🇨🇳 GitHub中文排行榜，各语言分设「软件 | 资料」榜单，精准定位中文好项目。各取所需，高效学习。

#1 Locally hosted web application that allows you to perform various operations on PDF files

Free universal database tool and SQL client

🌍 针对小白的算法训练 | 包括四部分：①.大厂面经 ②.力扣图解 ③.千本开源电子书 ④.百张技术思维导图（项目花了上百小时，希望可以点 star 支持，🌹感谢~）推荐免费ChatGPT使用网站

阿里巴巴 MySQL binlog 增量订阅&消费组件

Ip2region is an offline IP address manager framework and locator with both IPv4 and IPv6 supported, supporting billions of data segments, ten microsecond searching performance, xdb search client fo…

大数据入门指南 ⭐

Cryptomator for Windows, macOS, and Linux: Secure client-side encryption for your cloud storage, ensuring privacy and control over your data.

Universal File Online Preview Project based on Spring-Boot

在线云盘、网盘、OneDrive、云存储、私有云、对象存储、h5ai、上传、下载

A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.

Tsunami is a general purpose network security scanner with an extensible plugin system for detecting high severity vulnerabilities with high confidence.

SpringBoot 相关漏洞学习资料，利用方法和技巧合集，黑盒安全评估 check list

lanproxy是一个将局域网个人电脑、服务器代理到公网的内网穿透工具，支持tcp流量转发，可支持任何tcp上层协议（访问内网网站、本地支付接口调试、ssh访问、远程桌面、http代理、https代理、socks5代理...）。技术交流QQ群 736294209

An xposed module that disables SSL certificate checking for the purposes of auditing an app with cert pinning

HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.

有完整版的PDF下载。

JNDI注入测试工具（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc）

Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。

Java web common vulnerabilities and security code which is base on springboot and spring security

一款高性能 HTTP 代理隧道工具 | A high-performance http proxy tunneling tool

红蓝对抗以及护网相关工具和资料，内存shellcode（cs+msf）和内存马查杀工具

Cknife

The SpotBugs plugin for security audits of Java web applications and Android applications. (Also work with Kotlin, Groovy and Scala projects)

shiro反序列化漏洞综合利用,包含（回显执行命令/注入内存马）修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack

APIKit：Discovery, Scan and Audit APIs Toolkit All In One.

MDUT - Multiple Database Utilization Tools

一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.

domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等