让"WAF绕过"变得简单

Community curated list of templates for the nuclei engine to find security vulnerabilities.

收集一些比较优秀的开源安全项目，以帮助甲方安全从业人员构建企业安全能力。

Security-related Slide Presentation & Security Research Report（大安全各领域各公司各会议分享的PPT以及各类安全研究报告）

Ghidra scripts for recovering string definitions in Go binaries

YARA signature and IOC database for my scanners and tools

An open source tool focused on software supply chain security. 墨菲安全专注于软件供应链安全，具备专业的软件成分分析（SCA）、漏洞检测、专业漏洞库。

LibZeroEvil & the Research Rootkit project.

Linux Binary Exploitation

awesome resources about cloud native security 🐿

Online hash checker for Virustotal and other services

this is new tool

Standard collection of rules for capa: the tool for enumerating the capabilities of programs

Hacker tools on Go (Golang)

Yara Rule Analyzer and Statistics

all mine papers, pwn & exploit

Malware samples, analysis exercises and other interesting resources.

Linux技术栈

Large list of fuzzy hashes of well-known malware for use with SSDEEP

Bringing you the best of the worst files on the Internet.

Elkeid is an open source solution that can meet the security requirements of various workloads such as hosts, containers and K8s, and serverless. It is derived from ByteDance's internal best practi…

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

📦 Make security testing of K8s, Docker, and Containerd easier.

一个很棒的Go框架、库和软件的中文收录大全。:alarm_clock:脚本定期与英文文档同步，包含了各工程star数/最近更新时间，助您快速发现优质项目。Awesome Go~

linux-kernel-exploits Linux平台提权漏洞集合

Main Sigma Rule Repository

It is simple command line tool to search on google. Insted of writing text in serach bar after opening google page enter text on terminal & this tool will seraach that string using firefox.

A POC for DNS spoofing in kubernetes clusters. Runs with minimum capabilities, on default installations of kuberentes.

view-private-registry is a simple bash script for listing images in a private registry v2, docker search registry-v2