自己零零散散研究以及收集的一些免杀技巧,以便为后续查阅,拓宽思路
☆15Dec 11, 2019Updated 6 years ago
Alternatives and similar repositories for webshell_bypass_research
Users that are interested in webshell_bypass_research are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- sf is an efficient subdomain brute-forcing tool☆16Oct 13, 2023Updated 2 years ago
- Tomcat基于动态注册Filter的无文件Webshell☆26Jun 20, 2020Updated 5 years ago
- A list of useful payloads and bypass for Web Application Security and Pentest/CTF☆11Nov 16, 2019Updated 6 years ago
- A little tool to play with Windows security☆55Jan 4, 2026Updated 4 months ago
- BOF implementations of CVE-2024-26229 for Cobalt Strike and BruteRatel☆27Jun 13, 2024Updated last year
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- This is a random process injector, and more injection techniques will be added in the future.☆13Jul 17, 2020Updated 5 years ago
- java反序列化漏洞笔记☆24Apr 6, 2019Updated 7 years ago
- sqlmap_auto_proxy☆15Nov 6, 2019Updated 6 years ago
- 利用xray高级版批量收集子域名☆18Feb 19, 2020Updated 6 years ago
- 百度url采集,TeamViewer密码获取,社会工程字典生成去重,lcx 等小工具☆32May 26, 2019Updated 6 years ago
- ☆14Feb 2, 2021Updated 5 years ago
- jolokia Realm JNDI RCE 漏洞检测,并获取明文密码☆18May 29, 2023Updated 2 years ago
- ☆11Jan 16, 2018Updated 8 years ago
- VisualStudio port of https://github.com/guervild/BOFs/tree/dev/SilentLsassDump☆22Jul 6, 2023Updated 2 years ago
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- Load CLR to get RWX 通过加载clr在自身内存中产生rwx空间☆22Sep 28, 2022Updated 3 years ago
- 重构Beacon☆15Aug 25, 2024Updated last year
- Run remote system commands from Oracle connection - oracle exec command perl☆12Jun 6, 2015Updated 10 years ago
- 通达OA OfficeTask udp 2397 端口远程代码执行RCE检测工具☆22Jun 13, 2025Updated 11 months ago
- BcryptMontoya is a powerful plugin for Burp Suite that allows you to effortlessly modify HTTP requests and responses passing through the …☆17Apr 27, 2026Updated 3 weeks ago
- AutoScan 有多个目标时,多线程调用xray+rad进行自动扫描☆87Jul 12, 2022Updated 3 years ago
- Bloodhound 数据解析工具☆23Jun 10, 2025Updated 11 months ago
- Java Web shell project☆13Oct 22, 2021Updated 4 years ago
- fscan 的魔改版☆13Jul 8, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- tsh多终端代理通信☆19Feb 26, 2025Updated last year
- 此项目为su18大佬的仓库镜像,如有问题可发issuse删库☆14May 4, 2023Updated 3 years ago
- more conveniently Visual-Studio-BOF-template☆76Sep 12, 2023Updated 2 years ago
- Alternative Mimikatz LSASS DUMPER☆14Apr 2, 2020Updated 6 years ago
- ☆17Jun 1, 2024Updated last year
- G-DeZender的限制解除版本,可以批量解密php文件。☆12Oct 22, 2024Updated last year
- 提供burpsuite扫描规则的项目,后期会有持续更新。☆11Feb 12, 2022Updated 4 years ago
- 带后门,自测☆25Jun 4, 2025Updated 11 months ago
- Java JDK 8-18 CodeQL databases☆17Jun 2, 2024Updated last year
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- Phishing sender是一款针对钓鱼邮件应急演练所编写的小脚本,实际上是封装了swaks,让人们做演练的时候更加方便快捷。☆16Jun 8, 2022Updated 3 years ago
- CVE-2025-31324, SAP Exploit☆24Apr 28, 2025Updated last year
- “网址”传输助手,记载一下平时用到好的在线网址。☆95Apr 10, 2020Updated 6 years ago
- ☆23Jan 18, 2018Updated 8 years ago
- 近几年的一些文章和工具☆237Aug 10, 2022Updated 3 years ago
- 在网传的哥斯拉&冰蝎源码基础上加了一点注释☆260May 16, 2022Updated 4 years ago
- Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势☆15Sep 22, 2021Updated 4 years ago