ChaMd5Team / Pentest-tools
☆13Updated 3 years ago
Related projects: ⓘ
- reNgine is an automated reconnaissance framework meant for gathering information during penetration testing of web applications. reNgine …☆26Updated 3 years ago
- 脚写HW爆出来的漏洞的GUI工具☆71Updated 3 years ago
- ☆82Updated 7 years ago
- 通达OA一些漏洞点☆158Updated 4 years ago
- ☆77Updated this week
- fastjson不出网利用、c3p0☆245Updated 3 years ago
- SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE☆233Updated 3 years ago
- 用于mssql手注生成混淆payload☆77Updated 3 years ago
- Armor 浏览器反蜜罐插件 honeypot☆178Updated 3 years ago
- Apache Shiro 反序列化漏洞检测与利用工具,一键注入内存马☆138Updated 3 years ago
- ☆106Updated this week
- 根据WebBatchRequest图形化二次开发:增加了指纹识别模块,可识别大概上千条指纹,增加了IP段处理,支持C段和B段处理,增加了301处理,增加了去重空节点的功能,可节省内存消耗,推荐勾选此选项☆67Updated 3 years ago
- WIP: Demo for Attacking Apereo CAS☆83Updated 4 years ago
- ☆167Updated 2 years ago
- 利用长亭xray高级版的回显Gadget重写的一个shiro反序列化利用工具。☆123Updated 4 years ago
- 将Goby的json格式Poc转为xray的yaml格式Poc☆130Updated last year
- ☆86Updated this week
- ThinkPHP全日志扫描工具,命令行版和BurpSuite插件版☆129Updated 3 years ago
- 一款用于src资产信息收集的工具☆57Updated 3 years ago
- ☆45Updated last year
- ☆124Updated this week
- Web端POC-EXP 整理☆99Updated 3 years ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in redis with password.用于生成附带密码认证的gopher内容,用于SSRF等利用。☆108Updated 5 years ago
- woodpecker框架weblogic信息探测插件☆179Updated 2 years ago
- 2020年~2021年 网站CMS、中间件、框架系统漏洞集合☆98Updated 3 years ago
- ☆118Updated this week
- Java漏洞分析汇合☆140Updated 2 years ago
- Web Pentesting Fuzz 字典,一个就够了。☆70Updated 5 years ago
- 基于dbcp的fastjson rce 回显☆187Updated 3 years ago
- DSO-Lab 漏洞研究成果整理☆83Updated 2 years ago