00theway / Ghostcat-CNVD-2020-10487

Related projects ⓘ

Alternatives and complementary repositories for Ghostcat-CNVD-2020-10487

• artsploit / yaml-payload
  A tiny project for generating SnakeYAML deserialization payloads
  ☆561Updated 5 years ago
• n0b0dyCN / RedisModules-ExecuteCommand
  Tools, utilities and scripts to help you write redis modules!
  ☆262Updated 4 months ago
• pimps / ysoserial-modified
  That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
  ☆176Updated 2 years ago
• jas502n / CVE-2019-1388
  CVE-2019-1388 UAC提权 (nt authority\system)
  ☆185Updated 4 years ago
• SecurityRiskAdvisors / cmd.jsp
  A super small jsp webshell with file upload capabilities.
  ☆289Updated 3 years ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆711Updated 3 years ago
• pimps / CVE-2018-7600
  Exploit for Drupal 7 <= 7.57 CVE-2018-7600
  ☆130Updated 6 years ago
• mubix / IOXIDResolver
  IOXIDResolver.py from AirBus Security
  ☆217Updated last year
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆552Updated 3 years ago
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆218Updated last month
• g0rx / iis6-exploit-2017-CVE-2017-7269
  iis6 exploit 2017 CVE-2017-7269
  ☆86Updated last year
• qtc-de / remote-method-guesser
  Java RMI Vulnerability Scanner
  ☆828Updated 4 months ago
• LandGrey / CVE-2019-7609
  exploit CVE-2019-7609(kibana RCE) on right way by python2 scripts
  ☆161Updated last year
• maaaaz / impacket-examples-windows
  The great impacket example scripts compiled for Windows
  ☆916Updated 5 years ago
• Ridter / noPac
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆799Updated last year
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆585Updated 3 years ago
• worawit / CVE-2021-3156
  Sudo Baron Samedit Exploit
  ☆737Updated 2 years ago
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆508Updated 9 months ago
• jas502n / CVE-2020-14882
  CVE-2020–14882、CVE-2020–14883
  ☆284Updated 3 years ago
• dotPY-hax / gitlab_RCE
  RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1
  ☆158Updated 3 years ago
• hypn0s / AJPy
  ☆465Updated last year
• qtc-de / beanshooter
  JMX enumeration and attacking tool.
  ☆392Updated last month
• devploit / XORpass
  Encoder to bypass WAF filters using XOR operations.
  ☆250Updated 2 years ago
• stamparm / identYwaf
  Blind WAF identification tool
  ☆613Updated 4 months ago
• noperator / CVE-2019-18935
  RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.
  ☆348Updated 2 years ago
• DiogoMRSilva / websitesVulnerableToSSTI
  Simple websites vulnerable to Server Side Template Injections(SSTI)
  ☆373Updated last year
• jas502n / Log4j2-CVE-2021-44228
  Remote Code Injection In Log4j
  ☆459Updated 2 years ago
• NotSoSecure / Blacklist3r
  project-blacklist3r
  ☆495Updated 2 years ago
• InitRoot / BurpJSLinkFinder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆742Updated 7 months ago
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆112Updated 5 years ago