Working at Tencent Xuanwu Lab, Focusing on RedTeam. Former CTFer at Dubhe
CVE-2026-31431-Advanced-Exploit. CVE-2026-31431 纯文件利用
109WeChatDB-Rust. 用Rust语言编写,使用特征值从微信内存中提取数据库密钥的工具
100coffee. Coffee is a loader for ELF (Executable and Linkable Format) object files written in Rust. Coffee是一个用Rust语言编写的ELF object文件的加载器
63mac-capture-x. MacOS 超级屏幕录制,支持排除特定应用进行屏幕录制
24MultiHoneypot. 一个Go语言编写的可扩展的蜜罐框架
17My-CTF-Challenges. Go
8PickleHelper. Python
7SKit. 🚀 一个强大的开发者工具集,集成文本格式化、网络工具、截图等常用开发功能
6CyberCook. 赛博厨子,一款用Rust语言编写的编码解码工具
6Auto-Exlpoit-Framwork. AEF
6baiduyun-brute. 多线程百度云(私密分享)密码爆破工具
3JigsawSolver. 拼图工具
3WeChatPack. 微信小程序Django登陆
3xfrm-ESP-LPE. Lightweight, self-contained Linux LPE exploit via xfrm-ESP page-cache write primitive. Single-file C, no dependencies, runs on any architecture.
3proxy-ng. Proxy-Next-Generation
2exp. 收集各种各样的exp
2Sndav.github.io. CSS
2OTS. Python
2DormManagment. An amazing system for dorm managmnt
2Pickz. Pickz - 压缩包递归文件搜索工具
234c3ctf. Challenge Sources & Exploits for the 34C3 CTF
1regex-puzzles. regex puzzles in CTF
1DataStructure. 数据结构作业
1php7-opcache-override. Security-related PHP7 OPcache abuse tools and demo
1ctf-tools. CTF 工具集合
1AWD-Predator-Framework. AWD攻防赛webshell批量利用框架
1Raccoon. A high performance offensive security tool for reconnaissance and vulnerability scanning
1fuzz-wooyun-org. WooYun Fuzz 库
1shadowsocks. backup of https://github.com/shadowsocks/shadowsocks
1cobra. Cobra - Cobra is a static code analysis system that automates the detecting vulnerabilities and security issue.(白盒代码安全审计系统)
1AEF-Web.
1Scanners-Box. [Project-Kob-6]安全行业从业人员自研开源扫描器合集(不收录w3af、brakeman等知名扫描工具)🌚
1NCTF2018. Official repository of NJUPT CTF 2018
1pro-in. proxy-injection
1CTF_webboard. 天枢2018-web兴趣小组-CTF平台搭建
1EQGRP_Lost_in_Translation. Decrypted content of odd.tar.xz.gpg, swift.tar.xz.gpg and windows.tar.xz.gpg
1Blasting_dictionary. 爆破字典
1Mobile-Security-Framework-MobSF. Mobile Security Framework is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing framework capable of performing static analysis, dynamic analysis, malware analysis and web API testing.
1