A repository to record my usual studies.
Some knowledge mainly learned from CTF, if you want to come to learn frontier technology, go around.
And Please ignore my poor English,Of course, for my own convenience, I may use Chinese in the specific file descriptions
In the blink of an eye, half of the sophomore year has also passed, here learning web security is also close to half a year, this half-year stumble also gained a lot, intend to create a new warehouse to record the future learning situation, and collect some good information
Y4tacker
Recorded on Dec 27, 2020
- Programming Languages
- Description:A branch for documenting security issues in programming languages,such as Java、Python、PHP、Nodejs、 and so on.
- Middleware
- Description:A branch for documenting middleware security issues
- JsonWebToken
- Description:A branch for documenting some security issues about jwt.
- Server-Side Request Forgery
- Description:A branch for documenting some security issues about ssrf.
- Server-side template injection
- Description:A branch for documenting some security issues about ssti.
- XML External Entity Injection Mini Notes
- Description:A branch for documenting some security issues about xxe.
- SQL Injection Mini Notes
- Description:A branch for documenting some security issues about sqli.
- Penetration Testing Mini Notes
- Description: A branch for documenting penetration testing study materials
- Blockchain Mini Notes
- Description: A branch for documenting blockchain study materials,though it is not belong to web application, but just for fun.
- Bypass-disable-functions
- Description:Bypass-disable-functions
- Unserialize
- Description:A branch for documenting something about unserialize.
- Description:A branch for documenting something about useful poc or exp.
- Description:A branch for documenting something about my study for writing shell.
- Description:Something prepared for awd.
- Write-up for training
- Description: A branch for documenting my training
- Personal questioning record
- Description: My own questions for the competition
- PayloadsAllTheThings
- Description:A list of useful payloads and bypasses for Web Application Security.
- Generate string from regexp
- Description:Generating strings by regular expressions