0xf4n9x / Zentao-Captcha-RCE
禅道研发项目管理系统`misc-captcha-user`认证绕过后台命令注入漏洞
☆98Updated last year
Alternatives and similar repositories for Zentao-Captcha-RCE:
Users that are interested in Zentao-Captcha-RCE are comparing it to the libraries listed below
- Nacos Derby命令执行漏洞利用脚本☆116Updated last week
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆80Updated last year
- 基于Agent技术实现的Java内存马查杀、防护工具。☆84Updated 8 months ago
- 自己积累的一些Java反序列化利用链☆87Updated 2 years ago
- 魔改版,实现冰蝎直连内存马,无需修改冰蝎客户端☆70Updated last year
- 一款基于fofa根据域名或fofa语法收集C段分布数量的工具☆38Updated last year
- 字典生成工具☆85Updated last year
- linux权限维持脚本☆36Updated last month
- flash钓鱼 flash水坑攻击最新版源码☆59Updated 2 years ago
- 本项目包含CobaltStrike密码爆破、伪造上线以及DDos功能。其中伪造上线支持常见魔改版CS。This project includes CobaltStrike password blasting, fake online and DDos functions. …☆61Updated last month
- Vcenter综合渗��透利用工具包 | Vcenter Comprehensive Penetration and Exploitation Toolkit☆43Updated last year
- 一键获取nacos中的配置文件信息和绘制密码本☆118Updated 9 months ago
- 一个能够利用MSSQL的xp_cmdshell功能来进行流量代理的脚本,用于在站酷分离且不出网SQL注入进行代理☆101Updated 2 years ago
- 帆软bi反序列化漏洞利用工具☆156Updated last year
- WeblogicScan一键检测☆128Updated 11 months ago
- 漏洞poc☆94Updated 3 weeks ago
- ☆55Updated last year
- nuclei模版生成插件☆106Updated last year
- 帆软报表漏洞检测工具☆77Updated 9 months ago
- iis高版本短文件名猜解脚本,适用于iis7.5~10.x版本的iis中间件。☆50Updated last week
- 一款探测fastjson漏洞的BurpSuite插件☆61Updated 3 years ago
- 此项目为su18大佬的仓库镜像,如有问题可发issuse删库☆65Updated last year
- cobaltstrike 实战案例, 含20个实战案例。插件包在releases中☆34Updated last year
- check hikvision/ys7 api☆70Updated last year
- evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.☆88Updated 2 years ago
- 记录一些代码审计过的源码☆145Updated last month
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆87Updated last year
- ☆36Updated last year
- 这是一个用Go编写的红队内网环境中一个能快速开启HTTP文件浏览服务的小工具,能够执行shell命令,可以执行webshell☆72Updated last year
- 若依后台定时任务一键利用☆51Updated 3 years ago