d47sec's Projects
A cheat sheet that contains advanced queries for SQL Injection of all types.
Pentesting Android Application Course For Kids+ (English and Vietnamese edition)
This is a curated list of mobile based CTFs, write-ups and vulnerable apps. Most of them are android based due to the popularity of the platform.
🐶 A curated list of Web Security materials and resources.
CTFlearn writeups of all the challenges I have solved. It covers all the domains including Cryptography, Forensics, Reversing, Pwning and other misc problems.
:books: Freely available programming books
Frida scripts for mobile application dynamic-analysis.
Tutorials and Things to Do while Hunting Vulnerability.
Java web common vulnerabilities and security code which is base on springboot and spring security
一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。
Collection of awesome java challenges CTF, made from everyone on the internet :)
Collection of CTF Web challenges I made
Collection of my capture-the-flag web challenge in any levels
OSCP Guide
A list of useful payloads and bypass for Web Application Security and Pentest/CTF
一个关于PHP的代码审计项目
This cheasheet is aimed at the CTF Players and Beginners to help them understand the fundamentals of Privilege Escalation with examples.
Curated list of project-based tutorials
Python Books for Security
This Lab contain the sample codes which are vulnerable to Server-Side Request Forgery attack