EC2子域接管 https://hackerone.com/reports/1296366
Flask session弱密钥接管用户 1500$ https://hackerone.com/reports/1380121
寻找客户端原型污染工具 https://github.com/kosmosec/proto-find
BigQuery SQL 注入备忘单 https://ozguralp.medium.com/bigquery-sql-injection-cheat-sheet-65ad70e11eac
通过过期的 npm Publisher 电子邮件域损害 Angular https://thehackerblog.com/zero-days-without-incident-compromising-angular-via-expired-npm-publisher-email-domains-7kZplW4x/
403 fuzz脚本 https://github.com/ffffffff0x/403-fuzz
Golang的ysoserial库 https://github.com/4ra1n/Gososerial
基于masscan和nmap的快速端口扫描和指纹识别工具 https://github.com/7dog7/masscan_to_nmap
