MobSF (移动端安全框架)是一个自动化的移动端应用程序(Android/iOS/Windows)安全问题检出的框架和工具,可以进行静态和动态分析的渗透测试,恶意软件分析和安全评估
#安全#SafeLine is a self-hosted WAF(Web Application Firewall) / reverse proxy to protect your web apps from attacks and exploits.
#安全#Source code for Hacker101.com - a free online web and mobile security class.
A list of resources for those interested in getting started in bug bounties
🛡️ Open-source and next-generation Web Application Firewall (WAF)
A list of web application security
#Awesome#A curated list of various bug bounty tools
Awesome Node.js Security resources
#安全#DDos Ripper a Distributable Denied-of-Service (DDOS) attack server that cuts off targets or surrounding infrastructure in a flood of Internet traffic
A container repository for my public web hacks!
JNDIExploit or a ysoserial.
A Python library to utilize AWS API Gateway's large IP pool as a proxy to generate pseudo-infinite IPs for web scraping and brute forcing.
🕷️ A `.git` folder exploiting tool that is able to restore the entire Git repository, including stash, common branches and common tags.
LunaSec - Dependency Security Scanner that automatically notifies you about vulnerabilities like Log4Shell or node-ipc in your Pull Requests and Builds. Protect yourself in 30 seconds with the LunaTra...
Offensive security drives defensive security. We're sharing a collection of SaaS attack techniques to help defenders understand the threats they face. #nolockdown
Making Favicon.ico based Recon Great again !
Stop half-done APIs! Cherrybomb is a CLI tool that helps you avoid undefined user behaviour by auditing your API specifications, validating them and running API security tests.
🎯 Fast CORS misconfiguration vulnerabilities scanner
#学习与技能提升#A Huge Learning Resources with Labs For Offensive Security Players