MatouWebshell 是一款基于 Vue 3 和 Python 开发的开源 Webshell 管理与利用平台。支持高度自定义的流量伪装、内网穿透及内存马注入等功能。项目具有极高的扩展性,非常欢迎安全研究人员基于此开源架构进行二次开发(如自定义修改 Payload、新增混淆规则等)。
☆20Apr 10, 2026Updated 3 months ago
Alternatives and similar repositories for MatouWebshell
Users that are interested in MatouWebshell are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- y4er的ysoserial修改版,加入mysql不出网pipe文件生成☆28Updated this week
- ☆20Aug 28, 2022Updated 3 years ago
- 哥斯拉魔改二开☆33Updated this week
- 幽狼AI Shell:首款支持AI渗透的高级WebShell & C2管理工具,内置WebShell MCP服务器,支持多层内网级联的ASPX、ASHX高级WebShell管理工具,AES加密通信,无需代理,内存加载渗透工具,无文件落地隐蔽渗透目标,动态代码执行,Shell…☆243Updated this week
- SpringbootGuiExploit漏洞利用工具测试版☆20Jun 7, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 一个功能强大的浏览器扩展程序,专门用于检测Web系统中的权限越权漏洞,适用于Web渗透测试。☆44Oct 11, 2025Updated 9 months ago
- C#快速添加删除mssql用户小工具☆22Aug 30, 2025Updated 10 months ago
- spring部分漏洞,nacos部分漏洞,禅道认证绕过漏洞☆25May 28, 2024Updated 2 years ago
- xkInfoScan 是一款集成化的网络信息收集与安全扫描工具,支持 IP / 域名 / URL /信息追踪多维度目标探测,涵盖目录扫描、CMS 识别、漏洞检测、信息泄露挖掘、CDN 检测等核心功能,适用于渗透测试前期信息收集、网络资产测绘及安全风险评估场景。☆59Oct 8, 2025Updated 9 months ago
- 基于 Burp Montoya API 开发的全能插件,集成自动化HTTP加解密、高危漏洞扫描(Fastjson/Log4j/Shiro/Spring未授权)与安全工具联动(sqlmap/xray),支持 Burp Collaborator 与 CEYE DNSLog,专为…☆41Jun 11, 2026Updated last month
- 一个轮子,用于渗透测试优化的 DNS/HTTP 日志工具,简洁、轻便、更易于使用。☆16Sep 29, 2024Updated last year
- TongWebEJB漏洞利用工具☆26Apr 24, 2026Updated 2 months ago
- 一款网页批量截图工具☆14Dec 20, 2024Updated last year
- JDumpSpiderGUI 是一个用于 Java 堆转储文件分析的工具,支持命令行和 JavaFX 图形界面两种模式。该工具主要是在原工具上添加了图形化的界面☆171May 5, 2025Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- 基于Java jxbrowser 浏览器的登录枚举测试工具 (支持验证码识别)☆13Jul 10, 2025Updated last year
- 增加了几十个常用工具的kali☆48Dec 27, 2024Updated last year
- CVE-2022-21587 POC☆15Feb 17, 2023Updated 3 years ago
- jmx未授权访问 弱口令批量检测 GUI工具☆31Apr 28, 2023Updated 3 years ago
- 基于Golang的高并发子域名收集工具,Censys API+Virustotal API被动收集+DNS爆破+CDN识别(红队实战工具)☆12Apr 23, 2023Updated 3 years ago
- CVE-2022-23131漏洞利用工具开箱即用。☆11Apr 2, 2022Updated 4 years ago
- SharpDPAPI ported to Cobalt Strike BOFs — 19 self-contained BOFs for DPAPI credential triage☆16Feb 24, 2026Updated 4 months ago
- 致命精准的红队作战兵器。模块化集成资产发现、漏扫与利用,重新定义渗透测试工作流 (Workflow) 的新一代安全平台。☆387Jun 29, 2026Updated 2 weeks ago
- This repository contains complied exe of ysoserial.net ( ys.exe in directory ysoserial/bin/Debug). This work belongs to @pwntester bhai j…☆12Dec 7, 2022Updated 3 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Tomcat PUT方法任意文件写入(CVE-2017-12615)exp☆11Mar 14, 2023Updated 3 years ago
- 👻inject_und3ad -- 蚁剑(AntSword)插件☆24Aug 8, 2019Updated 6 years ago
- SwordfishSuite - Web安全测试利器 一款轻量、高速、插件化的现代Web安全测试工具,专为安全研究员和渗透测试者打造。 ✨ 核心特性: 智能代理:无缝拦截与修改HTTP/S请求,流畅度超越BurpSuite。 高度集成:集成云端虚拟手机,快速定位AP…☆75Apr 10, 2026Updated 3 months ago
- 一款用于网页敏感信息检测,指纹识别的chrome插件☆884Jan 13, 2026Updated 6 months ago
- 用于提取Webpack打包的未加载的JavaScript文件,并扫描这些文件以查找敏感信息。☆41Sep 17, 2025Updated 9 months ago
- 二开了MYExploit项目,其实也没改多少,就是新增了一些POC。☆15Jan 10, 2024Updated 2 years ago
- 对JNDIbypass工具进行二次开发☆18Dec 25, 2024Updated last year
- Matu7 渗透测试工具箱-(不含工具)☆16Apr 20, 2026Updated 2 months ago
- 支持注入内存马和Bypass WAF☆29Dec 12, 2023Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- JeecgCracker 是一个专门针对 JeecgBoot 框架的密码爆破工具。☆28Oct 29, 2024Updated last year
- Cobalt Strike plugin☆54Mar 29, 2024Updated 2 years ago
- 一款轻量化可定制模板的邮件批量发送工具 | 可用于攻防钓鱼或其他邮件个性化的场景 | 可启动JavaFX或SpringWeb环境☆48Apr 2, 2026Updated 3 months ago
- 渗透测试Payload速查平台 | Pentest Payload Quick Reference | XSS/SQLi/SSRF/RCE | React+TypeScript☆442Mar 11, 2026Updated 4 months ago
- 一款基于 Rust 开发的模块化免杀框架☆128Dec 30, 2025Updated 6 months ago
- 漏洞挖掘神器 | 浏览器插件 | 发现页面和JS中的隐藏接口和敏感信息、URL批量打开 & Vulnerability Mining Tool | Browser Plugin | Discover Hidden Interfaces, Sensitive Informat…☆324Aug 27, 2025Updated 10 months ago
- Tiger是一款在攻防演练中对目标资产重点系统指纹识别、精准漏扫的工具。是一款打点神器。☆143Aug 29, 2024Updated last year