Repository navigation

#

vulnerability

swisskyrepo/PayloadsAllTheThings
swisskyrepo / PayloadsAllTheThings 

A list of useful payloads and bypass for Web Application Security and Pentest/CTF

pentestpayloadbypassWeb appHackingvulnerabilitybountymethodologyprivilege-escalationpenetration-testingcheatsheet安全enumerationBug BountyredteampayloadsHacktoberfest
Python
64772
10 天前
aquasecurity / trivy 

Find vulnerabilities, misconfigurations, secrets, SBOM in containers, Kubernetes, code repositories, clouds and more

安全Dockercontainersvulnerability-scannersvulnerability-detectionvulnerabilityGoKubernetesHacktoberfestdevsecopsmisconfigurationInfrastructure as code
Go
25520
18 小时前
The-Art-of-Hacking/h4cker
The-Art-of-Hacking / h4cker 

This repository is primarily maintained by Omar Santos (@santosomar) and includes thousands of resources related to ethical hacking, bug bounties, digital forensics and incident response (DFIR), artificial intelligence security, vulnerability research, exploit development, reverse engineering, and more.

Hackingpenetration-testinghacking-seriesCybersecurityethical-hackinghackerExploitexploit-developmentvulnerabilityvulnerability-assessmentvulnerability-managementAwesome Liststraininghackers人工智能ai-security
Jupyter Notebook
20617
5 天前
chaitin/SafeLine
chaitin / SafeLine 

SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.

firewallhttp-flood安全sql-injectionwafweb-application-firewallweb-securityxsscaptchaAPIappsecCommon Vulnerabilities and Exposures (CVE)Cybersecurityhackersvulnerabilitywebsecurityapplication-securitybruteforceblueteam自托管
Go
16087
9 天前
Hacker0x01 / hacker101 

Source code for Hacker101.com - a free online web and mobile security class.

教学Hacking安全hackeronehacker101xssclickjackingcsrfweb-securitysession-fixationsql-injectionmobile-securityvulnerability
SCSS
14041
2 个月前
chaitin/xray
chaitin / xray 

一款长亭自研的完善的安全评估工具,支持常见 web 安全问题扫描和自定义 poc | 使用之前务必先阅读文档

安全vulnerabilityvulnerability-scannerpassive-vulnerability-scannerxsssqlinjectionpoc
Vue
10824
6 个月前
anchore/grype
anchore / grype 

A vulnerability scanner for container images and filesystems

containers安全vulnerabilityDockerGostatic-analysiscontainer-image工具ocicyclonedxvulnerabilitiesHacktoberfestopenvexvex
Go
9718
15 小时前
frohoff/ysoserial
frohoff / ysoserial 

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

JavadeserializationgadgetExploitjavadeserserializationpocvulnerability
Java
8148
1 年前
trickest / cve 

Gather and update all available and newest CVEs with their PoC.

pocCommon Vulnerabilities and Exposures (CVE)cve-poclatest-cvevulnerabilityvulnerabilitiessoftware-vulnerabilitiessoftware-securityExploit安全CybersecurityHackingpentestingpenetration-testingred-teamsoftware-vulnerability
HTML
6898
16 小时前
nomi-sec / PoC-in-GitHub 

📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.

安全Common Vulnerabilities and Exposures (CVE)Exploitpocvulnerability
6848
2 小时前
KathanP19 / HowToHunt 

Collection of methodology and test case for various web vulnerabilities.

vulnerability教程bughunting-methodologyBug Bountybugbountytips
6346
1 个月前
daffainfo / AllAboutBugBounty 

All about bug bounty (bypasses, payloads, and etc)

Bug BountybugbountytipsbypasspayloadsreconnaissancebugHacking安全payloadpenetration-testingvulnerabilityCybersecuritypentest
6206
2 年前
infoslack / awesome-web-hacking 

A list of web application security

penetration-testingweb-hackingvulnerabilitiesscannerHackinghacking-toolsmetasploitweb-securityappsecowasppentesting安全vulnerability
6148
4 个月前
LandGrey / SpringBootVulExploit 

SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list

Spring Bootspringboot-actuator-rcercespring-boot-vulnerabilityspringcloudspring-vulnerabilityvulnerabilityspring-actuator-vulnerability
Java
5922
4 年前
infobyte / faraday 

Open Source Vulnerability Management Platform

DevOpspenetration-testingvulnerabilityvulnerability-scanners安全pentestingcontinuous-scanningCybersecurityvulnerability-managementcollaborationburpsuitenessusnmapdevsecopssecurity-automationorchestrationCommon Vulnerabilities and Exposures (CVE)appsec
Python
5362
1 个月前
zhzyker / exphub 

Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

weblogictomcatExploitpocvulnerabilityexpwebshellDrupalgetshellnexuscve-2020-2555cve-2020-1938cve-2020-2883cve-2020-2551cve-2020-14882
Python
4199
4 年前
hahwul/dalfox
hahwul / dalfox 

🌙🦊 Dalfox is a powerful open-source XSS scanner and utility focused on automation.

xss安全Bug Bountybugbounty-toolGoxss-scannerdevsecopscicd-pipelinevulnerabilityxss-detectionxss-bruteforcexss-exploitHacktoberfest
Go
4186
5 天前
greenbone / openvas-scanner 

This repository contains the scanner component for Greenbone Community Edition.

openvasvulnerabilityvulnerability-scannersvulnerability-detectionvulnerability-assessmentscannervulnerability-managementgreenbonegreenbone-vulnerability-managementgvmopenvas-scannergreenbone-community-editionfooCtechops
Rust
3747
2 天前
scipag / vulscan 

Advanced vulnerability scanning with Nmap NSE

vulnerabilityvulnerability-scannersvulnerability-detectionvulnerability-assessment安全security-scannerpenetration-testingnmapExploitvulnerability-scanningvulnerability-databasesLualua-script
Lua
3596
7 个月前
payloadbox / command-injection-payload-list 

🎯 Command Injection Payload List

command-injectioninjection安全vulnerabilitypayload-listpayloadcommand操作系统UnixLinuxWindowsmacOSapplicationapplication-securityBug Bountysecurity-researchvulnerability-researchsecurity-testing
3236
9 个月前