一些弱口令、fuzz字典
☆251Oct 24, 2019Updated 6 years ago
Alternatives and similar repositories for Dict
Users that are interested in Dict are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 参数 | 字典 collections☆676Apr 20, 2021Updated 4 years ago
- 弱口令,敏感目录,敏感文件等渗透测试常用攻击字典☆1,208Dec 16, 2021Updated 4 years ago
- Tomcat常见漏洞GUI利用工具。CVE-2017-12615 PUT文件上传漏洞、tomcat-pass-getshell 弱认证部署war包、弱口令爆破、CVE-2020-1938 Tomcat AJP文件读取/包含☆250Nov 15, 2022Updated 3 years ago
- 渗透辅助 BurpSuite 小插件☆232Nov 26, 2025Updated 3 months ago
- 帆软报表漏洞检测工具☆115Jun 10, 2025Updated 9 months ago
- 这是fscan的内网修改版。☆158Jun 24, 2022Updated 3 years ago
- 一款跨平台小巧的端口爆破工具,支持爆破FTP/SSH/SMB/MSSQL/MYSQL/POSTGRESQL/MONGOD / A cross-platform compact port blasting tool that supports blasting FTP/SSH…☆1,106Oct 9, 2021Updated 4 years ago
- 从总多目录字典中合并提取的高效目录爆破字典☆200Aug 15, 2019Updated 6 years ago
- 泛微OA_V9全版本前台任意文件上传漏洞☆29Apr 26, 2022Updated 3 years ago
- Shiro RememberMe 1.2.4 反序列化漏洞图形化检测工具(Shiro-550)☆878Dec 16, 2022Updated 3 years ago
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,014May 21, 2024Updated last year
- goon,集合了fscan和kscan等优秀工具功能的扫描爆破工具。功能包含:ip探活、port扫描、web指纹扫描、title扫描、压缩文件扫描、fofa获取、ms17010、mssql、mysql、postgres、redis、ssh、smb、rdp、telnet、to…☆811Aug 5, 2024Updated last year
- ☆342Jun 7, 2022Updated 3 years ago
- 上传漏洞fuzz字典生成脚本☆1,270Apr 1, 2021Updated 4 years ago
- 渗透测试路径字典,爆破字典。内容来自互联网和实战积累。☆408Apr 20, 2025Updated 11 months ago
- 致远OA综合利用工具☆417Jun 3, 2021Updated 4 years ago
- You Know, For WEB Fuzzing !☆8,273Nov 13, 2023Updated 2 years ago
- 个人翻译/总结渗透测试思维导图☆29Jun 15, 2022Updated 3 years ago
- Shiro反序列化利用工具,支持新版本(AES-GCM)Shiro的key爆破,配合ysoserial,生成回显Payload☆896May 28, 2021Updated 4 years ago
- 2011-2019年Top100弱口令密码字典 Top1000密码字典 服务器SSH/VPS密码字典 后台管理密码字典 数据库密码字典 子域名字典☆1,033Nov 2, 2020Updated 5 years ago
- Struts2全漏洞扫描利用工具☆2,210Jul 12, 2021Updated 4 years ago
- Fiora:漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行,也可作为burp插件使用。☆1,276Jul 2, 2025Updated 8 months ago
- 一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webs…☆1,470Apr 25, 2024Updated last year
- 自动化爬取并自动测试所有swagger接口☆1,170Dec 1, 2025Updated 3 months ago
- 对目标域名进行快速的存活扫描、简单的指纹识别、目录扫描☆913Dec 8, 2022Updated 3 years ago
- Shiro550/Shiro721 一键化利用工具,支持多种回显方式☆1,953Jun 4, 2021Updated 4 years ago
- OA综合利用工具,集合将近20款OA漏洞批量扫描☆1,339Oct 28, 2023Updated 2 years ago
- 用于记录内网渗透(域渗透)学习 :-)☆1,239Nov 9, 2020Updated 5 years ago
- 快速遍历目标目录中所有指定后缀文件中包含的敏感信息☆138Aug 7, 2022Updated 3 years ago
- JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.☆2,920Nov 24, 2021Updated 4 years ago
- 绕过专业工具检测的Webshell研究文章和免杀的Webshell☆1,733Nov 15, 2020Updated 5 years ago
- Web Fuzzing Box - Web 模糊测试字典与一些Payloads☆2,454May 28, 2025Updated 9 months ago
- 极致攻防实验室 nuclei 检测 POC☆640Aug 1, 2023Updated 2 years ago
- SharpSQLTools 和@Rcoil一起写的小工具,可上传下载文件,xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。☆964Aug 5, 2021Updated 4 years ago
- 增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持☆967Jun 16, 2024Updated last year
- EHole(棱洞)魔改。可对路径进行指纹识别;支持识别出来的重点资产进行漏洞检测(支持从hunter和fofa中提取资产)支持对ftp服务识别及爆破☆951Mar 6, 2024Updated 2 years ago
- 批量扫描破解海康威视、大华等摄像头的常见漏洞。☆232Aug 3, 2022Updated 3 years ago
- 一款红队专用免杀木马生成器,基于shellcode生成绕过所有杀软的木马。☆926Sep 8, 2021Updated 4 years ago
- 自动化Host碰撞工具,帮助红队快速扩展网络边界,获取更多目标点☆597Oct 7, 2023Updated 2 years ago