Cloud Penetration Testing Toolkit
☆106Jan 7, 2026Updated 2 months ago
Alternatives and similar repositories for cloudtoolkit
Users that are interested in cloudtoolkit are comparing it to the libraries listed below
Sorting:
- ☆11Nov 22, 2022Updated 3 years ago
- Automatic credential collection☆21Aug 17, 2022Updated 3 years ago
- 云安全利用工具-云平台AK/SK-WEB利用工具,添加AK/SK自动检测资源,无需手动执行,支持云服务器、存储桶、数据库操作☆587Dec 19, 2024Updated last year
- DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名 产品(fuzz.red),Alphalog与传统DNSLog不同,更快、更安全。☆457Aug 20, 2025Updated 7 months ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆69Feb 5, 2023Updated 3 years ago
- 海康威视iVMS 综合安防任意文件上传 漏洞使用exp☆24Jun 13, 2023Updated 2 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆14Jul 28, 2023Updated 2 years ago
- Determine privileges from cloud credentials via brute-force testing.☆69Aug 22, 2024Updated last year
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆779Feb 13, 2025Updated last year
- CVE-2022-32119 - Arox-Unrestricted-File-Upload☆17Dec 20, 2023Updated 2 years ago
- OrcaC2是一款基于Websocket加密通信的多功能C&C框架,使�用Golang实现。☆677Dec 30, 2022Updated 3 years ago
- 微信pc小程序包解密☆45Jul 17, 2021Updated 4 years ago
- 一个基于网络空间搜索引擎的攻击面管理平台,可定时进行资产信息爬取,及时发现新增资产,本项目聚合了 Fofa、Hunter、Quake、Zoomeye 和 Threatbook 的数据源,并对获取到的数据进行去重与清洗☆457Apr 19, 2023Updated 2 years ago
- ☆22Jul 15, 2023Updated 2 years ago
- ☆198Jan 18, 2023Updated 3 years ago
- RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration.☆562Jun 1, 2023Updated 2 years ago
- 利用链、漏洞检测工具☆373Jul 31, 2024Updated last year
- A method to execute shellcode using RegisterWaitForInputIdle API.☆55Apr 4, 2023Updated 2 years ago
- 一款针对Shiro550漏洞进行快速漏洞利用工具。 对 @SummerSec 大佬的项目https://github.com/SummerSec/ShiroAttack2 进行了一些改进。☆250May 29, 2023Updated 2 years ago
- rmi打内存马工具,适用于目标用不了ldap的情况☆253Jul 12, 2023Updated 2 years ago
- ☆137Jan 8, 2024Updated 2 years ago
- 六大云存储,泄露利用检测工具☆1,245Mar 28, 2025Updated 11 months ago
- 项目监控工具 以及 Codeql 自动运行☆313Apr 13, 2023Updated 2 years ago
- This lightweight C# demo application showcases interactive remote shell access via named pipes and the SMB protocol.☆122Feb 21, 2025Updated last year
- API Security DAST & Oprations☆319Jul 5, 2023Updated 2 years ago
- Tomcat backdoor based on CS blog☆29Jun 30, 2023Updated 2 years ago
- 域控安全one for all☆736Sep 9, 2024Updated last year
- Msmap is a Memory WebShell Generator.☆584Apr 22, 2023Updated 2 years ago
- 改造一个基于jrmp的AMF反序列化利用工具☆16Jul 7, 2022Updated 3 years ago
- codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)☆205Mar 19, 2022Updated 4 years ago
- Java web路由内存分析工具☆438May 22, 2025Updated 9 months ago
- ZipCreater主要应用于跨目录的文件上传漏洞的利用,它能够快速进行压缩包生成。☆187Apr 6, 2022Updated 3 years ago
- Java JNI HellsGate/HalosGate/TartarusGate/RecycledGate/SSN Syscall/Many Shellcode Loaders☆196Jul 7, 2023Updated 2 years ago
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆230Aug 8, 2023Updated 2 years ago
- 一款API水平越权漏洞检测工具☆767Jun 27, 2023Updated 2 years ago
- ☆181Dec 16, 2022Updated 3 years ago
- MacroExploit use in excel sheet☆20Jun 12, 2023Updated 2 years ago
- ZKar is a Java serialization protocol analysis tool implement in Go.☆649Feb 15, 2025Updated last year
- 泛微最近的漏洞利用工具(PS:2023)☆481Dec 14, 2023Updated 2 years ago