A neurosymbolic framework for vulnerability detection in code

各种安全相关思维导图整理收集。渗透步骤，web安全，CTF，业务安全，人工智能，区块链安全，数据安全，安全开发，无线安全，社会工程学，二进制安全，移动安全，红蓝对抗，运维安全，风控安全，linux安全

《开源大模型食用指南》针对中国宝宝量身打造的基于Linux环境快速微调（全参数/Lora）、部署国内外开源大模型（LLM）/多模态大模型（MLLM）教程

📚 从零开始的大语言模型原理与实践教程

这个仓库收集了所有在 GitHub 上能找到的 CVE 漏洞利用工具。 This repository collects all CVE exploits found on GitHub.

Kubernetes Goat is a "Vulnerable by Design" cluster environment to learn and practice Kubernetes security using an interactive hands-on playground 🚀

OCR software, free and offline. 开源、免费的离线OCR软件。支持截屏/批量导入图片，PDF文档识别，排除水印/页眉页脚，扫描/生成二维码。内置多国语言库。

CodeQL: the libraries and queries that power security researchers around the world, as well as code scanning in GitHub Advanced Security

通过多智能体（Multi-Agent）打造的革命性的安全运营解决方案

A non-embedded AI for Clash Royale based on RL and CV.

Collection of community-driven CodeQL query, library and extension packs

Open-source code analysis platform for C/C++/Java/Binary/Javascript/Python/Kotlin based on code property graphs. Discord https://discord.gg/vv4MH284Hc

🤖 Chat with your SQL database 📊. Accurate Text-to-SQL Generation via LLMs using RAG 🔄.

Integrate CodeQL into CI/CD pipelines, using the CodeQL CLI Bundle for Automated Code Scanning

Soot - A Java optimization framework

An Active Defense and EDR software to empower Blue Teams

基于 OPSEC 的 CobaltStrike 后渗透自动化链

The repository of paper "HackMentor: Fine-Tuning Large Language Models for Cybersecurity".

SecGPT网络安全大模型

A collection of challenge based hack-a-thons including student guide, coach guide, lecture presentations, sample/instructional code and templates. Please visit the What The Hack website at: https:/…

《深入理解CodeQL》Finding vulnerabilities with CodeQL.

☠️ Common Security Exploits and Protections on Solana

Dynaphish: A complementary module for any reference-based phishing detector with BrandKnowledgeExpansion and WebInteraction

Selenium webdriver to automatically perform login and submission action, and observe the suspicious behaviours

Official Implementation of "Phishpedia: A Hybrid Deep Learning Based Approach to Visually Identify Phishing Webpages" USENIX'21

Holistic Evaluation of Language Models (HELM) is an open source Python framework created by the Center for Research on Foundation Models (CRFM) at Stanford for holistic, reproducible and transparen…

OctoMation是一款免费的，具有可视化拖拽功能的编排与自动化产品。通过精心编排的Playbook，OctoMation能够联动数百款安全、网络、IT和SaaS等产品的基础能力。其主要特点包括低代码剧本编排、自动化事件响应、标准化流程操作以及可视化过程监控。 借助OctoMation，运营团队能够开展7x24小时自动化事件响应，不仅可以大幅减少对人员的过度依赖，还能确保团队工作质量始终维…

A web UI for use in conjunction with Microsoft's CyberBattleSim project. It was used for the paper: "Simulating Network Lateral Movements through the CyberBattleSim Web Platform".