Macr0phag3 / webshell-bypassed-humanView external linksLinks
过人 webshell 的生成工具
☆262Apr 23, 2025Updated 9 months ago
Alternatives and similar repositories for webshell-bypassed-human
Users that are interested in webshell-bypassed-human are comparing it to the libraries listed below
Sorting:
- fastjson不出网利用、c3p0☆255Jul 30, 2021Updated 4 years ago
- golang打包二进制进行免杀☆233Apr 7, 2021Updated 4 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- JNDI在java高版本的利用工具,FUZZ利用链☆597Oct 8, 2022Updated 3 years ago
- 通达OA综合利用工具☆516Mar 17, 2021Updated 4 years ago
- 各种数据库的利用姿势☆1,034Jan 3, 2025Updated last year
- Windows活动目录中的LDAP信息收集工具☆234Oct 9, 2021Updated 4 years ago
- 六大云存储,泄露利用检测工具☆1,238Mar 28, 2025Updated 10 months ago
- 冰蝎Java WebShell自动化免杀生成☆784Mar 15, 2022Updated 3 years ago
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆775Feb 13, 2025Updated last year
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,011May 21, 2024Updated last year
- golang shellcode loader 远程图片隐写加载执行 无文件落地☆191Feb 12, 2022Updated 4 years ago
- 记录自己编写、修改的部分工具☆1,462Oct 19, 2025Updated 3 months ago
- CobaltStrike后渗透测试插件☆1,554Oct 28, 2021Updated 4 years ago
- Shiro-550 不依赖CC链利用工具☆451Jun 19, 2024Updated last year
- 一款可以在不出网的环境下进行反向代理及cs上线的工具☆491Apr 26, 2023Updated 2 years ago
- fastjson漏洞burp插件,检测fastjson<1.2.68基于dnslog,fastjson<=1.2.24和1.2.33<=fatjson<=1.2.47的不出网检测和TomcatEcho,SpringEcho回显方案。☆124May 14, 2021Updated 4 years ago
- 提取DC日志,快速获取域用户对应IP地址☆308Mar 21, 2022Updated 3 years ago
- AntSword(蚁剑)全参数流量XOR和Base64加伪装WebShell☆163Sep 28, 2021Updated 4 years ago
- 免杀技术大杂烩---乱拳也打不死老师傅☆1,095Mar 29, 2021Updated 4 years ago
- SharpSQLTools 和@Rcoil一起写的小工具,可上传下载文件,xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。☆965Aug 5, 2021Updated 4 years ago
- 检测绝大部分所谓的内存免杀马☆735Sep 15, 2022Updated 3 years ago
- Bypass firewall for traffic forwarding using webshell☆1,432Sep 29, 2021Updated 4 years ago
- 内存加载shellcode绕过waf☆208Jul 25, 2022Updated 3 years ago
- Flask 内存马☆312Mar 26, 2021Updated 4 years ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆269Mar 4, 2022Updated 3 years ago
- 红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。☆367Jun 19, 2024Updated last year
- openam-CVE-2021-35464 tomcat 执行命令回显☆87Dec 15, 2022Updated 3 years ago
- 域控安全one for all☆736Sep 9, 2024Updated last year
- 中国蚁剑后渗透框架☆940Jan 18, 2024Updated 2 years ago
- Struts2漏洞扫描利用工具 - Golang版. Struts2 Scanner Written in Golang☆573Jan 10, 2022Updated 4 years ago
- 一款适用于红蓝对抗�中的仿真钓鱼系统☆1,535May 30, 2023Updated 2 years ago
- 这是一个抓取浏览器密码的工具,后续会添加更多功能☆1,454May 21, 2022Updated 3 years ago
- 域渗透一条龙☆738Feb 16, 2022Updated 3 years ago
- 适用于Cobalt Strike的插件☆563May 30, 2021Updated 4 years ago
- 对密码已保存在 Windwos 系统上的部分程序进行解析,包括:Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品(Xshell,Xftp)。源码:https://github.com/RowTeam/SharpDecrypt…☆1,261Mar 16, 2022Updated 3 years ago
- 一个全新的敏感文件发现工具☆270Jan 5, 2021Updated 5 years ago
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到�命令执行、回显命令执行、内存马注入☆770Jan 26, 2022Updated 4 years ago
- 一键提取安卓应用中可能存在的敏感信息。☆1,011Oct 21, 2021Updated 4 years ago