FROM:@Mr-xn 渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
☆22Jan 12, 2022Updated 4 years ago
Alternatives and similar repositories for Penetration_PoC
Users that are interested in Penetration_PoC are comparing it to the libraries listed below
Sorting:
- Java反序列化漏洞学习☆14Jul 1, 2021Updated 4 years ago
- Phishing sender是一款针对钓鱼邮件应急演练所编写的小脚本,实际上是封装了swaks,让人们做演练的时候更加方便快捷。☆16Jun 8, 2022Updated 3 years ago
- GoLang package for creating Mythic Payload Types, C2 Profiles, Translation Services, WebHook listeners, and Loggers☆24Dec 15, 2025Updated 2 months ago
- CVE-2022-22947 memshell☆18Mar 18, 2022Updated 3 years ago
- java反序列化漏洞笔记☆23Apr 6, 2019Updated 6 years ago
- 渗透测试手册☆21Mar 8, 2020Updated 5 years ago
- spring-core单个图形化利用工具,CVE-2022-22965及修复方案已出☆17Apr 2, 2022Updated 3 years ago
- 就是一个练习RMI反序列化的最简单环境☆30Jan 8, 2022Updated 4 years ago
- Log4j2 RCE Passive Scanner for BurpSuite☆31Dec 10, 2021Updated 4 years ago
- anonymous to cluster-admin via Heapdump.☆30Nov 16, 2023Updated 2 years ago
- java图形化漏洞利用工具集☆128Aug 5, 2022Updated 3 years ago
- Red Teaming & Active Directory Cheat Sheet.☆41Sep 21, 2023Updated 2 years ago
- Spring Cloud Function Spel命令执行漏洞☆39Mar 27, 2022Updated 3 years ago
- 针对于Spring框架的自动Java代码审计工具☆37Jan 24, 2022Updated 4 years ago
- SecureEye is an AI tool for secure code review. It assesses code for vulnerabilities, and common attack vectors☆14May 21, 2024Updated last year
- Apache Struts2 S2-062远程代码执行漏洞(CVE-2021-31805) | 反弹Shell☆11Apr 18, 2022Updated 3 years ago
- Red Team Assessment Platform - reporting, visualizations, and analytics for cybersecurity red teams☆34Jan 27, 2026Updated last month
- PoC for CVE-2022-22954 - VMware Workspace ONE Access Freemarker Server-Side Template Injection☆10Apr 12, 2022Updated 3 years ago
- 黑客工具收集仓库,包含主流和非主流漏洞利用工具,subdomain、备案查询工具、CVE仓库、Hacking Tools、Exploits、免杀工具、weblogic漏洞利用工具、Red Team、Cobalt Strike、C免杀、bypassAV、内网渗透工具、漏洞利用…☆150May 23, 2022Updated 3 years ago
- Log4j2 RCE Passive Scanner plugin for BurpSuite☆35Dec 16, 2021Updated 4 years ago
- Java RMI反序列化漏洞插件☆49Jun 11, 2021Updated 4 years ago
- ☆10Jul 21, 2022Updated 3 years ago
- 检测邮件发送的可行性,可用来红队作战中对目标邮箱账户测试。The feasibility sent by the detection mail can be used for the target mailbox account test in the Red Team b…☆10May 8, 2023Updated 2 years ago
- Flash最新钓鱼源码对接官方API实现跟随官方升级而升级☆12Sep 30, 2020Updated 5 years ago
- ☆10Jun 15, 2024Updated last year
- Code By:Tas9er / 网康下一代防火墙批量GetShell☆14Apr 11, 2021Updated 4 years ago
- A mix of learning resources, my notes and mostly ctf writeup of sandbox escape challenges☆10Jun 6, 2023Updated 2 years ago
- 新 React 中文文档 docker 版本,方便本地部署看文档☆13Feb 13, 2025Updated last year
- ☆11Dec 7, 2025Updated 2 months ago
- Apache OfBiz Auth Bypass Scanner for CVE-2023-51467☆11Dec 31, 2023Updated 2 years ago
- 🐚ᴠʟᴀɴɢ ʀᴇᴠᴇʀsᴇ sʜᴇʟʟ🐚☆11Apr 28, 2022Updated 3 years ago
- CVE-2020-5902☆10Jul 11, 2020Updated 5 years ago
- Proof of concept for the command injection vulnerability affecting the ZTE MF286R router, including an RCE exploit.☆10Jan 7, 2023Updated 3 years ago
- A powerful hacker toolkit collected more than 10 categories of open source scanners from Github - 安全行业从业者自研开源扫描器合辑☆11Sep 3, 2021Updated 4 years ago
- JavaAgent内存马实现、检测、修复demo☆11Dec 7, 2022Updated 3 years ago
- 一款支持 目录扫描(可配合熊猫头)+自动绕403+敏感匹配 等的小脚本工具,目前此脚本属于创始测试版,后续会继续升级!!!CowCow🐂🐂☆18Dec 27, 2024Updated last year
- CVE-2022-23131漏洞利用工具开箱即用。☆11Apr 2, 2022Updated 3 years ago
- 漏洞复现,exp、poc收集整理☆11Jun 4, 2021Updated 4 years ago
- TeamsSix 的个人博客☆10Sep 6, 2025Updated 5 months ago