HHa1ey / CandleDragonView external linksLinks
一款基于JAVA编写的插件化漏洞利用工具
☆46Jul 30, 2025Updated 6 months ago
Alternatives and similar repositories for CandleDragon
Users that are interested in CandleDragon are comparing it to the libraries listed below
Sorting:
- Cobalt Strike Beacon Object File (BOF) that obtain SYSTEM privilege with SeImpersonate privilege by passing a malicious IUnknwon object t…☆13Feb 4, 2024Updated 2 years ago
- jmx未授权访问 弱口令批量检测 GUI工具☆31Apr 28, 2023Updated 2 years ago
- ☆125Jul 21, 2024Updated last year
- ☆22Oct 19, 2022Updated 3 years ago
- javafx练习,JS接口提取,漏洞检测☆237Jan 24, 2024Updated 2 years ago
- 广联达OA系统漏洞批量检测工具☆16Nov 3, 2024Updated last year
- 一个基于JavaFX写的一个Hunter资产测绘平台的图形化工具☆121Nov 9, 2022Updated 3 years ago
- 一款可以高度自定义的 API 信息收集与记录 Burp扩展套件☆11Dec 1, 2024Updated last year
- exchange接口爆破|邮箱爆破☆20Sep 19, 2024Updated last year
- weblogic批量打入内存马,electron+vue3+springboot实现。☆54Mar 13, 2024Updated last year
- 帆软bi反序列化漏洞利用工具☆56Jun 4, 2024Updated last year
- 通达OA漏洞检测工具-TongdaScan_go☆222May 27, 2023Updated 2 years ago
- 一个介于目录扫描与poc验证之间的新生儿☆20Dec 6, 2022Updated 3 years ago
- 哥斯拉Hikvision综合安防后渗透插件,运行中心/web前台/MinIO 配置提取(解密)重置密码,还原密码。☆168Oct 8, 2024Updated last year
- 一款Java内存马生成、测试工具,搭配@ax1sX的MemShell食用。☆260Jul 4, 2024Updated last year
- sqlmap命令生成器☆20Nov 12, 2024Updated last year
- flash钓鱼 flash水坑攻击最新版源码☆65Feb 10, 2023Updated 3 years ago
- Load CLR to get RWX 通过加载clr在自身内存中产生rwx空间☆22Sep 28, 2022Updated 3 years ago
- python简单webshell,用于蚁剑远程管理☆23Jul 14, 2024Updated last year
- rmi打内存马工具,适用于目标用不了ldap的情况☆254Jul 12, 2023Updated 2 years ago
- 改造一个基于jrmp的AMF反序列化利用工具☆16Jul 7, 2022Updated 3 years ago
- 利用api来查询用户的star,仓库的commits、releases、issus。查询关键字更新☆12Mar 7, 2021Updated 4 years ago
- A C#-based webshell management tool for penetration testing.☆110Feb 6, 2026Updated last week
- Code By:Tas9er / FFICreateAdminUser / FFI绕杀软添加Windows账号☆40Dec 10, 2024Updated last year
- simpleIAST- 基于污点追踪的灰盒漏洞扫描工具。☆100Dec 23, 2025Updated last month
- 自用目录扫描☆50Jun 19, 2021Updated 4 years ago
- jeecg-boot密码离线爆破☆109Nov 22, 2024Updated last year
- CVE-2024-36401 图形化利用工具,支持各个JDK版本利用以及回显、内存马实现☆37Jul 16, 2025Updated 6 months ago
- 魔改版,实现冰蝎直连内存马,无需修改冰蝎客户端☆76Jan 3, 2024Updated 2 years ago
- 收集本人自接触渗透测试用于漏洞验证的所有热门CVE、POC、CNVD攻击有效载荷+测试工具+FUZZ,一个仓库满足许多攻击测试场景,开箱即用.☆174Oct 23, 2025Updated 3 months ago
- 支持自定义Poc文件的图形化漏洞利用工具☆229Nov 5, 2024Updated last year
- Cobalt Strike BOF that Add a user to localgroup by samr☆134Nov 30, 2022Updated 3 years ago
- 一款dump hash工具配合后渗透的利用☆275Apr 21, 2023Updated 2 years ago
- JavaGadgetGenerator 工具,支持 ysoserial,Hessian,字节码,Expr/SSTI,Shiro,JDBC 等 Gadget 生成,封装,混淆,出网延迟探测,内存马注入等...☆546Dec 7, 2025Updated 2 months ago
- RexLeo / ByPassDownLoadFile / Code By:Tas9er / A.E.0.S Security Team☆27May 8, 2025Updated 9 months ago
- 禅道认证绕过后台命令执行Getshell☆13Jan 8, 2025Updated last year
- CVE-2021-41773&CVE-2021-42013图形化漏洞检测利用工具☆15May 22, 2023Updated 2 years ago
- 自研C2 功能展示。cs+spark的结合体。省去了本地客户端,便于团队操作。后续开源社区版。☆16Oct 30, 2024Updated last year
- Geoserver综合利用工具☆106Jan 7, 2026Updated last month