《深入理解WEB漏洞之SSRF漏洞》Server-Side Request Forgery.
☆69Mar 1, 2024Updated 2 years ago
Alternatives and similar repositories for SSRF
Users that are interested in SSRF are comparing it to the libraries listed below
Sorting:
- 《Web安全教程之XXE漏洞》XML External Entity Injection.☆11Nov 1, 2025Updated 4 months ago
- 【Hello-CTF labs】新手向的ssrf靶场,从协议,场景,绕过等多个ssrf攻击的基础维度展开。☆55Mar 22, 2025Updated 11 months ago
- PHP漏洞靶场,涉及OWASP TOP10漏洞,新手必学!☆12Jun 13, 2022Updated 3 years ago
- 抽离出 utf-8-overlong-encoding 的序列化逻辑,实现 2 3 字节加密序列化数组☆139Mar 11, 2024Updated last year
- Apache Shiro CVE-2022-32532☆13Jun 28, 2022Updated 3 years ago
- A V8 Sandbox Escape Technique.☆33Jul 4, 2024Updated last year
- Where is this IP?☆14Feb 24, 2024Updated 2 years ago
- Show the application of fuzzy in penetration test~☆13Mar 11, 2022Updated 3 years ago
- 为渗透测试人员和开发者设计的纯前端工具集,专注于信息收集和文本处理,纯前端实现的 Web 工具集,提供 URL 处理、路径分析、信息收集等功能。☆16Jun 27, 2025Updated 8 months ago
- 一个功能强大的浏览器扩展程序,专门用于检测Web系统中的权限越权漏洞,适用于Web渗透测试。☆43Oct 11, 2025Updated 4 months ago
- 一个红队知识仓库☆15Jun 13, 2022Updated 3 years ago
- CVE-2022-22947_POC_EXP☆13Mar 17, 2022Updated 3 years ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆71Jul 22, 2025Updated 7 months ago
- Demo of various ways to exploit post based reflected XSS☆18Jul 6, 2023Updated 2 years ago
- CVE-2022-22965 poc including reverse-shell support☆13Nov 29, 2023Updated 2 years ago
- tomcat的servlet、filter、listener内存马查杀工具☆38Sep 20, 2023Updated 2 years ago
- 针对Navicat的后渗透利用框架☆325Mar 21, 2025Updated 11 months ago
- ☆18Dec 16, 2024Updated last year
- ctf一键栈溢出、格式化字符串pwn工具/一键pwn利用工具☆17Apr 19, 2025Updated 10 months ago
- ☆19Mar 4, 2023Updated 2 years ago
- A containerized Model Context Protocol (MCP) server providing static code analysis using Joern's Code Property Graph (CPG) with support f…☆45Feb 21, 2026Updated last week
- ☆52Dec 8, 2025Updated 2 months ago
- 领先的实践型网络安全在线学习平台☆18Feb 10, 2026Updated 2 weeks ago
- Windows Api调用,用来绕过杀软添加用户☆22May 15, 2021Updated 4 years ago
- SiteScan是一款探测网站存活概率的工具☆17Mar 4, 2020Updated 5 years ago
- 含免杀一句话、大马等过狗waf - 来源于网络收集的webshell,实时更新。☆21Sep 3, 2021Updated 4 years ago
- oss存储桶遍历漏洞利用脚本☆91Nov 23, 2024Updated last year
- 《Linux提权方法论》☆801Feb 22, 2023Updated 3 years ago
- CVE-2022-22965 - CVE-2010-1622 redux☆19Apr 18, 2023Updated 2 years ago
- 用于存储公众号文章的 PDF 版本☆104May 20, 2024Updated last year
- Vulnerability POC/EXP Collection and Classification☆23Sep 18, 2024Updated last year
- 对IP检测是否cve漏洞,是否为蜜罐☆29Oct 27, 2024Updated last year
- cobaltstrike免杀插件☆24May 4, 2022Updated 3 years ago
- spring-core单个图形化利用工具,CVE-2022-22965及修复方案已出☆17Apr 2, 2022Updated 3 years ago
- HaE - Highlighter and Extractor, Empower ethical hacker for efficient operations.☆4,046Updated this week
- 关于我在CTF中的所有东西☆422Sep 22, 2025Updated 5 months ago
- CVE-2022-42889 aka Text4Shell research & PoC☆20Mar 17, 2023Updated 2 years ago
- whohk,linux下一款强大的应急响应工具 在linux下的应急响应往往需要通过繁琐的命令行来查看各个点的情况,有的时候还需要做一些格式处理,这对于linux下命令不是很熟悉的人比较不友好。本工具将linux下应急响应中常用的一些操作给集合了起来,并处理成了较为友好的…☆575Jan 13, 2024Updated 2 years ago
- 爬取安全领域文章(Seebug、先知社区、安全客、freebuf等),转成pdf存到本地,离线学习☆64May 11, 2021Updated 4 years ago