C1h2e1 / Recon

Related projects ⓘ

Alternatives and complementary repositories for Recon

• gh0stkey / JSONandHTTPP
  Burp Suite Plugin: Convert the json text that returns the body into HTTP request parameters.
  ☆98Updated 3 years ago
• C1h2e1 / c1h2e1.github.io
  ☆1Updated 3 years ago
• rabbitmask / WeblogicScanLot
  WeblogicScanLot系列，Weblogic漏洞批量检测工具，V2.2
  ☆183Updated 4 years ago
• Echocipher / Subdomain-Takeover
  一个子域名接管检测工具
  ☆137Updated 3 years ago
• momika233 / Joomla-3.4.6-RCE
  Joomla 3.4.6 – Remote Code Execution
  ☆109Updated 9 months ago
• 0xzmz / burpsuite_jsapi
  A BurpSuite extension written by Python,used to find API interface in JS file.
  ☆114Updated last year
• sdsecurity / pooltest
  网上收集的一些利用工具
  ☆18Updated last year
• theLSA / burp-sensitive-param-extractor
  burpsuite extension for check and extract sensitive request parameter
  ☆110Updated 3 years ago
• jas502n / CVE-2019-11580
  CVE-2019-11580 Atlassian Crowd and Crowd Data Center RCE
  ☆105Updated 5 years ago
• PortSwigger / authz
  ☆106Updated 7 years ago
• black-mirror / Weblogic
  Weblogic CVE-2019-2725 CVE-2019-2729 Getshell 命令执行
  ☆68Updated 5 years ago
• bigsizeme / burplugin-java-rce
  ******本软件仅限用于学习交流禁止用于任何非法行为****** 本版本支持elasticsearch java语言远程命令执行及文件上传 elasticsearchgroov语言远程命令执行及文件上传 struts2-005、struts2-009、struts2-01…
  ☆110Updated 7 years ago
• 1hack0 / bug-bounty-101
  Happy Hunting
  ☆137Updated 5 years ago
• jas502n / cve-2019-2618
  Weblogic Upload Vuln(Need username password)-CVE-2019-2618
  ☆172Updated 5 years ago
• 3xp10it / xupload
  A tool for automatically testing whether the upload function can upload webshell
  ☆55Updated 4 years ago
• TheKingOfDuck / paramFuzzer
  一款高效的参数fuzz工具|A faster param fuzzing test tool
  ☆99Updated 4 years ago
• coco413 / DiscoverSubdomain
  前渗透信息探测工具集-子域名
  ☆138Updated 6 years ago
• QdghJ / burp_data_collector
  A Burp plugin that collects Burp request parameters, directories, paths and file names into the database for sorting
  ☆89Updated 3 years ago
• paralax / xss-labs
  small set of scripts to practice exploit XSS and CSRF vulnerabilities
  ☆58Updated 6 years ago
• Y4er / CVE-2020-14645
  Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()
  ☆79Updated 4 years ago
• kiks7 / rusty_joomla_rce
  Rusty Joomla RCE Exploit
  ☆70Updated last year
• xawdxawdx / sentrySSRF
  Tool to searching sentry config on page or in javascript files and check blind SSRF
  ☆67Updated 5 months ago
• LandGrey / flink-unauth-rce
  exploit Apache Flink Web Dashboard unauth rce on right way by python2 scripts
  ☆89Updated 5 years ago
• Qclover / jsspider
  A js infomation dig tool.
  ☆68Updated 4 years ago
• jiangsir404 / Xss-Sql-Fuzz
  burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz
  ☆60Updated 5 years ago
• theLSA / burp-unauth-checker
  burpsuite extension for check unauthorized vulnerability
  ☆228Updated 4 years ago
• rakjong / BurpPlugin_Shiro
  判断是否使用shiro的burp插件
  ☆10Updated 4 years ago
• timwhitez / Frog-Submon
  🐸Subdomain Monitor, 子域名监控
  ☆78Updated 3 years ago