Tom-Cooper11
Follow
Lists (26)
APP
Audit
Book
Bounty
Burp
Bypass
Cloud
CTF
CVE
Decode
emergency
env-vuln
Gather
IoT
PN
Poc
Python
reverse
special
tools
Vuln
CVE,CNVDVuln Tools
toolsVulScanner
WAF
web
Windows
Stars
Web 版 Java Payload 生成与利用工具,提供 Java 反序列化、Hessian 1/2 反序列化等Payload生成,以及 JNDI、Fake Mysql、JRMPListener 等利用|The web version of Java Payload generation and utilization tool provides Payload generation su…
"chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability rules, supports decompilation, custom rule creation, and is com…
Rapidly Search and Hunt through Windows Forensic Artefacts
A static-code-analysis tool for performing security-focused code reviews. It enables an auditor to swiftly map the attack-surface of a large application, with an emphasis on identifying development…
自动化反编译微信小程序,小程序安全评估工具,发现小程序安全问题,自动解密,解包,可还原工程目录,支持Hook,小程序修改
Bark is an iOS App which allows you to push custom notifications to your iPhone
Android security insights in full spectrum.
A privacy-first, open-source platform for knowledge management and collaboration. Download link: http://github.com/logseq/logseq/releases. roadmap: http://trello.com/b/8txSM12G/roadmap
Unofficial mirror of FernFlower Java decompiler (All pulls should be submitted upstream)
ysoserial修改版,着重修改ysoserial.payloads.util.Gadgets.createTemplatesImpl使其可以通过引入自定义class的形式来执行命令、内存马、反序列化回显。
提取微信聊天记录,将其导出成HTML、Word、Excel文档永久保存,对聊天记录进行分析生成年度聊天报告,用聊天数据训练专属于个人的AI聊天助手
微信客户端取证,可获取用户个人信息(昵称/账号/手机/邮箱/数据库密钥(用来解密聊天记录));支持获取多用户信息,不定期更新新版本偏移,目前支持所有新版本、正式版本
Open source API development ecosystem - https://hoppscotch.io (open-source alternative to Postman, Insomnia)
Universal MCT wrapper script for all Windows 10/11 versions from 1507 to 21H2!
FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本),主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用
awesome cloud security 收集一些国内外不错的云安全资源,该项目主要面向国内的安全人员