RAB: Provable Robustness Against Backdoor Attacks

爬取secwiki和xuanwu.github.io/sec.today,分析安全信息站点、安全趋势、提取安全工作者账号(twitter,weixin,github等)

SpringBoot Actuator未授权自动化利用，支持信息泄漏/RCE

Extract and decrypt browser data, supporting multiple data types, runnable on various operating systems (macOS, Windows, Linux).

Simple, fast, safe, compiled language for developing maintainable software. Compiles itself in <1s with zero library dependencies. Supports automatic C => V translation. https://vlang.io

CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost

Automatically update your Windows hosts file with the WSL2 VM IP address

为各位出色的渗透工程师提供攻击目标。

A Win7 RDP exploit

A c0 -> LLVM IR compiler, with some optimization.

CTF中任意文件读取的fuzz列表 (Arbitrary file read fuzz list in CTF)

Web CTF CheatSheet 🐈

Index of CTFHub Base Images

Java web common vulnerabilities and security code which is base on springboot and spring security

weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-2018-2893、CVE-2018-2894、CVE-2018-3191、CVE-2018-3245、CVE-2018-32…

De1CTF2020

CTF常用解题工具集成环境 Intergrated CTF Environment

渗透测试有关的POC、EXP、脚本、提权、小工具等，欢迎补充、完善---About penetration-testing python-script poc html-poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql

为应对CTF比赛而搭建的各种环境

CTF🚩 AWD (Attack with Defense) 线下赛平台 / AWD platform - 欢迎 Star~ ✨

Pre-Built Vulnerable Environments Based on Docker-Compose

Web-Security-Learning

西工大成绩通知机

泡面哥汤达人的前世今生，从默默无闻到人人喊打【截止到2019年12月9日】

CTF Training 经典赛题复现环境

一个汇集了部分安全工具的集成环境

CTFs as you need them

A plugin for CTFd which allow your users to deploy a standalone instance for challenges.

A fast reverse proxy to help you expose a local server behind a NAT or firewall to the internet.