Alternatives and similar repositories for POC-EXP

Users that are interested in POC-EXP are comparing it to the libraries listed below

• admintony / shiro_rememberMe_Rce
  利用长亭xray高级版的回显Gadget重写的一个shiro反序列化利用工具。
  ☆124Updated 4 years ago
• smxiazi / fuzzDicts
  Web Pentesting Fuzz 字典,一个就够了。
  ☆71Updated 6 years ago
• Veraxy00 / Shiro-EXP
  Apache Shiro 反序列化漏洞检测与利用工具，一键注入内存马
  ☆138Updated 4 years ago
• Ch1ngg / JCE
  JCE - JSP/JPSX CodeEncode - 用于 Webshell 逃避静态查杀的辅助脚本
  ☆258Updated 3 years ago
• LFYSec / ActuatorExploit
  SpringBoot Actuator未授权自动化利用，支持信息泄漏/RCE
  ☆231Updated 4 years ago
• zhutougg / book_notes
  ☆92Updated 3 years ago
• r3change / TPLogScan
  ThinkPHP全日志扫描工具，命令行版和BurpSuite插件版
  ☆132Updated 4 years ago
• yzddmr6 / JspForAntSword
  中国蚁剑JSP一句话Payload
  ☆120Updated 4 years ago
• safesword / WebExp
  2020年~2021年 网站CMS、中间件、框架系统漏洞集合
  ☆100Updated 4 years ago
• DSO-Lab / defvul
  DSO-Lab 漏洞研究成果整理
  ☆83Updated 2 years ago
• arno567 / ShiroScanF
  shiro反序列化批量ip快速检测脚本
  ☆78Updated 4 years ago
• Ch1ngg / WebLogicPasswordDecryptorUi
  解密weblogic AES或DES加密方法
  ☆231Updated 4 years ago
• GGyao / CVE-2020-14882_ALL
  CVE-2020-14882_ALL综合利用工具，支持命令回显检测、批量命令回显、外置xml无回显命令执行等功能。
  ☆144Updated 3 years ago
• depycode / fastjson-c3p0
  fastjson不出网利用、c3p0
  ☆252Updated 3 years ago
• Larryxi / MSSQL-SQLi-Labs
  ☆85Updated 8 years ago
• Liqunkit / LiqunShield
  下架
  ☆141Updated 3 years ago
• 0-Xyao / Zero-box
  零组小工具
  ☆136Updated 3 years ago
• Astartgo / easy-for-webscan
  根据WebBatchRequest图形化二次开发：增加了指纹识别模块，可识别大概上千条指纹，增加了IP段处理，支持C段和B段处理，增加了301处理,增加了去重空节点的功能，可节省内存消耗,推荐勾选此选项
  ☆68Updated 3 years ago
• DSO-Lab / pocscan
  ☆114Updated 4 years ago
• timwhitez / Frog-Auth
  🐸Unauthorized Detection Framework未授权访问检测框架
  ☆161Updated last year
• wgpsec / Automatic-permission-maintenance
  CobaltStrike 上线自动权限维持插件
  ☆184Updated 3 years ago
• jweny / shiro-cve-2020-17523
  shiro-cve-2020-17523 漏洞的两种绕过姿势分析 以及配套的漏洞环境
  ☆117Updated 4 years ago
• LS95 / gopher-redis-auth
  This tool generates gopher link for exploiting SSRF and gaining RCE in redis with password.用于生成附带密码认证的gopher内容，用于SSRF等利用。
  ☆118Updated 5 years ago
• safe6Sec / bypassWAF
  用于mssql手注生成混淆payload
  ☆77Updated 4 years ago
• JulianWu520 / DriedMango
  GUI Exploit Tool For RedTeam
  ☆8Updated 3 years ago
• Richard-Tang / x1DecoderPlus
  AntSword(蚁剑)全参数流量XOR和Base64加伪装WebShell
  ☆164Updated 3 years ago
• naozibuhao / fofatools
  ☆94Updated 3 years ago
• p1g3 / Fastjson-Scanner
  a burp extension to find where use fastjson
  ☆165Updated 5 years ago
• dr0op / shiro-550-with-NoCC
  Shiro-550 不依赖CC链利用工具
  ☆450Updated last year
• Wker666 / Demo
  1.33
  ☆41Updated 3 years ago