com/magicming200/tomcat-weak-password-scanner None Do or Die! None None 10 0 29 25 22 Python,PHP,Java 64 33
jzadeh Aktaion - 用于研究 Exploit 和钓鱼检测的开源机器学习工具和样本 https://github.com/jzadeh/Aktaion None None None 4 0 0 25 1 Python 132 41
ansjdnakjdnajkd 最常用的 iOS 渗透测试工具集: https://github.com/ansjdnakjdnajkd/iOS https://github.com/ansjdnakjdnajkd Redteam/PT https://medium.com/@ansjdnakjdnajkd Singapore None 7 0 390 25 24 JavaScript,Ruby,Perl 272 71
Phype telnet-iot-honeypot: Python telnet honeypot for catching botnet binaries https://github.com/Phype/telnet-iot-honeypot https://github.com/fraunhoferSIT Interested in security and networking research. Darmstadt, Germany @fraunhoferSIT / TU Darmstadt 2 0 3 25 4 Python 168 56
Or3stis apparatus - IoT 网络安全性分析与可视化工具: https://github.com/Or3stis/apparatus None None None 11 0 212 25 4 Python,JavaScript,Ruby 190 76
Monyer xssee: A js encode/decode simple tool for XSS https://github.com/Monyer/xssee None None None 5 0 72 25 0 HTML,JavaScript,PHP,CSS 11 4
t4mo Http-Proxy-Scan: 利用censys.io快速爬取http代理 https://github.com/t4mo/Http-Proxy-Scan http://weibo.com/335407345 javascript,phpcoder security beijing TS 210 0 186 24 51 Python,JavaScript 61 18
rickey-g Apparently theres Fancy Bear source code found during IR on github https://github.com/rickey-g/fancybear None None None 3 0 0 24 22 Python 247 202
odensc 利用前两天爆出的 Android APK 签名验证漏洞 Janus 生成 APK 样本的工具: https://github.com/odensc/janus https://odensc.me Full-stack developer. None None 57 0 6 24 0 Python,TypeScript,JavaScript,CSS 0 0
chen-charles PEDetour is a new tool using @capstone_engine & @keystone_engine to inject code to hook export functions of PE file https://github.com/chen-charles/PEDetour None uWaterloo CS None None 13 0 45 24 5 Python,C,C++ 0 0
securisec radare2 逆向框架的 wiki 文档整理: https://github.com/securisec/radare2_wiki None Hapsidas repo None None 23 0 0 23 0 Python,TypeScript,JavaScript 0 0
secfree bcrpscan: 智能备份文件扫描工具 https://github.com/secfree/bcrpscan None None None 8 0 22 23 1 Python,HTML,Java 64 31
eastee Breaking Google’s ReCaptcha v2 : https://east-ee.com/2017/02/28/rebreakcaptcha-breaking-googles-recaptcha-v2-using-google/ ,Github : https://github.com/eastee/rebreakcaptcha https://east-ee.com None None 1 0 0 23 0 Python 735 139
wylok opsweb: 百合网运维综合管理平台(Python+Flask框架+cmdb+scheduler+salt) https://github.com/wylok/opsweb None None None 1 0 3 22 0 Python 406 238
tnich honssh - HonSSH 旨在记录客户端和服务器之间所有SSH通信的密罐: https://github.com/tnich/honssh None United Kingdom None 1 0 1 22 6 Python 308 62
blockadeio Best way to integrate into @ blockadeio is the cloud node /admin/add-indicators call. Python script sample here - https://github.com/blockadeio/cloud_node/blob/master/test-scripts/add-indicators.py https://www.blockade.io Built as a browser extension, Blockade blocks malicious resources from being viewed or loaded inside of Chrome. Internet None 6 0 0 22 0 Python,JavaScript,HTML 47 15
Maktm FLIRT database repository on GitHub: https://github.com/Maktm/FLIRTDB None None None 18 0 14 22 1 Max,C,C++ 0 0
G4lB1t SmoothCriminal - 从光标移动速度的角度检测沙盒: https://github.com/G4lB1t/SmoothCriminal https://twitter.com/Gal_B1t Sr. Malware Psychologist Tel-Aviv None 13 0 5 22 1 Python,PowerShell,C++ 43 13
ptonewreckin Blind-XXE: A basis for a Blind-Based XXE Exploitation Framework https://github.com/ptonewreckin/Blind-XXE None None None 5 0 95 21 51 Python,Go 22 12
flothrone 用于防护 RootKits,确保启动链安全的 Intel 项目 - Boot Guard: https://github.com/flothrone/bootguard https://github.com/flothrone/bootguard None None None 1 0 2 21 0 95 21
briterator @ BruceDawson0xB drpdb is a SymbolSort based tool to convert PDBs to a MySQL database - worth a look? https://github.com/briterator/drpdb None None None 6 0 0 21 0 C++ 31 7
Huseck scan_kill_php_shell: 针对PHP网马的正则查杀 https://github.com/Huseck/scan_kill_php_shell http://www.xjseck.com None None 17 0 4 21 4 Python,HTML,Java,PHP 17 6
romankh GSM Assessment Toolkit - A security evaluation framework for GSM networks https://github.com/romankh/gsm-assessment-toolkit None None None 19 0 46 20 2 Python,Java 0 0
gast04 r4ge - 调用宏进行符号执行的 radare2 插件: https://github.com/gast04/r4ge https://twitter.com/NistelbergerK I am a computer science student on TU Graz, favorite topics are about Reverse Engineering, IT-Security, AI and Logic. None None 21 0 61 20 18 Python,PHP,PowerShell,C++ 85 11
ProAppleOS 如何利用 SHSH Blobs 将越狱后的设备升级到 iOS 11.1.2: https://github.com/ProAppleOS/Upgrade-from-any-Jailbroken-Device-to-iOS-11.1.2-with-Blobs/blob/master/README.md https://twitter.com/ProAppleOS Twitter: https://twitter.com/ProAppleOS None None 6 0 5 20 2 0 0
veramine Mitre 组织创建了一个称作 ATT&CK 的项目,之前有过推送,这个项目整理了攻击和入侵者常用的一些技术和策略。看到这个项目之后,来自 Veramine 团队的研究员也创建了一个项目,用于总结和讨论如何检测和防御 ATT&CK 项目中涉及的攻击技术: https://attack.mitre.org/wiki/Main_Page https://github.com/veramine/Detections/wiki https://veramine.com Seattle, Washington Veramine 4 0 32 19 1 JavaScript,C++ 96 12
leostat rtfm - 以数据库形式存储常用工具的命令行参数的工具,比如记录 sqlmap 的命令行格式: https://github.com/leostat/rtfm https://necurity.co.uk Yorkshire, UK None 6 0 3 19 0 Python,C,HTML,Ruby,PowerShell 558 61
ivildeed Update your VMware instances: https://github.com/ivildeed/vmw_vmx_overloader None None None 1 0 7 19 9 C++ 121 36
elkokc reflector - 在浏览网站时实时监测反射型 XSS 页面的 BurpSuite 插件: https://github.com/elkokc/reflector/ None None None 7 0 5 19 0 Python,Ruby,Java 263 68
Spajed ProcessRefund - 前两天推送了一种新的无文件恶意软件杀软逃逸技术 - Process Doppelgänging,今天研究员在 GitHub 上分享了一个 PoC 代码: https://github.com/Spajed/processrefund None None None 2 0 2 19 0 C,Java 146 71
Skons RDS hijacking again - this time start a process inside another RDP session, without SYSTEM rights https://github.com/Skons/ms17-0100/blob/master/Start-ProcessInSession.ps1 None Twitter: @sk0ns None None 14 0 1 19 1 Python,C#,PowerShell 23 13
oxagast An advanced fuzzing framework designed to find vulnerabilities in C/C++ code https://github.com/oxagast/ansvif http://maskster.site I turn RedBull into code, parts into machines, and am an expert at being an amateur at all things. Asheville, NC, USA Dominos Pizza 13 0 19 18 9 Assembly,JavaScript,Java,C++,Perl 0 0
hxp2k6 Smart7ec:基于Linux c开发的插件式扫描器(Python/lua) https://github.com/hxp2k6/smart7ec-scan-console None None None 321 0 0 18 4 Python,C,JavaScript 28 87
havysec vulnerable-scene: 基于 Exploit-DB的漏洞环境 https://github.com/havysec/vulnerable-scene https://weibo.com/crypto1as None None 67 0 5 18 1 Python,Shell,PHP,JavaScript 33 3
mhelwig APK-Anal - 基于 Radare2 的 Android APK 静态分析工具: https://github.com/mhelwig/apk-anal https://www.codemetrix.io IT-Security Consultant (@c0dmtr1x on Twitter) Germany codemetrix.io 17 0 3 17 0 Python,JavaScript,Java 147 25
egaus MaliciousMacroBot: classify and cluster Microsoft office document https://github.com/egaus/MaliciousMacroBot None None None 11 0 1 17 0 Python,Bro,Jupyter 102 18
Ike-Clinton AeroHive AP 340 路由器 Root Exploit: https://github.com/Ike-Clinton/aerohive-ap340-root None None None 61 0 57 17 14 Python,C,Shell,C++ 0 0
Flyteas Struts2 S2-045 漏洞检测利用工具 Exp GUI 版 https://github.com/Flyteas/Struts2-045-Exp http://flyteas.com Linux kernel ? Web security ? Chongqing CS,CQU 20 0 20 17 7 Pascal,Java,C++ 59 26
robertfisk New USG Firewalls Protect USB Drives From Malicious Attacks : https://github.com/robertfisk/USG/wiki ,Technical Details :... https://github.com/robertfisk/USG/wiki None None None 2 0 2 16 0 C 374 34
neithernut Git-dit : A distributed issue tracker for git : https://github.com/neithernut/git-dit None None None 14 0 39 16 10 C,C++,Rust 0 0
adamkusey Detecting Malicious Requests Using Keras & Tensorflow https://github.com/adamkusey/securitai-lstm-model None Chicago None 4 0 6 16 0 Python,JavaScript 41 27
julieeen KleeFL - Seeding fuzzers with symbolic execution,为 Fuzzer 增加符号执行的支持: https://github.com/julieeen/kleefl https://twitter.com/julieeen Security Researcher @ SecT, TU Berlin & T-Labs Potsdam - Berlin SecT - TU Berlin 15 0 11 15 12 Python,C,C++ 0 0
gento New SMB code release: open source honeypot Dionaea is capturing #WannaCry in the wild! https://github.com/gento/dionaea None None None 6 0 0 15 0 Python,Go,C 71 18
ariccio altWinDirStat - 非官方开源版本的 WinDirStat,用于实时展示磁盘的使用情况: https://github.com/ariccio/altWinDirStat http://about.me/ariccio NYC None 45 0 112 15 28 Python,C#,C++ 251 24
smythtech sdnpwn - SDNs 安全性的工具: https://github.com/smythtech/sdnpwn https://www.smythtech.net Security researcher Ireland None 16 0 15 14 4 Python,Shell,Java,HTML 0 0
pythonran Pcap_tools: 基于网络流量包的漏洞自动化分析 https://github.com/pythonran/Pcap_tools None None None 15 0 6 14 5 Python,JavaScript 0 0
phar eyephish : PoC for computer vision phishing domain name generator : https://github.com/phar/eyephish None None None 29 0 5 14 0 Python,C 36 10
mogongtech RansomDetection: 基于行为的Ransomware检测原型 https://github.com/mogongtech/RansomDetection None None None 1 0 0 14 0 C++ 28 16
manikantareddyd ics-attack-detection: Detection of Cyber Attacks with Zone Dividing and PCA https://github.com/manikantareddyd/ics-attack-detection https://ManikantaReddyD.github.io Atlanta, GA, USA Graduate Researcher, Georgia Tech 75 0 20 14 1 Python,JavaScript 0 0
g-solaria OSINTforPenTests 渗透者的开源情报搜集 https://github.com/g-solaria/OSINTforPenTests/blob/master/OSINTforPenTests.pdf http://twitter.com/g_solaria None None 3 0 0 14 0 Python 54 11
EyeOfRa 上周推送过 FireEye 一篇监控 Windows Console 活动的 Blog,有位研究员根据 Blog 自己实现了一个工具: https://github.com/EyeOfRa/WinConMon http://eyeofrablog.wordpress.com Reverse engineering, O/S security, security solution development. HaNoi, VietNam None 5 0 0 14 0 Go,PowerShell,C++ 60 16
bugsafe WeReport: 渗透报告自动化生成平台 https://github.com/bugsafe/WeReport None None None 4 0 2 13 0 Python,PHP,Java 74 16
bkup SlackShell - 基于 Slack API 的 PowerShell 版本 C&C 命令控制实现: https://github.com/bkup/SlackShell None Pittsburgh, PA None 4 0 3 13 0 Python,Shell,PowerShell 77 13
ezarko OpenDLP: 免费&开源的DLP 系统 https://github.com/ezarko/opendlp https://github.com/oracle Marin County, California @oracle 38 0 24 12 9 Objective-C,Perl 38 29
dxflatline A TCP proxy over named pipes for maintaining a #meterpreter session over 445 for less network alarms #smb - https://github.com/dxflatline/flatpipes http://www.securityfiction.com/ (not working) Wire: dcflatline (66BF47AC0B00E679 / 32F5EB8870BA4E81) None Obrela Security Industries 9 0 34 12 30 C#,C 0 0
anilyuk Puny Domain Check - 用于检测 Punycode 域名的工具: https://github.com/anilyuk/punydomaincheck None None None 6 0 60 12 2 Python,TeX,Shell,PowerShell 31 7
tomacwrt Sword - 基于 Openwrt 的 Dropboxes 渗透测试用户操作界面: https://github.com/tomacwrt/tomacwrt.github.io/blob/master/sword.pdf None None None 1 0 0 11 0 126 37
shinyke Time-NLP: 中文语句中的时间语义识别 https://github.com/shinyke/Time-NLP https://github.com/shinyke GuangZhou, China uc 2 0 14 10 2 Java 340 117
phocean Metasploit Framework docker 版本 https://github.com/phocean/dockerfile-msf https://phocean.net None None 23 0 235 10 2 Python,JavaScript,Dockerfile 480 85
niloofarkheirkhah Nili - 一款集网络扫描、中间人攻击、协议逆向与 Fuzz 为一体的工具: https://github.com/niloofarkheirkhah/nili None [email protected] None None 2 0 3 10 2 Python 164 34
luctalpe WMIMon - 用于监控 Windows WMI 行为的工具: https://github.com/luctalpe/WMIMon https://github.com/microsoft Paris @microsoft 3 0 1 10 0 C++ 0 0
evilsocketbr Shodanwave - 针对 Netwave IP 摄像头的信息获取及利用工具: https://github.com/evilsocketbr/shodanwave None None None 3 0 5 10 1 Python 0 0
davidoren CuckooSploit: automated analysis of web-based exploits, based on Cuckoobox https://github.com/davidoren/CuckooSploit None None None 3 0 0 10 0 Python,C,MATLAB 123 35
a118n Powershell scripts useful for Windows enterprise administration https://github.com/a118n/poweradmin None None None 6 0 35 10 0 Shell,HTML,PowerShell 0 0
Waffles-2 CVE-2017-7494 - Detection Scripts https://github.com/Waffles-2/SambaCry None Daniel Perrie, focusing on malware analysis. United Kingdom None 2 0 0 10 0 Python,Lua 61 21
szimeus evalyzer - 利用 WinDBG 来调试 JavaScript 的脚本: https://github.com/szimeus/evalyzer None None None 5 0 0 9 0 HTML,Java,CSS 76 31
stoyan-shopov Troll - 针对 ARM Cortex-M 系统的 C 语言源码级调试器: https://github.com/stoyan-shopov/troll#testing-the-troll None None None 42 0 16 9 1 C,C++ 0 0
flowztul keyexec - 自动解锁磁盘加密 LUKS 设备的脚本(Ubuntu 16.04 LTS): https://github.com/flowztul/keyexec None None None 21 0 1 9 0 Shell,Java,Python,C++,Go,Ruby 30 5
alexvanmaele ics-checklist: Industrial Security Checklist https://github.com/alexvanmaele/ics-checklist http://atlesque.com Art and Open-Source aficionado Creative portfolio @ http://atlesque.com Belgium Alexander Atlesque 20 0 0 9 5 JavaScript,PHP,PLpgSQL 8 4
JannikArndt E-Mail Tracker Blocker 禁止邮件跟踪(隐私保护) https://github.com/JannikArndt/EMailTrackerBlocker http://www.jannikarndt.de Scala Dev Hamburg MOIA 30 0 75 9 31 C#,Scala 0 0
IoTsec Z3sec: Penetration testing framework for ZigBee security research https://github.com/IoTsec/Z3sec None Research resources on IoT security and privacy by the Friedrich-Alexander-Universität Erlangen-Nürnberg and the University of Mannheim. None None 2 0 0 9 0 Python 56 7
yongchuan msafe: 从底层分析PHP执行代码的安全性(混淆/审计) https://github.com/yongchuan/msafe None None None 11 0 0 8 0 C,PHP,C++ 68 33
ondrejbudai hidviz : Tool for in-depth analysis of USB HID devices communication : https://github.com/ondrejbudai/hidviz/ https://github.com/ondrejbudai/hidviz/ None None None 34 0 11 8 0 C++ 0 0
coincoin7 Wireless-Router-Vulnerability: 无线路由漏洞及利用代码 https://github.com/coincoin7/Wireless-Router-Vulnerability None None None 2 0 2 8 0 Python,JavaScript 48 15
butteff How to make your Ubuntu less shitty https://github.com/butteff/Ubuntu-Telemetry-Free-Privacy-Secure None Moscow, Russia None 8 0 33 8 15 Shell,PHP 83 14
RedLectroid Tool for easily generating sketches for Arduinos to deliver HID attacks via keyboard emulation https://github.com/RedLectroid/OverThruster None Computer security enthusiast and martial artist. I like to find holes in defenses and exploit them. None None 3 0 1 8 1 Python 99 29
jevalenciap 获取IP相对应域名脚本 https://github.com/jevalenciap/iptodomain None Colombia None 8 0 0 7 0 Python 37 47
SaulLawliet watchdog: IF (网页某区域有变化) THEN (邮件提醒你) https://github.com/SaulLawliet/watchdog https://0111.studio/ Everythings gonna be OK. Earth ;) None 11 0 43 7 6 Python,C,Shell,Ruby 0 0
LisonFan china_ip_list: 中国 IP 地址列表( IPIP&APNIC ) https://github.com/LisonFan/china_ip_list None None None 17 0 168 7 3 HTML,Objective-C,Shell,Dockerfile,JavaScript 233 56
roastbeef CompileShellCode.py : Embed up to 65KB of Shellcode into a x86 Windows exe for analysis : https://github.com/roastbeef/compileShellCode/blob/master/compileShellCode.py None None None 0 0 0 6 0 0 0
brandonasuncion Reverse-Engineering-Bluetooth-Protocols (Reverse-Engineering a Bluetooth-Enabled Radar Detector) : https://github.com/brandonasuncion/Reverse-Engineering-Bluetooth-Protocols https://brandonasuncion.dev Software Engineer // iOS Developer // Tech Enthusiast California None 24 0 169 6 8 Python,Pascal,JavaScript,Swift,C 0 0
zsenliao shellMonitor: Linux 下基于 Bash 的文件和数据库监控及备份工具,微信报警 https://github.com/zsenliao/shellMonitor None None None 4 0 89 5 0 Shell,JavaScript 72 23
jgrancell malscan: A fully featured malware scanner for Linux desktops and servers. https://github.com/jgrancell/malscan https://www.joshgrancell.com Dearborn, Michigan Campbell Marketing and Communications 9 0 6 5 1 Go,Shell,HTML 0 0
yawuplus weibo-api: 免登陆获取新浪微博数据的Python库 https://github.com/yawuplus/weibo-api http://yawujia.cn/ Talk is cheap,show me the code. Contact me via [email protected] China None 29 0 139 4 57 Python,JavaScript,Java,C++ 0 0
vysec morphHTA - Morphing Cobalt Strikes evil.HTA https://github.com/vysec/morphHTA None None None 0 0 0 4 0 0 0
phroxvs 【EXP】VMware vSphere Data Protection CVE-2016-7456 Authentication Bypass https://github.com/phroxvs/metasploit-framework/blob/exploit_vdp_known_privkey/modules/exploits/linux/ssh/vmware_vdp_known_privkey.rb None Munich, Germany HvS-Consulting AG 2 0 0 4 1 Ruby,PowerShell 8 1
mudiyouyou 外卖订单爬虫:美团,饿了么,百度 https://github.com/mudiyouyou/waimai-crawler None Beijing None 9 0 6 4 1 Python,HTML,Java,JavaScript 116 54
jingchengyou crawler_email: crawl email of BBS 论坛邮件地址获取 https://github.com/jingchengyou/crawler_email None Tomorrow is better! None None 6 0 0 4 0 Python,HTML 8 6
casperreverser Reverse engineering a hypocritical private API! https://github.com/casperreverser/CasperReverse/blob/master/writeup.md None None None 1 0 0 4 0 Assembly 53 12
Hack-Hut Automatic remote/local file inclusion vulnerablity analysis and exploit tool https://github.com/Hack-Hut/CrabStick http://www.hackhut.co.uk None None 17 0 8 4 0 Python,C 0 0
matthiasmaes Development of an anomaly based web application firewall https://github.com/matthiasmaes/AnomalyWebApplicationFirewall http://matthiasmaes.me Belgium Odisee 6 0 2 3 0 Python,HTML,Java,CSS 0 0
juansacco YeAHPot: Yet Another Honey Pot https://github.com/juansacco/yetanotherhoneypot None None None 1 0 0 3 0 0 0
fs0c1ety 前两周推送过 Android 平台模仿 WannaCry 的勒索软件 - SLocker,有研究员通过逆向的方式还原了它的源码: https://github.com/fs0c1ety/SLocker None None None 1 0 0 3 0 HTML 0 0
kyurchenko 用于辅助分析 UEFI 的 IDA Python 脚本: https://github.com/kyurchenko/IDAPython-scripts-for-UEFI-analisys None St. Petersburg None 5 0 1 1 6 Python,C,Makefile 1 0
fredericopissarra mixed packet injector tool https://github.com/fredericopissarra/t50 https://bitismyth.wordpress.com/ None None 1 0 0 1 0 C 0 0
Phreak87 Build your own Bad USB Stick for pentesting with wifi and dip switches http://bit.ly/2i8Xpko #infosec #hacking... https://github.com/Phreak87/ESPeensy-and-Peensy-Payload-Generator-ESP8266-Teensy-3.5- http://github.com/Phreak87 Germany NerdCoreWG 17 0 16 1 11 C#,Visual,JavaScript 0 0
CoalfireLabs Added two more Java deserialization exploits! 1 for Jenkins and 1 for WebLogic. Getem here https://github.com/CoalfireLabs/java_deserialization_exploits. None None None 0 0 0 1 0 0 0
weiboad fiery: APM for PHP 基于PHP的分布式跟踪系统 https://github.com/weiboad/fiery None None None None 0 0 0 0 0 Objective-C,PHP,Java,C++ 0 0
wafpassproject wafpassproject: 各种WAF 测试与 Bypass用例 https://github.com/wafpassproject/wafpass None None None None 0 0 0 0 0 Python 0 0
vusec Implementation of our S&P16 paper: A Tough Call: Mitigating Advanced Code-Reuse https://github.com/vusec/typearmor None None None None 0 0 0 0 0 Python,C,Java,OCaml,C++ 0 0
tylerhalfpop List of reverse engineering resourceshttps://github.com/tylerhalfpop/awesome-reversing#reverseengineering https://github.com/tylerhalfpop/awesome-reversing#reverseengineering None None None None 0 0 0 0 0 None 0 0
sonarwhal 微软开源扫描工具Sonar https://github.com/sonarwhal/sonar None None None None 0 0 0 0 0 None 0 0
session-replay-tools tcpcopy - TCP 流重放工具: https://github.com/session-replay-tools/tcpcopy None None None None 0 0 0 0 0 C 0 0
samgha vipas: Vipasyin Webshell detector Go 语言编写的Webshell检测工具 https://github.com/samgha/vipas None None None None 0 0 0 0 0 C,XSLT,Python,JavaScript,C++,Go 0 0
recodeking recodeking/MalwareAnalysis: 恶意软件分析工具和资源列表 https://github.com/recodeking/MalwareAnalysis None None None None 0 0 0 0 0 None 0 0
rebellionil tornado: All in one MITM tool https://github.com/rebellionil/tornado None None None None 0 0 0 0 0 None 0 0
orppra ropa - 基于 Ropper 实现的一个 GUI 版本的 ROP 链构造工具: https://github.com/orppra/ropa None None None None 0 0 0 0 0 Python,JavaScript 0 0
olacabs JACKHAMMER - Security vulnerability assessment tool https://github.com/olacabs/jackhammer None None None None 0 0 0 0 0 Python,JavaScript,Java,HTML 0 0
mromnia FB Event Map API https://github.com/mromnia/fb_event_map None None None None 0 0 0 0 0 None 0 0
missDronio MySQL盲注检测脚本 https://github.com/missDronio/blindy None None None None 0 0 0 0 0 None 0 0
minisllc Domain Hunter - 域名信誉对于攻击者从事钓鱼和 C&C 很重要,所以攻击者开始尝试注册一些过期的历史信誉良好的域名,用于躲避检测。Domain Hunter 这个工具用于识别这类域名: https://github.com/minisllc/domainhunter None None None None 0 0 0 0 0 None 0 0
manwhoami Bella : A pure python, post-exploitation, data mining tool and remote administration tool for macOS : https://github.com/manwhoami/Bella None None None None 0 0 0 0 0 None 0 0
m3liot filewatcher - macOS 系统一款监控进程资源访问情况的工具,比如可以监控指定进程的文件访问操作: https://github.com/m3liot/filewatcher None None None 1 0 0 0 0 HTML 0 0
lianfeng30 githubscan: GitHub敏感信息扫描工具 https://github.com/lianfeng30/githubscan None None None None 0 0 0 0 0 None 0 0
laplinker Use Wireshark to sniff CAN traffic in windows for under 20$ worth of hardware: https://github.com/laplinker/CAN-pipe None None None None 0 0 0 0 0 None 0 0
kotobukki BigDataAudit: security vulns detector for Hadoop and Spark 大数据安全检测工具 https://github.com/kotobukki/BigDataAudit None None None None 0 0 0 0 0 None 0 0
jumpserver jumpserver: 开源跳板机(堡垒机):认证,授权,审计,自动化运维 https://github.com/jumpserver/jumpserver None None None None 0 0 0 0 0 Python,Java,JavaScript,Dockerfile,HTML 0 0
joshDelta Gloom-Framework - Linux 渗透测试框架: https://github.com/joshDelta/Gloom-Framework None None None None 0 0 0 0 0 None 0 0
intelpt Just checked in Windows Intel PT Driver for Windows v0.5 from our presentation https://github.com/intelpt/WindowsIntelPT None None None None 0 0 0 0 0 Python,C,C++ 0 0
intellectualheaven ceed : A tiny x86 compiler with ELF and PE target : https://github.com/intellectualheaven/ceed , Details : https://github.com/intellectualheaven/ceed None None None None 0 0 0 0 0 0 0
fiht educn-sqlScan: 对全国edu域名以及其二级域名进行的一次Sql注入 https://github.com/fiht/educn-sqlScan None None None None 0 0 0 0 0 None 0 0
falexorr Siofra - DLL 劫持漏洞扫描器、PE 感染工具: https://github.com/falexorr/Siofra None None None 1 0 0 0 0 Assembly 2 0
docileninja dress : add symbols back into a stripped ELF binary (~strip) : https://github.com/docileninja/dress None None None None 0 0 0 0 0 None 0 0
checkyfuntime iMessagesBackdoor - 利用 iMessage 支持的 AppleScript Handler 可以设置后门,发一条消息就可以触发后门被激活:: https://github.com/checkyfuntime/iMessagesBackdoor None None None None 0 0 0 0 0 None 0 0
chamli CyberCrowl is a python Web path scanner tool https://github.com/chamli/CyberCrowl None None None None 0 0 0 0 0 None 0 0
bunnyblue Android AntiVM - Android虚拟机检测库,意在未授权的情况下禁止在虚拟机App上非法运行: https://github.com/bunnyblue/AntiVM None None None None 0 0 0 0 0 None 0 0
bulaza 自动化动态恶意软件分析中的逃逸与反逃逸技术调查(Paper) https://github.com/bulaza/Publications/blob/master/ROOTS2017/A%20Survey%20On%20Automated%20Dynamic%20Malware%20Analysis%20Evasion%20and%20Counter-Evasion.pdf None None None None 0 0 0 0 0 None 0 0
brandis-project Brandis - Web 版的端到端加密应用: https://github.com/brandis-project/brandis None None None None 0 0 0 0 0 HTML 0 0
blog SHA-1 computations on http://GitHub.com now detect and reject Git content that may signal a collision attack. https://github.com/blog/2338-sha-1-collision-detection-on-github-com None None None None 0 0 0 0 0 0 0
blockchain-university databank: 区块链技术相关的论文、文档 https://github.com/blockchain-university/databank None None None None 0 0 0 0 0 Shell,Java,Python,JavaScript,Haskell,TeX,HTML,Go,CSS 0 0
blastxiang lucky-js-fuzz: 开源jsfuzzer https://github.com/blastxiang/lucky-js-fuzz None None None None 0 0 0 0 0 None 0 0
adaptivethreat Roasting AS-REPs http://www.harmj0y.net/blog/activedirectory/roasting-as-reps/ how to abuse accounts w/o Kerberos preauth enabled, basic toolset at https://github.com/adaptivethreat/ASREPRoast None None None None 0 0 0 0 0 0 0
aWeiMiaoMiao db_security:数据库安全审计工具 https://github.com/aWeiMiaoMiao/db_security None None None None 0 0 0 0 0 None 0 0
WhitewidowScanner whitewidow - SQL 漏洞扫描器: https://github.com/WhitewidowScanner/whitewidow None None None None 0 0 0 0 0 Ruby 0 0
VVard0g ThreatHuner-Playbook: 从Windows事件和Sysmon日志分析取证 https://github.com/VVard0g/ThreatHunter-Playbook None None None None 0 0 0 0 0 None 0 0
SparkSharly Deep Learning for detection with XSS https://github.com/SparkSharly/DL_for_xss None None None None 0 0 0 0 0 Python 0 0
SerpicoProject Serpico - 渗透测试报告生成与协作工具: https://github.com/SerpicoProject/Serpico None None None None 0 0 0 0 0 JavaScript,Ruby,HTML 0 0
SecurityFTW Cloud Security Suite (cs-suite) - 亚马逊 AWS 云基础设施安全审计工具: https://github.com/SecurityFTW/cs-suite None None None None 0 0 0 0 0 Shell,HTML 0 0
PowerShellMafia CimSweep - 基于 CIM/WMI 的应急响应和威胁检测工具,该工具可以远程在 Windows 全版本使用: https://github.com/PowerShellMafia/CimSweep None None None None 0 0 0 0 0 PowerShell 0 0
PassingTheKnowledge Ganxo - 开源 API Hook 框架: https://github.com/PassingTheKnowledge/Ganxo None None None None 0 0 0 0 0 C,Batchfile 0 0
OrOneEqualsOne Reconned - 用于搜集子域名的工具,之前叫 PyBrute: https://github.com/OrOneEqualsOne/reconned None None None None 0 0 0 0 0 None 0 0
MalwareReverseBrasil malwaresearch: A command line tool to find malwares https://github.com/MalwareReverseBrasil/malwaresearch None None None None 0 0 0 0 0 None 0 0
M1ND-B3ND3R BoopSuite : Wireless Sniffer Tool (in Python for wireless auditing/security testing) as alternative to airodump-ng : https://github.com/M1ND-B3ND3R/BoopSuite None None None None 0 0 0 0 0 None 0 0
KruDex lan-monitor - 根据 NMAP 扫描结果在网页上显示 LAN 状态: https://github.com/KruDex/lan-monitor None None None None 0 0 0 0 0 None 0 0
ICT-BDA EasyML: 中科院计算所开源的交互式图形化机器学习平台 https://github.com/ICT-BDA/EasyML None None None None 0 0 0 0 0 Python,Java,C++ 0 0
ICSrepo TRISIS/TRITON/HATMAN 恶意软件样本的原始和反编译样本: https://github.com/ICSrepo/TRISIS-TRITON-HATMAN None None None None 0 0 0 0 0 None 0 0
Hadesy2k sqliv - 大范围 SQL 注入漏洞扫描器: https://github.com/Hadesy2k/sqliv None None None None 0 0 0 0 0 None 0 0
Grey-Noise-Intelligence Grey-Noise-Intelligence: GreyNoise威胁情报接口使用说明 https://github.com/Grey-Noise-Intelligence/api.greynoise.io None None None None 0 0 0 0 0 None 0 0
GoogleChrome Puppeteer - 基于 DevTools 协议,用于自动化控制 Chrome 浏览器的 Node 库,可用来实现网络爬虫、网页截图、UI 测试等等: https://github.com/GoogleChrome/puppeteer None None None None 0 0 0 0 0 TypeScript,Java,Python,JavaScript,HTML,CSS 0 0
EtixLabs Cameradar - 攻击 RTSP 监控摄像头的工具: https://github.com/EtixLabs/cameradar None None None None 0 0 0 0 0 Python,JavaScript,OCaml,C++,CoffeeScript,Objective-C,HTML,Go,PHP,Swift 0 0
DLACERT ThreatHunting - 在 Windows 系统中寻找威胁的 PowerShell 脚本: https://github.com/DLACERT/ThreatHunting None None None None 0 0 0 0 0 None 0 0
Cymmetria Struts Apache 2 based honeypot & detection module by @nirkrakowksi @lorgandon https://t.co/oJzc8qnvFo [CVE 2017-5638 https://github.com/Cymmetria/StrutsHoneypot None None None None 0 0 0 0 0 ASP,Python,JavaScript,Shell,HTML,PHP 0 0
CyberArkLabs ACLight - 用于寻找域中高权限账户和隐藏管理员的 Powershell 脚本: https://github.com/CyberArkLabs/ACLight None None None None 0 0 0 0 0 None 0 0
Canbing007 wukong: 悟空扫描器 https://github.com/Canbing007/wukong None None None None 0 0 0 0 0 None 0 0
CERT-BDF CERT-BDF/Cortex: Powerful Observable Analysis Engine https://github.com/CERT-BDF/Cortex None None None None 0 0 0 0 0 0 0
BloodHoundAD SharpHound - C# 重写的 BloodHound Ingestor,它用图论的形式展示 Active Directory 环境中的节点的关系: https://github.com/BloodHoundAD/BloodHound https://github.com/BloodHoundAD/SharpHound https://github.com/BloodHoundAD/SharpHound None None None None 0 0 0 0 0 Python,C#,PowerShell 0 0
BinaryAnalysisPlatform QEMU Interactive Runtime Analyser https://github.com/BinaryAnalysisPlatform/qira None None None None 0 0 0 0 0 C,Shell,Python,OCaml,C++,TeX,HTML,Rust 0 0
AndroidVTS Android漏洞测试套件 https://github.com/AndroidVTS/android-vts None None None None 0 0 0 0 0 Java 0 0
0Linchen CTFCrackTools: 中国国内首个CTFcrack框架 https://github.com/0Linchen/CTFCrackTools None None None None 0 0 0 0 0 None 0 0

日更新程序

python update_daily.py