EkiXu / WAFManisLinks
☆150Updated last year
Alternatives and similar repositories for WAFManis
Users that are interested in WAFManis are comparing it to the libraries listed below
Sorting:
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆472Updated 2 months ago
- 《深入JDBC安全:特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…☆475Updated last month
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆525Updated 5 months ago
- CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段☆259Updated 8 months ago
- 【Hello-CTF labs】一个想帮你收集所有RCE技巧的靶场。☆258Updated 3 months ago
- 一款基于污点分析的PHP扫描工具,能快速匹配从常见Source点如$_POST、$GET到Sink点system等的路径,同时支持单独对函数的扫描。☆137Updated 4 months ago
- IoT_Vulnerability_Wiki IoT漏洞知识库☆200Updated 8 months ago
- 《Go语言安全-只有Go安全才能拯救地球》Only Golang Security Can Save The Earth.☆184Updated 2 years ago
- A powerful JNDI injection exploitation framework that supports RMI, LDAP and LDAPS protocols, including various bypass methods for high-v…☆476Updated this week
- GitHub项目监控 && CodeQL自动扫描 (GitHub project monitoring && CodeQL automatic analysis)☆452Updated 7 months ago
- 自动化的 Python 沙箱逃逸 payload bypass 框架 / Automated Python Sandbox Escape Payload Bypass Framework☆95Updated 8 months ago
- 历史漏洞的细节以及利用方法汇总收集☆160Updated 8 months ago
- 《深入理解WEB漏洞之SSRF漏洞》Server-Side Request Forgery.☆58Updated last year
- 基于实战沉淀下的各种弱口令字典☆121Updated 5 years ago
- WPS Office RCE On 2023-08-10☆254Updated 2 years ago
- This tool is an automated PWN exploitation framework designed for CTF competitions and binary vulnerability exploitation. It integrates v…☆152Updated 2 months ago
- Extract website information from Vue☆277Updated last year
- JavaWeb漏洞审计工具,构建方法调用链并模拟栈帧进行分析☆334Updated 2 years ago
- 【两万字原创】零基础学fastjson漏洞(基础篇),公众号:追梦信安☆177Updated 10 months ago
- 一款帮助云租户发现和测试云上风险、增强云上防护能力的综合性开源工具☆526Updated 4 months ago
- 让"WAF绕过"变得简单☆423Updated 7 months ago
- 一个 CVE 漏洞预警知识库,无 exp/poc,部分包含修复方案。A knowledge base of CVE security vulnerability, no PoCs/exploits.☆134Updated last week
- AutoBypass403-BurpSuite 插件二开重构,优化执行逻辑☆302Updated 10 months ago
- 对于安全学习的一些总结,更新ing,期待 Fork & Star!☆328Updated last year
- A repository to record my usual studies☆31Updated 2 years ago
- 此项目的POC来源为2024年以来各大威胁情报的高危漏洞复现,POC已通过nuclei或xray武器化,本项目旨在为网络安全爱好者们提供一点参考资料,可供个人研究使用,共勉☆306Updated last year
- dotnet 反序列化学习笔记☆497Updated last year
- javaDeserializeLabs☆69Updated 2 years ago
- 云原生安全资料库☆144Updated last week
- [漏洞复现] 全球首款利用PHP默认环境(XAMPP)的CVE-2024-4577 PHP-CGI RCE 漏洞 EXP。☆152Updated last year