Skip to content
View 9k01's full-sized avatar
0 followers · 7 following

Block or report 9k01

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse

Popular repositories Loading

  1. browser_vuln_check browser_vuln_check Public

    Forked from lcatro/browser_vuln_check

    browser_vuln_check ,利用已知的浏览器漏洞PoC 来快速检测Webview 和浏览器环境是否存在安全漏洞,只需要访问run.html 即可获取所有扫描结果,适用场景包含:APP 发布之前的内部安全测试,第三方Webview 漏洞检测等(browser_vuln_check framework using some known browser vulnerabilities …

    Python

  2. Hacker_Document Hacker_Document Public

    Forked from lcatro/Hacker_Document

    收集一些以前看过对于入门和进阶很有用的攻击原理文档..

  3. XSS-hunter XSS-hunter Public

    Forked from lcatro/XSS-hunter

    XSS hunter 收集Webview 页面上存在的反射,储存型XSS ,方便应急APP 和前端页面在发布时遇到XSS 安全问题..

    PHP

  4. cross_domain_postmessage_vuln_dig cross_domain_postmessage_vuln_dig Public

    Forked from lcatro/cross_domain_postmessage_vuln_dig

    WEB 跨域postMessage() 漏洞挖掘工具,基本原理:使用AJAX 获取页面代码,结合iframe 和data 协议构造测试环境,然后在iframe 下的window.onmessage 中插入hook 监控onmessage 的参数,最后通过能否被原来的onmessage 逻辑引用参数中的data 属性来判断是否可以跨域传递数据..

    HTML

  5. browser_xss_auditor_fuzzing browser_xss_auditor_fuzzing Public

    Forked from lcatro/browser_xss_auditor_fuzzing

    浏览器XSS 过滤器Fuzzing 框架 (browser xss aduit fuzzing framework )..

    HTML

  6. vuln_javascript vuln_javascript Public

    Forked from lcatro/vuln_javascript

    模拟一个存在漏洞的JavaScript 运行环境,用来学习浏览器漏洞原理和练习如何编写Shellcode (a JavaScript Execute Envirment which study browser vuln and how to write Shellcode ) ..

    C++