#
Passer6y
Follow
Starred repositories
A curated list of bugbounty writeups (Bug type wise) , inspired from https://github.com/ngalongc/bug-bounty-reference
🔥 Turn entire websites into LLM-ready markdown or structured data. Scrape, crawl and extract with a single API.
Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
AI infrastructure security assessment tool designed to discover and detect potential security risks in AI systems.
Dify is an open-source LLM app development platform. Dify's intuitive interface combines AI workflow, RAG pipeline, agent capabilities, model management, observability features and more, letting yo…
firepwd.py, an open source tool to decrypt Mozilla protected passwords
针对JWT渗透开发的漏洞验证/密钥爆破工具,针对CVE-2015-9235/空白密钥/未验证签名攻击/CVE-2016-10555/CVE-2018-0114/CVE-2020-28042的结果生成用于FUZZ,也可使用字典/字符枚举(包括JJWT)的方式进行爆破(JWT Crack)
Automate browser-based workflows with LLMs and Computer Vision
自动化反编译微信小程序,小程序安全评估工具,发现小程序安全问题,自动解密,解包,可还原工程目录,支持Hook,小程序修改
一个 CLASS 文件混淆工具,支持方法名/字段名/参数名引用分析和重命名混淆方式,支持字符串提取/AES加密运行时解密/整型异或混淆/垃圾代码花指令混淆/等方式,支持方法和字段的隐藏,支持INVOKE指令改反射调用,配置简单,容易上手
GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems
实现文字点选、选字、选择、点触验证码识别,基于pytorch训练
PeTeReport中文版,辅助渗透测试过程,让渗透测试报告一键生成,守护网络安全!
一个想让你测试加密流量像测试明文一样简单高效的 Burp 插件。 A Burp plugin that makes testing encrypted traffic as simple and efficient as testing plaintext.
PDF scientific paper translation with preserved formats - 基于 AI 完整保留排版的 PDF 文档全文双语翻译,支持 Google/DeepL/Ollama/OpenAI 等服务,提供 CLI/GUI/Docker/Zotero
业务风险枚举与规避知识框架(Business Risk Enumeration & Avoidance Kownledge)
🔥 Web-application firewalls (WAFs) from security standpoint.
eBPF-based Linux high-performance transparent proxy solution.
Fork of the Go standard TLS library, providing low-level access to the ClientHello for mimicry purposes.