Dido1960/thinkphp external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Dido1960/thinkphp

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Dido1960/thinkphp)

Close

Dido1960 / thinkphpView on GitHubMore

• External links
• Readme badge

thinkphp反序列化漏洞复现及POC编写

☆130Nov 18, 2019Updated 6 years ago

Alternatives and similar repositories for thinkphp

Users that are interested in thinkphp are comparing it to the libraries listed below

• threedr3am / tomcat-cluster-session-sync-exp

  View on GitHub
  tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包， 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
  ☆212May 19, 2020Updated 5 years ago
• Mochazz / ThinkPHP-Vuln

  View on GitHub
  关于ThinkPHP框架的历史漏洞分析集合
  ☆1,118Jan 18, 2020Updated 6 years ago
• Y4er / WebLogic-Shiro-shell

  View on GitHub
  WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞，一键注册蚁剑filter内存shell
  ☆535Aug 25, 2020Updated 5 years ago
• 360-Linton-Lab / Telemetry

  View on GitHub
  WINDOWS TELEMETRY权限维持
  ☆257Jul 2, 2020Updated 5 years ago
• TomAPU / ThinkPHP-Unserialize-Collection

  View on GitHub
  ThinkPHP各版本反序列化利用代码
  ☆32Aug 13, 2020Updated 5 years ago
• Lucifer1993 / TPscan

  View on GitHub
  一键ThinkPHP漏洞检测
  ☆1,161Nov 1, 2023Updated 2 years ago
• dpu / coremail-address-book

  View on GitHub
  📧Coremail邮件系统组织通讯录导出脚本
  ☆158Sep 28, 2021Updated 4 years ago
• iSafeBlue / fastjson-autotype-bypass-demo

  View on GitHub
  fastjson 1.2.68 版本 autotype bypass
  ☆142Jun 17, 2022Updated 3 years ago
• Y4er / CVE-2020-2551

  View on GitHub
  Weblogic IIOP CVE-2020-2551
  ☆340Apr 7, 2020Updated 5 years ago
• SkyBlueEternal / thinkphp-RCE-POC-Collection

  View on GitHub
  thinkphp v5.x 远程代码执行漏洞-POC集合
  ☆1,172Jan 15, 2019Updated 7 years ago
• sv3nbeast / ShiroScan

  View on GitHub
  Shiro<=1.2.4反序列化，一键检测工具
  ☆988Mar 4, 2021Updated 4 years ago
• Artemis1029 / Java_xmlhack

  View on GitHub
  帮助java环境下任意文件下载情况自动化读取源码的小工具
  ☆167Apr 5, 2019Updated 6 years ago
• Imanfeng / Apache-Solr-RCE

  View on GitHub
  Apache Solr Exploits 🌟
  ☆348Oct 13, 2020Updated 5 years ago
• hayasec / reGeorg-Weblogic

  View on GitHub
  reGeorg的特殊版本，适用于老版本weblogic。
  ☆151Apr 30, 2020Updated 5 years ago
• l3m0n / Bypass_Disable_functions_Shell

  View on GitHub
  一个各种方式突破Disable_functions达到命令执行的shell
  ☆1,198Oct 17, 2023Updated 2 years ago
• Slzdude / behinder_source

  View on GitHub
  Behinder3.0 Beta4 源码（Decompile and Fixed）
  ☆206Sep 1, 2020Updated 5 years ago
• Y4er / yaml-payload

  View on GitHub
  Spring Cloud SnakeYAML 反序列化一键注入cmdshell和reGeorg
  ☆135Sep 24, 2020Updated 5 years ago
• Hzllaga / BT_Panel_Privilege_Escalation

  View on GitHub
  宝塔面板Windows版提权方法
  ☆325Jan 26, 2021Updated 5 years ago
• ShiHuang-ESec / EHole

  View on GitHub
  EHole(棱洞)-红队重点攻击系统指纹探测工具
  ☆471Jan 27, 2021Updated 5 years ago
• feihong-cs / ShiroExploit-Deprecated

  View on GitHub
  Shiro550/Shiro721 一键化利用工具，支持多种回显方式
  ☆1,950Jun 4, 2021Updated 4 years ago
• huoji120 / DuckMemoryScan

  View on GitHub
  检测绝大部分所谓的内存免杀马
  ☆735Sep 15, 2022Updated 3 years ago
• firstC99 / fastjson-1.2.47-RCE

  View on GitHub
  Fastjson <= 1.2.47 远程命令执行漏洞利用工具及方法
  ☆400Jan 24, 2025Updated last year
• aleenzz / CVE-2020-10199

  View on GitHub
  CVE-2020-10199 回显版本
  ☆31Jun 24, 2024Updated last year
• Ch1ngg / WebLogicPasswordDecryptorUi

  View on GitHub
  解密weblogic AES或DES加密方法
  ☆232Dec 3, 2020Updated 5 years ago
• dr0op / WeblogicScan

  View on GitHub
  增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
  ☆968Jun 16, 2024Updated last year
• potats0 / shiroPoc

  View on GitHub
  ☆318Jun 4, 2021Updated 4 years ago
• longofo / rmi-jndi-ldap-jrmp-jmx-jms

  View on GitHub
  rmi、jndi、ldap、jrmp、jmx、jms一些demo测试
  ☆310Jun 17, 2022Updated 3 years ago
• Lucifer1993 / cmsprint

  View on GitHub
  CMS和中间件指纹库
  ☆399Apr 30, 2019Updated 6 years ago
• xfiftyone / STS2G

  View on GitHub
  Struts2漏洞扫描利用工具 - Golang版. Struts2 Scanner Written in Golang
  ☆572Jan 10, 2022Updated 4 years ago
• PINGXcpost / F-NAScan-PLUS

  View on GitHub
  F-NAScan-PLUS 安服资产搜集
  ☆142Feb 16, 2021Updated 5 years ago
• Y4er / CVE-2020-2883

  View on GitHub
  Weblogic coherence.jar RCE
  ☆176May 10, 2020Updated 5 years ago
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,016Oct 15, 2020Updated 5 years ago
• admintony / svnExploit

  View on GitHub
  SvnExploit支持SVN源代码泄露全版本Dump源码
  ☆1,025Dec 20, 2022Updated 3 years ago
• ab1gale / phpcms-2008-CVE-2018-19127

  View on GitHub
  ☆41Nov 9, 2018Updated 7 years ago
• rabbitmask / SB-Actuator

  View on GitHub
  Spring Boot Actuator未授权访问【XXE、RCE】单/多目标检测
  ☆521May 21, 2020Updated 5 years ago
• 1120362990 / vulnerability-list

  View on GitHub
  在渗透测试中快速检测常见中间件、组件的高危漏洞。
  ☆728Mar 21, 2022Updated 3 years ago
• opensec-cn / vtest

  View on GitHub
  用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
  ☆866Jul 21, 2019Updated 6 years ago
• potats0 / cve_2020_14644

  View on GitHub
  ☆69Aug 11, 2020Updated 5 years ago
• Ridter / redis-rce

  View on GitHub
  Redis 4.x/5.x RCE
  ☆975Nov 30, 2021Updated 4 years ago