Garck3h/cve-2023-38831

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Garck3h/cve-2023-38831)

Garck3h / cve-2023-38831

一款用于生成winrar程序RCE（即cve-2023-38831）的POC的工具。

☆128

Alternatives and similar repositories for cve-2023-38831

Users that are interested in cve-2023-38831 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

X1r0z / EBurstGo
View on GitHub
利用 Exchange 服务器 Web 接口爆破邮箱账户 | Brute force email accounts using Exchange server web endpoints
☆94Sep 13, 2024Updated last year
nex121 / webshellEncode
View on GitHub
☆28Aug 12, 2023Updated 2 years ago
jan-bar / EncryptionFile
View on GitHub
一种安全加密数据的方式，数据可以实现自校验，防止数据损坏和篡改（A way to securely encrypt data, the data can be self-verified to prevent data damage and tampering）
☆64Dec 16, 2023Updated 2 years ago
zhaoyumi / WeaverExploit_All
View on GitHub
泛微最近的漏洞利用工具（PS：2023）
☆479Dec 14, 2023Updated 2 years ago
xiaoy-sec / USBShutdown
View on GitHub
反取证程序，类似usbkill
☆11Apr 22, 2023Updated 3 years ago
Bare Metal GPUs on DigitalOcean Gradient AI • Ad
Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
ASkyeye / CVE-2023-21839
View on GitHub
Weblogic CVE-2023-21839 RCE (无需Java依赖一键RCE)
☆115Feb 24, 2023Updated 3 years ago
Hel10-Web / Databasetools
View on GitHub
一款用Go语言编写的数据库自动化提权工具，支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接
☆867Aug 30, 2023Updated 2 years ago
Contrast-Security-OSS / Spring-Kafka-POC-CVE-2023-34040
View on GitHub
POC for Spring Kafka Deserialization Vulnerability CVE-2023-34040
☆46May 4, 2026Updated last month
Lotus6 / ConfluenceMemshell
View on GitHub
Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎内存马注入
☆558Feb 1, 2024Updated 2 years ago
wgpsec / YongYouNcTool
View on GitHub
用友NC系列漏洞检测利用工具，支持一键检测、命令执行回显、文件落地、一键打入内存马、文件读取等
☆594Aug 19, 2023Updated 2 years ago
lele8 / SharpDBeaver
View on GitHub
DBeaver数据库密码解密工具
☆206Nov 29, 2023Updated 2 years ago
X1r0z / go-ntlmssp
View on GitHub
NTLM/Negotiate authentication over HTTP that supports Pass The Hash Mode (PtH)
☆17Sep 13, 2024Updated last year
AbelChe / evil_minio
View on GitHub
EXP for CVE-2023-28434 MinIO unauthorized to RCE
☆319Apr 4, 2023Updated 3 years ago
qi4L / Ysoserial-go
View on GitHub
A Go library for generating Java deserialization payloads.
☆154Sep 9, 2024Updated last year
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
Jumbo-WJB / portreuse
View on GitHub
portreuse reuseport 端口复用
☆61Aug 27, 2023Updated 2 years ago
kyo-w / router-router
View on GitHub
Java web路由内存分析工具
☆438May 22, 2025Updated last year
qi4L / monitor-Go
View on GitHub
AWD 文件监控
☆29Sep 14, 2023Updated 2 years ago
pen4uin / java-echo-generator
View on GitHub
一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
☆463Jan 12, 2025Updated last year
0xf4n9x / Zentao-Captcha-RCE
View on GitHub
禅道研发项目管理系统`misc-captcha-user`认证绕过后台命令注入漏洞
☆108Apr 24, 2023Updated 3 years ago
qi4L / WeblogicScan-go
View on GitHub
WeblogicScan一键检测
☆127May 6, 2024Updated 2 years ago
Hutt0n0 / ActiveMqRCE
View on GitHub
用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用内存马注入
☆289Nov 20, 2023Updated 2 years ago
corener / JavaPassDump
View on GitHub
JavaPassDump
☆275Jan 7, 2022Updated 4 years ago
Avienma / DumpHash
View on GitHub
一款dump hash工具配合后渗透的利用
☆275Apr 21, 2023Updated 3 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
Y4Sec-Team / mysql-jdbc-tricks
View on GitHub
JDBC Attack Tricks
☆154Sep 3, 2023Updated 2 years ago
pap1rman / postnacos
View on GitHub
哥斯拉nacos后渗透插件 maketoken adduser
☆150Jul 7, 2023Updated 2 years ago
Whoopsunix / JavaRce
View on GitHub
Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
☆549Mar 6, 2025Updated last year
0xf4n9x / CDGXStreamDeserRCE
View on GitHub
亿赛通电子文档安全管理系统XStream反序列化漏洞任意文件上传利用
☆120Aug 9, 2024Updated last year
ttstormxx / lineadd
View on GitHub
lineadd 渗透测试字典管理工具, 让字典管理生活轻松一点。Penetration test dictionary management tool, make dictionary management life a little easier.
☆27Aug 19, 2023Updated 2 years ago
9bie / Slacker
View on GitHub
懒鬼插件/审计过的后的渗透插件/我凭本事打的SESSION凭什么还要我自己动手后渗透？
☆252Feb 28, 2026Updated 3 months ago
Esonhugh / yapi-rce-webshell
View on GitHub
Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法相比于其他的利用方式更加微操和可控影响更小
☆66Jul 4, 2024Updated last year
KimJun1010 / WeblogicTool
View on GitHub
WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
☆1,792Nov 1, 2023Updated 2 years ago
webraybtl / zentaopms_poc
View on GitHub
禅道相关poc
☆174Jun 20, 2024Updated last year
Bare Metal GPUs on DigitalOcean Gradient AI • Ad
Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
sorabug / ChangeTimestamp
View on GitHub
一键修改exe、dll的编译时间、创建时间、修改时间和访问时间
☆198Apr 16, 2023Updated 3 years ago
i11us0ry / winlog
View on GitHub
一款基于go的windows信息收集工具，主要收集目标机器rdp端口、mstsc远程连接记录、mstsc密码和安全事件中4624、4625登录事件记录
☆292Jul 18, 2022Updated 3 years ago
veo / vagent
View on GitHub
多功能 java agent 内存马
☆528Oct 8, 2023Updated 2 years ago
Naturehi666 / searchall
View on GitHub
强大的敏感信息搜索工具
☆989Nov 23, 2024Updated last year
evilashz / PigScheduleTask
View on GitHub
添加计划任务方法集合
☆314Aug 6, 2023Updated 2 years ago
Whoopsunix / utf-8-overlong-encoding
View on GitHub
抽离出 utf-8-overlong-encoding 的序列化逻辑，实现 2 3 字节加密序列化数组
☆141Mar 11, 2024Updated 2 years ago
whocansee / FilelessAgentMemShell
View on GitHub
无需文件落地Agent内存马生成器
☆250May 30, 2024Updated 2 years ago