Automatically Collect POC or EXP from GitHub by CVE ID.

🚀🚀 「大模型」2小时完全从0训练26M的小参数GPT！🌏 Train a 26M-parameter GPT from scratch in just 2h!

jadx-gui反编译工具二次开发，接入AI赋能。

Living Off The Land Binaries And Scripts - (LOLBins and LOLScripts)

GTFOBins is a curated list of Unix binaries that can be used to bypass local security restrictions in misconfigured systems

大模型学习导航

OWASP dependency-check is a software composition analysis utility that detects publicly disclosed vulnerabilities in application dependencies.

A site to provide non-judgmental guidance on choosing a license for your open source project

📚 The Open Source Discovery Service

maven中央仓库油猴脚本

[NeurIPS 2022] "Adversarial Training with Complementary Labels: On the Benefit of Gradually Informative Attacks"

official repository for the NeurIPS 2022 paper "Adversarial Attack on Attackers: Post-Process to Mitigate Black-Box Score-Based Query Attacks"

[NeurIPS'24] "Membership Inference Attacks against Fine-tuned Large Language Models via Self-prompt Calibration"

OSV-SCALIBR: A library for Software Composition Analysis

Sourcerer's Code Clone project

♾️ Collection and Roadmap for everyone who wants DevSecOps. Hope your DevOps are more safe 😎

闭源系统半自动漏洞挖掘工具，针对 jar/war/zip 进行静态代码分析，输出从source到sink的可达路径。LLM将验证路径可达性，并根据上下文给出该路径可信分数

Smart Phone Management. Reimplement of atx-server with Python

"chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability rules, supports decompile, custom rule, and is compatible with …

Lessons for syntaxflow zero to hero

The repository has collected about 10,000 malicious pypi packages. This dataset is the work of the ASE 2023 paper "An Empirical Study of Malicious Code In PyPI Ecosystem". Of course, we will contin…

Material UI: Comprehensive React component library that implements Google's Material Design. Free forever.

Security vulnerability database inclusive of CVEs and GitHub originated security advisories from the world of open source software.

OWASP dep-scan is a next-generation security and risk audit tool based on known vulnerabilities, advisories, and license limitations for project dependencies. Both local repositories and container …

🔍 A Hex Editor for Reverse Engineers, Programmers and people who value their retinas when working at 3 AM.

Dependency Parser for Multiple Programming Languages

OpenSCA is an open source software supply chain security solution that supports the detection of open source dependencies, vulnerabilities and license compliance with a widely noticed accuracy by t…