Stars
Tips and Tutorials for Bug Bounty and also Penetration Tests.
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
A list of resources for those interested in getting started in bug bounties
Automatic syncronization from Notion to Github
Web and mobile application security training platform
WebGoat is a deliberately insecure application
A collection of awesome software, libraries, documents, books, resources and cools stuffs about security.
Pre-Built Vulnerable Environments Based on Docker-Compose
Vulnerable Java based Web Application
a rep for documenting my study, may be from 0 to 0.1
Java web common vulnerabilities and security code which is base on springboot and spring security
The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)
Notebooks and Exercises for my Machine Learning courses aimed at cybesecurity students
JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)
Some payloads of JNDI Injection in JDK 1.8.0_191+
JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps v…