Shanghai, CHINA

Sndav Bai

Expert
@Sndav

Working at Tencent Xuanwu Lab, Focusing on RedTeam. Former CTFer at Dubhe

CVE-2026-31431-Advanced-Exploit. CVE-2026-31431 纯文件利用

109

WeChatDB-Rust. 用Rust语言编写,使用特征值从微信内存中提取数据库密钥的工具

100

coffee. Coffee is a loader for ELF (Executable and Linkable Format) object files written in Rust. Coffee是一个用Rust语言编写的ELF object文件的加载器

63

mac-capture-x. MacOS 超级屏幕录制,支持排除特定应用进行屏幕录制

24

MultiHoneypot. 一个Go语言编写的可扩展的蜜罐框架

17

My-CTF-Challenges. Go

8

PickleHelper. Python

7

SKit. 🚀 一个强大的开发者工具集,集成文本格式化、网络工具、截图等常用开发功能

6

CyberCook. 赛博厨子,一款用Rust语言编写的编码解码工具

6

Auto-Exlpoit-Framwork. AEF

6

baiduyun-brute. 多线程百度云(私密分享)密码爆破工具

3

JigsawSolver. 拼图工具

3

WeChatPack. 微信小程序Django登陆

3

xfrm-ESP-LPE. Lightweight, self-contained Linux LPE exploit via xfrm-ESP page-cache write primitive. Single-file C, no dependencies, runs on any architecture.

3

proxy-ng. Proxy-Next-Generation

2

exp. 收集各种各样的exp

2

Sndav.github.io. CSS

2

OTS. Python

2

DormManagment. An amazing system for dorm managmnt

2

Pickz. Pickz - 压缩包递归文件搜索工具

2

34c3ctf. Challenge Sources & Exploits for the 34C3 CTF

1

regex-puzzles. regex puzzles in CTF

1

DataStructure. 数据结构作业

1

php7-opcache-override. Security-related PHP7 OPcache abuse tools and demo

1

ctf-tools. CTF 工具集合

1

AWD-Predator-Framework. AWD攻防赛webshell批量利用框架

1

Raccoon. A high performance offensive security tool for reconnaissance and vulnerability scanning

1

fuzz-wooyun-org. WooYun Fuzz 库

1

shadowsocks. backup of https://github.com/shadowsocks/shadowsocks

1

cobra. Cobra - Cobra is a static code analysis system that automates the detecting vulnerabilities and security issue.(白盒代码安全审计系统)

1

AEF-Web.

1

Scanners-Box. [Project-Kob-6]安全行业从业人员自研开源扫描器合集(不收录w3af、brakeman等知名扫描工具)🌚

1

NCTF2018. Official repository of NJUPT CTF 2018

1

pro-in. proxy-injection

1

CTF_webboard. 天枢2018-web兴趣小组-CTF平台搭建

1

EQGRP_Lost_in_Translation. Decrypted content of odd.tar.xz.gpg, swift.tar.xz.gpg and windows.tar.xz.gpg

1

Blasting_dictionary. 爆破字典

1

Mobile-Security-Framework-MobSF. Mobile Security Framework is an automated, all-in-one mobile application (Android/iOS/Windows) pen-testing framework capable of performing static analysis, dynamic analysis, malware analysis and web API testing.

1
38
Apply