Al1ex / CVE-2021-22205
CVE-2021-22205& GitLab CE/EE RCE
☆272Updated 2 years ago
Alternatives and similar repositories for CVE-2021-22205:
Users that are interested in CVE-2021-22205 are comparing it to the libraries listed below
- 域控安全one for all☆733Updated 7 months ago
- 一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。☆362Updated 3 years ago
- 各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新☆268Updated 3 years ago
- DNSLOG平台 golang☆435Updated 3 years ago
- A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …☆256Updated 9 months ago
- 域信息收集工具☆393Updated 2 years ago
- CobaltStrike4.4 一键部署脚本 随机生成密码、key、端口号、证书等,解决cs4.x无法运行在Linux上报错问题 灰常银杏化设计☆286Updated 3 years ago
- FilterBased/ServletBased in memory shell for Tomcat and some other middlewares☆366Updated 4 years ago
- 域内自动化信息搜集利用工具☆422Updated last year
- DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名 产品(fuzz.red),Alphalog与传统DNSLog不同,更快、更安全。☆430Updated 2 years ago
- Modifying JuicyPotato to support load shellcode and webshell☆190Updated 3 years ago
- Redis-Attack By Replication (通过主从复制攻击Redis)☆332Updated 2 years ago
- JNDI在java高版本的利用工具,FUZZ利用链☆555Updated 2 years ago
- RevSuit is a flexible and powerful reverse connection platform designed for receiving connection from target host in penetration.☆536Updated last year
- CVE-2021-21972 Exploit☆491Updated last year
- 基于msf的后渗透协作平台☆217Updated 3 years ago
- Msmap is a Memory WebShell Generator.☆581Updated 2 years ago
- 一款可以在不出网的环境下进行反向代理及cs上线的工具☆486Updated 2 years ago
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆467Updated last year
- 通过 Redis 主从写出无损文件☆713Updated 4 years ago
- java memory web shell extracting tool☆434Updated 3 years ago
- A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.☆713Updated 2 years ago
- 80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…☆784Updated 10 months ago
- API Security DAST & Oprations☆315Updated last year
- ☆205Updated 4 years ago
- 一个高度可定制化的JNDI和Java反序列化利用工具☆463Updated 2 years ago
- WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell☆529Updated 4 years ago
- CobaltStrike <= 4.7.1 RCE☆381Updated 2 years ago
- AWS云平台 AccessKey 泄漏利用工具☆381Updated last year
- CVE-2022-30190-follina.py-修改版,可以自定义word模板,方便实战中钓鱼使用。☆396Updated 2 years ago