HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

Customized CVE FEED Notifier

Indicators from Unit 42 Public Reports

威胁情报播报

♾️ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎

拼多多apk内嵌提权代码，及动态下发dex分析

去中心化远程控制工具（Decentralized Remote Administration Tool），通过ENS实现了配置文件分发的去中心化，通过Telegram实现了服务端的去中心化

Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

Standalone man-in-the-middle attack framework used for phishing login credentials along with session cookies, allowing for the bypass of 2-factor authentication

AD Security Intrusion Detection System

A browser extension for OSINT search

OSS-Fuzz - continuous fuzzing for open source software.

TweetFeed collects Indicators of Compromise (IOCs) shared by the infosec community at Twitter. Here you will find malicious URLs, domains, IPs, and SHA256/MD5 hashes.

Simple browser extension for managing Polkadot and Substrate network accounts in a browser. Allows the signing of extrinsics using these accounts. Also provides a simple interface for compliant ext…

List of unsafe ed25519 signature libs

Fast and efficient ed25519 signing and verification in Rust.

红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。

通用登录页面安全控件钓鱼

渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve…

Prowler is an Open Cloud Security tool for AWS, Azure, GCP and Kubernetes. It helps for continuos monitoring, security assessments and audits, incident response, compliance, hardening and forensics…

golang 1.10.2 runtime code reading - golang runtime源码分析。只有思考过，你才会印象深刻。

一款用于快速导出URL、Domain和IP的小工具

A Security Tool for Bug Bounty, Pentest and Red Teaming.

Search an exploit in the local exploitdb database by its CVE

精通以太坊 （中文版）

工程师视角的 Web3 初探

WTF Solidity 极简入门教程，供小白们使用。Now supports English! 官网: https://wtf.academy