Burp Suite extension that adds built-in MCP tooling, AI-assisted analysis, privacy controls, passive and active scanning and more - six2dez/burp-ai-agent

这是一个基于 Python 开发的自动化攻防沙箱测试系统。该系统能够模拟攻击者从本机对本机发起多种类型的网络攻击和系统渗透尝试，同时部署多层防御机制进行实时检测、拦截和响应。 - USTCTI/sandbox

爱快分流规则维护：自动将通过指定的远程配置文件把区域ip，域名等，整理到到爱快，实现旁路由自动切换，域名分流、端口分流（IP分组分流）、自定义运营商、广告屏蔽等 - joyanhui/ikuai-bypass

This demo includes Spring Security Architecture which handles authentication and authorization requests in the web applications. It also covers most common security related topics like CORs, CSRF, ...

A full-stack web vulnerability scanner designed to identify common security issues such as Cross-Site Scripting (XSS) and SQL Injection through automated scanning. - Youneskc/Web-Vulnerabilities-Sc...

A BurpSuite extension for discord rich presence. Contribute to jondmarien/Burpcord development by creating an account on GitHub.

Scans for IOT brand signatures and Logs vulnerable devices from brands like MikroTik, TP-Link, Huawei, etc (Specific Version & CVE) - Syn2Much/Rooter

A WLAN red team framework. Contribute to pinecone-wifi/pinecone development by creating an account on GitHub.

A toy project to demonstrate CSRF with Rails and Angular - tatums/rails-angular-csrf

Oracle Fusion Middleware Oracle HTTP Server / WebLogic Server Proxy Plug-in has an easily exploitable, unauthenticated, network-reachable flaw allowing compromise over HTTP. Affected supported vers...

🗽Бесплатные и проверенные VPN конфигурации, работающие в РФ ⚪ Белые списки / обход белых списков ⚪ Free and checked VPN configurations that work in Russia ⚪ Whitelists bypass - igareck/vpn-configs-...

Demonstration of vulnerable vs secure web application, illustrating common web attacks (XSS) and defensive controls. - allen-camille/attack-defense-security-demo

A MediaTek modem input validation issue can cause a system crash (remote DoS) when a UE connects to a rogue base station controlled by an attacker with no user interaction required. - George0Papaso...

XXE Blackbox & Whitebox - Learn code review AND penetration testing - duartesos/xxe-ctf-platform

Rattux is a lightweight, Python-based Command & Control (C2) framework designed exclusively for Linux. - ivaniv4/rattux

Contribute to Eti-Hack/csrf-poc development by creating an account on GitHub.

记录共创世界的前端代码注入漏洞和盗号接口。. Contribute to bddjr/CCW-Code-Injection development by creating an account on GitHub.

A secure authentication and authorization system built with the MERN stack, featuring JWT access & refresh tokens, role-based access control, 2FA, CSRF protection, rate limiting, and secure...

🚀 Suspend EDR and antivirus processes easily with EDR-Freeze, a user-mode tool that bypasses complex driver vulnerabilities on Windows. - gofokili/EDR-Freeze

AI-powered API reverse engineering tool built with Next.js and NestJS. Upload browser network captures (HAR files), describe an API endpoint, and receive a ready-to-use curl command. Demonstrates p...

Burp Suite extension that extends Burp to support storing and reusing variables in requests - 0xceba/burp_variables