伪造Myslq服务端,并利用Mysql逻辑漏洞来获取客户端的任意文件反击攻击者
☆364Apr 24, 2022Updated 3 years ago
Alternatives and similar repositories for MysqlT
Users that are interested in MysqlT are comparing it to the libraries listed below
Sorting:
- 通过 Redis 主从写出无损文件☆719May 25, 2020Updated 5 years ago
- 这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具,用于节省红队工作量,通过下载浏览器数据库、记录密钥来离线解密浏览器密码。☆638Apr 4, 2021Updated 4 years ago
- 利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码☆711May 10, 2021Updated 4 years ago
- Java RCE 回显测试代码☆1,016Oct 15, 2020Updated 5 years ago
- WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell☆535Aug 25, 2020Updated 5 years ago
- Bypass firewall for traffic forwarding using webshell☆1,430Sep 29, 2021Updated 4 years ago
- 对密码已保存在 Windwos 系统上的部分程序进行解析,包括:Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品(Xshell,Xftp)。源码:https://github.com/RowTeam/SharpDecrypt…☆1,260Mar 16, 2022Updated 3 years ago
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,012May 21, 2024Updated last year
- A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.☆754Dec 2, 2022Updated 3 years ago
- 内网渗透中常用的c#程序整合成cs脚本,直接内存加载。持续更新~☆498Feb 13, 2020Updated 6 years ago
- JumpServer远程代码执行漏洞检测利用脚本☆202Feb 9, 2021Updated 5 years ago
- 中国蚁剑后渗透框架☆939Jan 18, 2024Updated 2 years ago
- Burp suite 分块传输辅助插件☆2,022Feb 23, 2022Updated 4 years ago
- Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)☆1,389Dec 16, 2022Updated 3 years ago
- 这是一个抓取浏览器密码的工具,后续会添加更多功能☆1,456May 21, 2022Updated 3 years ago
- 搜集了市面上绝大部分weblogic解密方式,整理了7种解密weblogic的方法及响应工具。☆833Nov 7, 2023Updated 2 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- (周瑜)Java - SpringBoot 持久化 WebShell(不仅仅是SpringBoot,适合任何符合JavaEE规范的服务)☆615Dec 29, 2021Updated 4 years ago
- JCE - JSP/JPSX CodeEncode - 用于 Webshell 逃避静态查杀的辅助脚本☆258Oct 29, 2021Updated 4 years ago
- fastjson不出网利用、c3p0☆255Jul 30, 2021Updated 4 years ago
- sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆716Aug 3, 2021Updated 4 years ago
- SharpSQLTools 和@Rcoil一起写的小工具,可上传下载文件,xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。☆965Aug 5, 2021Updated 4 years ago
- MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize☆1,360Nov 18, 2021Updated 4 years ago
- 免杀技术大杂烩---乱拳也打不死老师傅☆1,094Mar 29, 2021Updated 4 years ago
- 红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。☆366Jun 19, 2024Updated last year
- 一款可以在不出网的环境下�进行反向代理及cs上线的工具☆491Apr 26, 2023Updated 2 years ago
- 在渗透测试中快速检测常见中间件、组件的高危漏洞。☆728Mar 21, 2022Updated 3 years ago
- Windows 权限提升 BadPotato☆890May 10, 2020Updated 5 years ago
- 内网域渗透小工具☆734Apr 20, 2021Updated 4 years ago
- ☆232Jan 3, 2022Updated 4 years ago
- 利用NTLM Hash读取Exchange邮件☆441Jan 7, 2025Updated last year
- Shiro反序列化回显利用、内存shell、检查 Burp插件☆217Sep 1, 2022Updated 3 years ago
- 检测绝大部分所谓的内存免杀马☆735Sep 15, 2022Updated 3 years ago
- CobaltStrike后渗透测试插件☆1,554Oct 28, 2021Updated 4 years ago
- 解密weblogic AES或DES加密方法☆232Dec 3, 2020Updated 5 years ago
- 绕过专业工具检测的Webshell研究文章和免杀的Webshell☆1,733Nov 15, 2020Updated 5 years ago
- 可在Windows下执行系统命令的Redis模块,可用于Redis主从复制攻击。☆264Nov 25, 2022Updated 3 years ago
- 各种数据库的利用姿势☆1,034Jan 3, 2025Updated last year
- Flask 内存马☆313Mar 26, 2021Updated 4 years ago