在渗透测试中快速检测常见中间件、组件的高危漏洞。
☆725Mar 21, 2022Updated 4 years ago
Alternatives and similar repositories for vulnerability-list
Users that are interested in vulnerability-list are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。☆866Jul 21, 2019Updated 6 years ago
- 增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持☆963Jun 16, 2024Updated last year
- 用于记录分享一些有趣的案例☆868Jan 10, 2022Updated 4 years ago
- mysql注入,bypass的一些心得☆1,327Jun 25, 2024Updated last year
- 瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf☆720Jul 20, 2022Updated 3 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- 从wooyun中提取的payload,以及burp插件☆842Jun 17, 2022Updated 3 years ago
- 绿盟科技漏洞扫描器(RSAS)漏洞库☆363May 30, 2019Updated 7 years ago
- BCS(北京网络安全大会)2019 红队行动会议重点内容☆820Sep 4, 2019Updated 6 years ago
- 绕过专业工具检测的Webshell研究文章和免杀的Webshell☆1,731Nov 15, 2020Updated 5 years ago
- 一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具☆739Dec 8, 2022Updated 3 years ago
- PC客户端(C-S架构)渗透测试checklist / Client side(C-S) penetration checklist☆670Feb 24, 2021Updated 5 years ago
- 一个各种方式突破Disable_functions达到命令执行的shell☆1,194Oct 17, 2023Updated 2 years ago
- 个人域渗透学习笔记�☆1,802Feb 7, 2020Updated 6 years ago
- 红队基础设施自动化部署工具☆853Jan 4, 2023Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- 360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能☆1,183Nov 10, 2021Updated 4 years ago
- Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)☆1,404Dec 16, 2022Updated 3 years ago
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,018May 21, 2024Updated 2 years ago
- SRC子域名资产监控☆1,298Jan 14, 2021Updated 5 years ago
- bayonet是一款src资产管理系统,从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统☆1,514Nov 22, 2022Updated 3 years ago
- 内网渗透中常用的c#程序整合成cs脚本,直接内存加载。持续更新~☆499Feb 13, 2020Updated 6 years ago
- Burp suite 分块传输辅助插件☆2,034Feb 23, 2022Updated 4 years ago
- Weblogic一键漏洞检测工具,V1.5,更新时间:20200730☆2,263May 22, 2023Updated 3 years ago
- 此项目用来提取收集以往泄露的密码中符合条件的强弱密码☆1,132Apr 1, 2019Updated 7 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 红队作战中比较常遇到的一些重点系统漏洞整理。☆2,522Jul 17, 2021Updated 4 years ago
- 免杀webshell无限生成工具☆1,284Apr 3, 2020Updated 6 years ago
- xss漏洞模糊测试payload的最佳集合 2020版☆512May 25, 2020Updated 6 years ago
- Cobalt Strike系列☆2,424Dec 3, 2023Updated 2 years ago
- Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、…☆4,280Apr 4, 2021Updated 5 years ago
- weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力:CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…☆2,070Nov 24, 2023Updated 2 years ago
- POC-T强化版本 POC-S , 用于红蓝对抗中快速验证Web应用漏洞, 对功能进行强化以及脚本进行分类添加,自带dnslog等, 平台补充来自vulhub靶机及其他开源项目的高可用POC☆357Mar 12, 2020Updated 6 years ago
- Burp被动扫描流量转发插件☆1,464Jun 17, 2024Updated last year
- Python2编写的struts2漏洞全版本检测和利用工具☆1,411May 7, 2019Updated 7 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Python3编写的CMS漏洞检测框架☆1,445May 22, 2023Updated 3 years ago
- 一键ThinkPHP漏洞检测☆1,161Nov 1, 2023Updated 2 years ago
- 溯光 (TrackRay) 3 beta⚡渗透测试框架(资产扫描|指纹识别|暴力破解|网页爬虫|端口扫描|漏洞扫描|代码审计|AWVS|NMAP|Metasploit|SQLMap)☆2,077Dec 16, 2023Updated 2 years ago
- 自动扫描内网常见sql、no-sql数据库脚本(mysql、mssql、oracle、postgresql、redis、mongodb、memcached、elasticsearch),包含未授权访问及常规弱口令检测☆564Dec 1, 2017Updated 8 years ago
- 上传漏洞fuzz字典生成脚本☆1,277Apr 1, 2021Updated 5 years ago
- Struts2全漏洞扫描利用工具☆2,216Jul 12, 2021Updated 4 years ago
- MSSQL注入提权,bypass的一些总结☆739Jun 25, 2024Updated last year