- <javascript:alert(123)>
Lists (32)
Sort Name ascending (A-Z)
0API
0harness
AI
AI-NLP
AI-Sec
AI-图算法
AI系统
APISec
AppleSec
bbtools
bug bounty toolsBinSec
BrowserSec
ComputeScience
CTF
Fuzzing
GoodTools
LinuxSec
LLM
PA-SE
PL
PL-Compiler
ProgramAnalysis
Programming
Reverse
Rust
Target
web3
WebSec
WinSec
代码脆弱性
安卓安全
静态分析
semgrepStars
- All languages
- ANTLR
- Ada
- Assembly
- Batchfile
- BlitzBasic
- Boo
- C
- C#
- C++
- CMake
- CSS
- Cairo
- Classic ASP
- Clojure
- CodeQL
- CoffeeScript
- Common Lisp
- Coq
- Crystal
- Cuda
- Cycript
- D
- Dockerfile
- Emacs Lisp
- F#
- Faust
- FreeMarker
- Go
- HCL
- HLSL
- HTML
- Handlebars
- Haskell
- Java
- JavaScript
- Julia
- Jupyter Notebook
- Kaitai Struct
- Kotlin
- LLVM
- Lean
- Logos
- Lua
- MDX
- MLIR
- Makefile
- Markdown
- Mask
- Max
- Meson
- NSIS
- Nim
- OCaml
- Objective-C
- Objective-C++
- OpenQASM
- PHP
- Pascal
- Perl
- PlantUML
- PowerShell
- Prolog
- Python
- Racket
- Raku
- Reason
- Rich Text Format
- Roff
- Ruby
- Rust
- SCSS
- SMT
- Scala
- Shell
- Smarty
- Solidity
- Svelte
- Swift
- TSQL
- TeX
- TypeScript
- V
- VBA
- VBScript
- Vim Script
- Vue
- WebAssembly
- YAML
- YARA
- Zeek
This repository contains a curated collection of resources focused on auditing Move smart contracts. It includes tools, best practices, checklists, and guidelines to help developers and auditors en…
The Web3 Security Resources Hub is a comprehensive collection of curated tools, guides, and best practices for securing decentralized systems and smart contracts in the blockchain space.
[USENIX Security'24] Official repository of "Making Them Ask and Answer: Jailbreaking Large Language Models in Few Queries via Disguise and Reconstruction"
fabric is an open-source framework for augmenting humans using AI. It provides a modular framework for solving specific problems using a crowdsourced set of AI prompts that can be used anywhere.
A portfolio repository for Egis Security's past audits
A cheat sheet that contains advanced queries for SQL Injection of all types.
[USENIX Security 2025] PoisonedRAG: Knowledge Corruption Attacks to Retrieval-Augmented Generation of Large Language Models
A comprehensive guide for web application penetration testing and bug bounty hunting, covering methodologies, tools, and resources for identifying and exploiting vulnerabilities.
An exploit based Jailed Package Manager for iOS 15.0-18.0/18.1b4
The Art, Science, and Engineering of Fuzzing: A Survey
📦 Repopack is a powerful tool that packs your entire repository into a single, AI-friendly file. Perfect for when you need to feed your codebase to Large Language Models (LLMs) or other AI tools li…
Application Fuzzing: Tools, Techniques, and Best Practices
Diaphora Machine Learning tools and datasets
Codes and Data for ACL 2024 Paper "Faithful Logical Reasoning via Symbolic Chain-of-Thought".
Official code implementation of General OCR Theory: Towards OCR-2.0 via a Unified End-to-end Model
This repository contains PoC for CVE-2024-7965. This is the vulnerability in the V8 that occurs only within ARM64.
Automated vulnerability discovery and annotation
Crashbench is a LLM benchmark to measure bug-finding and reporting capabilities of LLMs
PoC for vulnerabilities of Realtek SD card reader driver
CVE-2024-40431+CVE-2022-25479 chain for EOP(DATA ONLY ATTACK) ROUGHT SKELLETON ATM. WILL EVENTUALLY TURN IT INTO FULL EOP