Ares-X/VulWiki external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Ares-X/VulWiki

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Ares-X/VulWiki)

Close

Ares-X / VulWikiView on GitHubMore

• External links
• Readme badge

VulWiki

☆212Mar 9, 2021Updated 4 years ago

Alternatives and similar repositories for VulWiki

Users that are interested in VulWiki are comparing it to the libraries listed below

• Imanfeng / Apache-Solr-RCE

  View on GitHub
  Apache Solr Exploits 🌟
  ☆348Oct 13, 2020Updated 5 years ago
• CTF-MissFeng / GoScan

  View on GitHub
  GoScan是采用Golang语言编写的一款分布式综合资产管理系统，适合红队、SRC等使用
  ☆717May 6, 2021Updated 4 years ago
• shmilylty / vhost_password_decrypt

  View on GitHub
  vhost password decrypt
  ☆262Oct 9, 2024Updated last year
• BaizeSec / bylibrary

  View on GitHub
  白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目
  ☆1,490Oct 12, 2023Updated 2 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,011May 21, 2024Updated last year
• pmiaowu / log4j2Scan

  View on GitHub
  用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件
  ☆213Apr 18, 2023Updated 2 years ago
• MrWQ / vulnerability-paper

  View on GitHub
  收集的文章 https://mrwq.github.io/tools/paper/
  ☆2,009Dec 8, 2025Updated 2 months ago
• r0eXpeR / redteam_vul

  View on GitHub
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,521Jul 17, 2021Updated 4 years ago
• hosch3n / FastjsonVulns

  View on GitHub
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆91Sep 2, 2022Updated 3 years ago
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,016Oct 15, 2020Updated 5 years ago
• Ares-X / shiro-exploit

  View on GitHub
  Shiro反序列化利用工具，支持新版本(AES-GCM)Shiro的key爆破，配合ysoserial，生成回显Payload
  ☆896May 28, 2021Updated 4 years ago
• uknowsec / SharpSQLTools

  View on GitHub
  SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。
  ☆964Aug 5, 2021Updated 4 years ago
• b0bac / GetMail

  View on GitHub
  利用NTLM Hash读取Exchange邮件
  ☆441Jan 7, 2025Updated last year
• Maskhe / FastjsonScan

  View on GitHub
  一个简单的Fastjson反序列化检测burp插件
  ☆970Jun 18, 2021Updated 4 years ago
• bitterzzZZ / MemoryShellLearn

  View on GitHub
  分享几个直接可用的内存马，记录一下学习过程中看过的文章
  ☆975Mar 23, 2022Updated 3 years ago
• XTeam-Wing / RedTeaming2020

  View on GitHub
  RedTeaming知识星球2020年安全知识汇总
  ☆473May 5, 2021Updated 4 years ago
• 1n7erface / PocList

  View on GitHub
  Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-…
  ☆1,079May 11, 2023Updated 2 years ago
• whwlsfb / Log4j2Scan

  View on GitHub
  Log4j2 RCE Passive Scanner plugin for BurpSuite
  ☆830Aug 4, 2023Updated 2 years ago
• shack2 / skyscorpion

  View on GitHub
  新版将不再对外公开发布。天蝎权限管理工具采用Java平台的JavaFX技术开发的桌面客户端，支持跨平台运行，目前基于JDK1.8开发，运行必须安装JDK或JRE 1.8，注意不能是open jdk，只能是oracle的jdk。 天蝎权限管理工具基于冰蝎加密流量进行WebSh…
  ☆386Mar 22, 2021Updated 4 years ago
• Y4er / WebLogic-Shiro-shell

  View on GitHub
  WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞，一键注册蚁剑filter内存shell
  ☆535Aug 25, 2020Updated 5 years ago
• SkyBlueEternal / thinkphp-RCE-POC-Collection

  View on GitHub
  thinkphp v5.x 远程代码执行漏洞-POC集合
  ☆1,173Jan 15, 2019Updated 7 years ago
• Adminisme / ServerScan

  View on GitHub
  ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。
  ☆1,634Jun 16, 2024Updated last year
• cnrstar / anti-honeypot

  View on GitHub
  一款可以检测WEB蜜罐并阻断请求的Chrome插件
  ☆877Aug 5, 2024Updated last year
• feihong-cs / ShiroExploit-Deprecated

  View on GitHub
  Shiro550/Shiro721 一键化利用工具，支持多种回显方式
  ☆1,951Jun 4, 2021Updated 4 years ago
• DeEpinGh0st / Erebus

  View on GitHub
  CobaltStrike后渗透测试插件
  ☆1,554Oct 28, 2021Updated 4 years ago
• xinyu2428 / TDOA_RCE

  View on GitHub
  通达OA综合利用工具
  ☆517Mar 17, 2021Updated 4 years ago
• JDArmy / RPCSCAN

  View on GitHub
  RPC远程主机信息匿名扫描工具
  ☆317Sep 30, 2022Updated 3 years ago
• Daybr4ak / C2ReverseProxy

  View on GitHub
  一款可以在不出网的环境下进行反向代理及cs上线的工具
  ☆491Apr 26, 2023Updated 2 years ago
• woodpecker-framework / woodpecker-framework-release

  View on GitHub
  高危漏洞精准检测与深度利用框架
  ☆1,456Jan 8, 2023Updated 3 years ago
• Veraxy00 / Jumpserver-EXP

  View on GitHub
  JumpServer远程代码执行漏洞检测利用脚本
  ☆203Feb 9, 2021Updated 5 years ago
• 404tk / credcollect

  View on GitHub
  Automatic credential collection
  ☆21Aug 17, 2022Updated 3 years ago
• r35tart / RedisWriteFile

  View on GitHub
  通过 Redis 主从写出无损文件
  ☆719May 25, 2020Updated 5 years ago
• BeichenDream / CVE-2022-26134-Godzilla-MEMSHELL

  View on GitHub
  ☆342Jun 7, 2022Updated 3 years ago
• a1phaboy / FastjsonScan

  View on GitHub
  Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
  ☆1,049Oct 7, 2022Updated 3 years ago
• hayasec / 360SafeBrowsergetpass

  View on GitHub
  这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具，用于节省红队工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
  ☆638Apr 4, 2021Updated 4 years ago
• zhzyker / exphub

  View on GitHub
  Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、…
  ☆4,272Apr 4, 2021Updated 4 years ago
• lz2y / yaml-payload-for-ruoyi

  View on GitHub
  A memory shell for ruoyi
  ☆266Apr 28, 2023Updated 2 years ago
• aleenzz / Cobalt_Strike_wiki

  View on GitHub
  Cobalt Strike系列
  ☆2,413Dec 3, 2023Updated 2 years ago