Macr0phag3 / parselmouthLinks

自动化的 Python 沙箱逃逸 payload bypass 框架 / Automated Python Sandbox Escape Payload Bypass Framework

☆98

Alternatives and similar repositories for parselmouth

Users that are interested in parselmouth are comparing it to the libraries listed below

Sorting:

Fushuling / TaintScaner
一款基于污点分析的PHP扫描工具，能快速匹配从常见Source点如$_POST、$GET到Sink点system等的路径，同时支持单独对函数的扫描。
☆151Updated 6 months ago
Drun1baby / AWD-AWDP_SecFilters
为了准备 AWD，写了个 Filter 的集合
☆85Updated last year
Jlan45 / AnswerPHP
一个帮助你PHP反序列化的python工具
☆72Updated 2 years ago
CRONUS-Security / memory-image-auto-analyzer
一个雏形，一个基于Volatility进行可视化、自动化内存镜像分析的工具
☆117Updated last year
Macr0phag3 / dibber
用于自动搜索 Python 沙箱逃逸、SSTI 攻击链的小工具
☆37Updated 9 months ago
Jlan45 / AWDJavaWebPatch
通过jar包快速生成patch模版
☆50Updated 2 years ago
ProbiusOfficial / bashFuck
exec BashCommand with only ! # $ ' ( ) < \ { } just 10 charset used in Bypass or CTF
☆246Updated last year
heimao-box / pwnpasi
This tool is an automated PWN exploitation framework designed for CTF competitions and binary vulnerability exploitation. It integrates v…
☆258Updated last month
i0gan / awd_script
AWD批量攻击脚本(Web/Pwn通用)，通过bash编写，远程信息采用参数传入exp，通过多进程方式实现同时攻打，阻塞超时自动结束进程。
☆138Updated 2 years ago
Drun1baby / CTF-Repo-2023
2023 各大 CTF 的比赛附件
☆49Updated 2 years ago
datouo / CTF-Java-Gadget
CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段
☆263Updated 10 months ago
ProbiusOfficial / RCE-labs
【Hello-CTF labs】一个想帮你收集所有RCE技巧的靶场。
☆270Updated 5 months ago
chi111i / fuzzshell
CTF WEB RCE签到题一把梭自动绕过WAF
☆83Updated last week
X1cT34m / NCTF2022
南京邮电大学第十一届网络攻防大赛开源题目
☆50Updated 2 years ago
X3NNY / sstilabs
A lab to help you learning SSTI
☆115Updated 2 years ago
CTF-Archives / CTF_Archive_CN
Archive of attachments from previous CTF competitions
☆114Updated 2 years ago
AabyssZG / FileReverse-Tools
对文件反转、倒置的工具，解决CTF和生活中的文件处理问题
☆130Updated last year
TheKingOfDuck / SinkFinder
闭源系统半自动漏洞挖掘工具，针对 jar/war/zip 进行静态代码分析，输出从source到sink的可达路径。LLM将验证路径可达性，并根据上下文给出该路径可信分数
☆477Updated 4 months ago
Byxs20 / FlowAnalyzer
FlowAnalyzer是一个流量分析器，用于解析和处理tshark导出的JSON数据文件
☆78Updated last year
OracleNep / Nday-Exploit-Plan
历史漏洞的细节以及利用方法汇总收集
☆162Updated 10 months ago
yulate / jdbc-tricks
《深入JDBC安全：特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…
☆502Updated 2 weeks ago
ProbiusOfficial / PHPinclude-labs
【Hello-CTF labs】PHP文件包含类靶场，各类协议的讲解以及基于协议的LFI/RFI
☆95Updated 2 months ago
skyedai910 / CTF-GAME-COLLECTION-2021
CTF比赛题目收集备份存档
☆53Updated 3 years ago
Joe1sn / route_fileter
统计路由器CVE，便于漏洞挖掘
☆73Updated last year
CTF-Archives / Puff-Pastry
☆33Updated last year
waderwu / javaDeserializeLabs
javaDeserializeLabs
☆70Updated 2 years ago
ChaMd5Team / Venom-WP
☆99Updated 4 months ago
y1shiny1shin / USBFlow_Soer
☆57Updated last month
FzWjScJ / knm
鼠标键盘流量包取证
☆90Updated 4 months ago
ProbiusOfficial / ctf2awd
【Hello-CTF labs】试试用CTF的方式来学习AWD？
☆80Updated 3 weeks ago