4-day longest streak
Hi, I'm KaGty1 👋 Security Engineer · LLM for Security · Security for LLM · Cloud Native Security · Red Team Third-year student at Northeastern University, China --- 🧭 About…
Hi, I'm KaGty1 👋
Security Engineer · LLM for Security · Security for LLM · Cloud Native Security · Red Team
Third-year student at Northeastern University, China

---
🧭 About Me
Just an ordinary person who loves security and life.
---
💼 Experience
- 阿里巴巴 (杭州) / Alibaba · Security Engineer
- 百度 (北京) / Baidu · Security Engineer
- 奇安信 (北京) / Qianxin · 观星实验室 · Red Team
- 微步在线 (北京) / ThreatBook · Vulnerability Researcher
---
🔐 Focus Areas
- LLM for Security
- Security for LLM
- Security Automation
- Cloud-native Security
- Red Team
- Vulnerability Bounty Hunt
"Break it to make it safer."
-
SSRF_Detector ★ PINNED
SSRF_Detector是一款基于Burpsuite MontoyaAPI的黑盒SSRF漏洞自动化检测工具,用于检测无回显&全回显SSRF漏洞,提供了多种功能供用户自定义,包括但不限于关键字配置,Payload配置以及检测字符串配置
Java ★ 45 1y agoExplain → -
CustomMemShellInjector ★ PINNED
哥斯拉Godzilla定制化插件,接收恶意类Base64编码与恶意类类名进行实例化,达到注入任意类型内存马的目的。
Java ★ 48 6mo agoExplain → -
vulhub-env-build ★ PINNED
Vulhub漏洞搭建Skill,用于帮助安全工程师快速使用Vulhub搭建漏洞复现环境
Python ★ 10 3mo agoExplain → -
AITTAK ★ PINNED
AITTAK 是一个特制的红队AI中转站平台,部署在客户端与 AI API 上游之间,用于记录请求行为、通过监控用户Prompt及工具调用结果检测敏感信息泄露、以及通过在SSE注入工具调用实现任意命令执行。
Python ★ 49 1mo agoExplain → -
VulPoc-Platform
All code is written by codex 5.4. 一个在断网环境下使用的本地在线漏洞/渗透知识库平台,供CTF线下赛使用
Go ★ 8 3mo agoExplain → -
ShiroVulRecurrent
本地一键式搭建Shiro项目环境,快速复现Shiro各版本权限绕过类漏洞
★ 8 1y agoExplain → -
muteki ⑂
Project Muteki (無敵): autonomous multi-model CTF-solving AI agent swarm
★ 1 16d agoExplain → -
KaGty1
Config files for my GitHub profile.
★ 1 17d agoExplain → -
KaGty1.github.io
KaGty1 's Personal Blog
HTML ★ 1 1mo agoExplain → -
TL-Rustscan ⑂
TL-Rustscan是由天禄实验室开发的一款基于 Rust 编写的高性能、高并发端口扫描命令行工具。专为攻防演练、资产摸排和渗透测试设计,旨在提供快速、稳定且易于集成的端口探测能力。
★ 1 7mo agoExplain → -
PoC-in-GitHub ⑂
📡 PoC auto collect from GitHub. ⚠️ Be careful Malware.
★ 0 1mo agoExplain → -
BlackScan
BlackScan 是一款基于 Agent 的一个全自动黑盒漏洞挖掘平台
★ 0 2mo agoExplain → -
learn-claude-code ⑂
Bash is all you need - A nano claude code–like 「agent harness」, built from 0 to 1
★ 0 3mo agoExplain → -
airt ⑂
AIRT — A free, open-source AI Red Teaming course with 8 modules and hands-on Docker labs. Built with Perplexity Computer.
★ 0 4mo agoExplain → -
skill-dfyx_code_security_review ⑂
东方隐侠团队出品,代码审计skill
★ 0 4mo agoExplain → -
java-audit-skills ⑂
专注于java代码审计skills
★ 0 4mo agoExplain → -
deep-learning-with-python-cn ⑂
Deep Learning with Python 中文翻译
★ 0 6y agoExplain → -
DeepAudit ⑂
DeepAudit:人人拥有的 AI 黑客战队,让漏洞挖掘触手可及。国内首个开源的代码漏洞挖掘多智能体系统。小白一键部署运行,自主协作审计 + 自动化沙箱 PoC 验证。支持 Ollama 私有部署 ,一键生成报告。支持中转站。让安全不再昂贵,让审计不再复杂。
★ 0 5mo agoExplain → -
ChYing ⑂
承影,愿你在光影之间,找到属于自己的锋芒。开源的类 BurpSuite 应用
★ 0 5mo agoExplain → -
JavaRce ⑂
Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
★ 0 1y agoExplain → -
apollofish ⑂
在数字化浪潮下,钓鱼攻击已成为企业网络安全的主要威胁之一。仿冒网页、恶意邮件等钓鱼手段层出不穷,一旦员工不慎中招,可能导致企业核心数据泄露、系统瘫痪、财产损失等严重后果。在此背景下,阿波罗钓鱼演练平台(ApolloFish)应运而生,平台以“实战演练赋能安全意识提升”为核心目标,通过模拟真实的网页钓鱼、邮箱钓鱼场景,帮助企业精准检验员工安全防护能力,系统性强化全员安全意识,筑牢企业网络安全第一道防线。
★ 0 6mo agoExplain → -
agents-course ⑂
This repository contains the Hugging Face Agents Course.
★ 0 6mo agoExplain → -
Vulnerability-Wiki-PoC ⑂
🚀 2024-至今 1Day 漏洞 PoC 深度研究与复现归档。涵盖 OA、ERP、安防、数通、大模型及容器等 高价值资产漏洞,实战导向,助力安全研究与合规检测。
★ 0 6mo agoExplain → -
Next.js-RSC-RCE-Scanner-CVE-2025-66478 ⑂
A command-line scanner for batch detection of Next.js application versions and determining if they are affected by CVE-2025-66478 vulnerability.
★ 0 7mo agoExplain → -
CVE-2025-55182 ⑂
CVE-2025-55182 漏洞利用GUI,PoC / Exploit for CVE-2025-55182 & CVE-2025-66478
★ 0 7mo agoExplain → -
CVE-2025-55182-poc ⑂
CVE-2025-55182 POC
★ 0 7mo agoExplain → -
SeCDictionary ⑂
少而精的常用字典,积累各种场景实现字典进化,只追求更简单更有效,不建议star,但建议pr。
★ 0 2y agoExplain → -
metarget ⑂
Metarget is a framework providing automatic constructions of vulnerable infrastructures.
★ 0 1y agoExplain → -
myfuzz ⑂
目录爆破字典
★ 0 7y agoExplain → -
dddd ⑂
dddd是一款使用简单的批量信息收集,供应链漏洞探测工具,旨在优化红队工作流,减少伤肝的机械性操作。支持从Hunter、Fofa批量拉取目标
★ 0 1y agoExplain → -
CVE
No description.
★ 0 11mo agoExplain → -
datagear ⑂
DataGear数据可视化分析平台,自由制作任何您想要的数据看板
★ 0 1y agoExplain → -
-
No description.
★ 0 1y agoExplain → -
code2sec.com ⑂
xmind\code\articles for my personal blog 个人博客上的资源备份存储,也是个人分享的汇总
★ 0 3y agoExplain → -
Boom ⑂
Boom 是一款基于无头浏览器的智能 Web 弱口令(后台密码)爆破\检测工具
★ 0 2y agoExplain →
No repos match these filters.
More creators on gitmyhub
paulirish iam-veeramalla tiangolo kennethreitz StephenGrider