00theway / Ghostcat-CNVD-2020-10487

Related projects ⓘ

Alternatives and complementary repositories for Ghostcat-CNVD-2020-10487

• artsploit / yaml-payload
  A tiny project for generating SnakeYAML deserialization payloads
  ☆563Updated 5 years ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆712Updated 3 years ago
• qtc-de / remote-method-guesser
  Java RMI Vulnerability Scanner
  ☆828Updated 4 months ago
• LandGrey / CVE-2019-7609
  exploit CVE-2019-7609(kibana RCE) on right way by python2 scripts
  ☆161Updated last year
• n0b0dyCN / RedisModules-ExecuteCommand
  Tools, utilities and scripts to help you write redis modules!
  ☆263Updated 5 months ago
• pimps / ysoserial-modified
  That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
  ☆176Updated 2 years ago
• ethicalhackingplayground / ssrf-king
  SSRF plugin for burp Automates SSRF Detection in all of the Request
  ☆555Updated 3 years ago
• mubix / IOXIDResolver
  IOXIDResolver.py from AirBus Security
  ☆220Updated last year
• worawit / CVE-2021-3156
  Sudo Baron Samedit Exploit
  ☆737Updated 2 years ago
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆527Updated 9 months ago
• PortSwigger / autorize
  Automatic authorization enforcement detection extension for burp suite written in Jython developed by Barak Tawily in order to ease appli…
  ☆218Updated 2 months ago
• pimps / CVE-2018-7600
  Exploit for Drupal 7 <= 7.57 CVE-2018-7600
  ☆130Updated 6 years ago
• jas502n / CVE-2019-1388
  CVE-2019-1388 UAC提权 (nt authority\system)
  ☆185Updated 5 years ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆585Updated 3 years ago
• jas502n / CVE-2020-14882
  CVE-2020–14882、CVE-2020–14883
  ☆284Updated 4 years ago
• hypn0s / AJPy
  ☆465Updated last year
• Ridter / noPac
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆803Updated last year
• qtc-de / beanshooter
  JMX enumeration and attacking tool.
  ☆392Updated last month
• g0rx / iis6-exploit-2017-CVE-2017-7269
  iis6 exploit 2017 CVE-2017-7269
  ☆87Updated last year
• jas502n / Log4j2-CVE-2021-44228
  Remote Code Injection In Log4j
  ☆460Updated 2 years ago
• noperator / CVE-2019-18935
  RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.
  ☆348Updated 2 years ago
• woodpecker-appstore / log4j-payload-generator
  Log4j jndi injects the Payload generator
  ☆489Updated 2 years ago
• stamparm / identYwaf
  Blind WAF identification tool
  ☆616Updated 4 months ago
• dotPY-hax / gitlab_RCE
  RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1
  ☆157Updated 3 years ago
• SecurityRiskAdvisors / cmd.jsp
  A super small jsp webshell with file upload capabilities.
  ☆290Updated 3 years ago
• maaaaz / impacket-examples-windows
  The great impacket example scripts compiled for Windows
  ☆918Updated 5 years ago
• horizon3ai / CVE-2021-21972
  Proof of Concept Exploit for vCenter CVE-2021-21972
  ☆252Updated 3 years ago
• InitRoot / BurpJSLinkFinder
  Burp Extension for a passive scanning JS files for endpoint links.
  ☆744Updated 7 months ago
• pyn3rd / Spring-Boot-Vulnerability
  ☆398Updated 2 years ago
• NotSoSecure / Blacklist3r
  project-blacklist3r
  ☆499Updated 2 years ago