整理SQLI、XSS、RCE、Path的payload文件备份留存
☆15Nov 9, 2022Updated 3 years ago
Alternatives and similar repositories for Payload-List
Users that are interested in Payload-List are comparing it to the libraries listed below
Sorting:
- 可视化GUI界面网络资产测绘平台查询,支持目前热门国内外网络资产测绘平台.☆28Oct 4, 2022Updated 3 years ago
- 适用于目标命令执行不出网、无回显等场景☆13Oct 8, 2022Updated 3 years ago
- go调用最大cpu内核数实现批量ip列表tcp端口快速扫描☆15Mar 20, 2020Updated 6 years ago
- 去除了流量特征的UDP协议跨平台机器管理工具☆41Dec 25, 2020Updated 5 years ago
- 蜜罐抓到的Top密码,根据使用频率排序,持续更新中...☆165Nov 20, 2023Updated 2 years ago
- 微软开发的系统管理小工具-简约教程-含渗透利器☆21Sep 27, 2019Updated 6 years ago
- 利用云函数实现端口扫描☆14Nov 17, 2025Updated 4 months ago
- Recon tool for URLs discovery☆12Jun 19, 2024Updated last year
- CVE-2022-22947_POC_EXP☆13Mar 17, 2022Updated 4 years ago
- ☆26Mar 24, 2023Updated 2 years ago
- 各大平台IOT设备漏洞资源库☆101Sep 4, 2023Updated 2 years ago
- 一款基于Http.sys的利用工具 ZhuriLab/Joker 备份☆27Nov 16, 2022Updated 3 years ago
- 通过公司名称,在fofa上搜索可能存在通用产品的公司;如果想挖掘cnvd证书,可导出注册资金大于5000w的公司到这个脚本中进行通用系统收集。☆65Oct 21, 2022Updated 3 years ago
- ☆13Oct 6, 2022Updated 3 years ago
- 本软件首先集成危害性较大框架和部分主流cms的rce(无需登录,或者登录绕过执行rce)和反序列化(利用链简单)。傻瓜式导入url即可实现批量getshell。批量自动化测试。例如:Thinkphp,Struts2,weblogic。出现的最新漏洞进行实时跟踪并且更新例如:…☆17May 22, 2022Updated 3 years ago
- HVVExploitApply工具POC登记信息☆20Aug 25, 2022Updated 3 years ago
- 一款用来扫描oa的漏洞的工具☆54Aug 24, 2023Updated 2 years ago
- 一款辅助安全研发在日常工作中渗透测试、安全研究、安全开发等工作的工具!☆13Nov 20, 2023Updated 2 years ago
- 一个Spring4Shell 被动式检测的Burp插件☆93Apr 8, 2022Updated 3 years ago
- gomasscan是一个纯go编写的masscan扫描库☆81Jun 3, 2022Updated 3 years ago
- 一个全新的敏感文件发现工具☆84Jan 7, 2021Updated 5 years ago
- 常见漏洞描述、漏洞影响及修复建议,为规范的渗透测试报告提供参考 | Common vulnerability descriptions, vulnerability impacts and remediation recommendations for standardi…☆58Jan 15, 2021Updated 5 years ago
- burp-http请求转发至其他模块的插件☆74Sep 13, 2020Updated 5 years ago
- API Highlighter 是一个用于 BurpSuite 的插件,主要用于 web 应用迭代安全测试时高亮指定的新增接口,该插件最初用 Python 编写,现重构为 Java 版本。☆42Feb 19, 2025Updated last year
- 对接JNDIMonitor的Burp Suite被动扫描插件☆26Dec 16, 2021Updated 4 years ago
- 海康威视文件上传检测脚本,可getshell,漏洞检测☆31Jun 6, 2023Updated 2 years ago
- 项目监控工具 以及 Codeql 自动运行☆313Apr 13, 2023Updated 2 years ago
- govenom is a msfvenom-inspired cross-platform payload generator toolkit written in Go☆21Sep 9, 2020Updated 5 years ago
- Learning JAVA for Security☆34Jun 9, 2022Updated 3 years ago
- JS Finding can be used to extract JavaScript (JS) files from either a single domain URL or a list of domains. The tool supports various e…☆48Apr 29, 2024Updated last year
- Courier 信使,自用应急响应信息收集脚本,便于快速进行信息收集、定位攻击信息。☆19Oct 16, 2024Updated last year
- host碰撞工具☆13May 22, 2023Updated 2 years ago
- 致远OA漏洞检测☆189Aug 2, 2023Updated 2 years ago
- 泛微OA_V9全版本前台任意文件上传漏洞☆29Apr 26, 2022Updated 3 years ago
- 收藏webshell☆25Mar 14, 2022Updated 4 years ago
- 子域名爆破神器☆52Dec 17, 2022Updated 3 years ago
- 微软签名缺陷利用,老技术☆18Aug 10, 2021Updated 4 years ago
- 基于BurpFastJsonScan修改新增了延迟探测方式 Burp插件 Fastjson扫描☆59Sep 23, 2022Updated 3 years ago
- Community curated list of templates for the erebus engine to find security vulnerabilities.☆16Jul 10, 2021Updated 4 years ago