S9MF / ShiroScan2Links

基于BurpShiroPassiveScan修改增加了Xray回显链生成

☆55

Alternatives and similar repositories for ShiroScan2

Users that are interested in ShiroScan2 are comparing it to the libraries listed below

Sorting:

ssrsec / SpringBootEnvDecrypt
SpringBoot获取被星号脱敏的密码的明文
☆58Updated 3 years ago
Jeromeyoung / log4j2burpscanner
CVE-2021-44228，log4j2 burp插件 Java版本，dnslog选取了非dnslog.cn域名
☆32Updated 3 years ago
hkxueqi / YonyouNc-UNSERIALIZE-scan
Yonyou-UNSERIALIZE,用友NC 反序列化检查工具,批量检测用友NC 反序列化
☆50Updated 2 years ago
Weik1 / scan_screenshot
golang写的批量对目标网站进行截图的小工具，适合目标资产比较多时，快速定位薄弱点。
☆33Updated 2 years ago
Firebasky / ScanShiro
一个批量扫描shiro漏洞的工具,支持AES/CMG
☆79Updated 2 years ago
hanbufei / findUriInjs
一个既可主动，又可被动提取链接的burp插件
☆46Updated last year
charonlight / HostCollisionGUI
直接导入需要碰撞的IP和域名，工具多线程碰撞速度快，访问状态码200成功时则会高亮。
☆54Updated last year
r00tSe7en / URLPath
批量处理url链接，获取多级路径并打印
☆46Updated 2 years ago
woodpecker-appstore / yonyou-nc-decrypter
用友 nc 系列密码解密
☆61Updated 2 years ago
kuang-zy / 2023-Weaver-pocs
2023泛微0A漏洞poc检测工具
☆38Updated 2 years ago
ImuSpirit / ActiveMQ_RCE_Pro_Max
CVE-2023-46604
☆63Updated last year
Zh0um1 / CVE-2022-22947
CVE-2022-22947注入哥斯拉内存马
☆28Updated 2 years ago
NorthShad0w / NetOuter
一键出网探测工具
☆73Updated 2 years ago
goddemondemongod / god_param
god_param
☆41Updated last year
Whoopsunix / nacosScan
nacos api bypass & jwt bypass & get all configs
☆42Updated 2 years ago
ggg4566 / PointSearch
备份文件快速扫描工具
☆25Updated 2 years ago
woodpecker-appstore / plugin-example
woodpecker 漏洞插件开发的简单示范，用于插件的快速上手
☆26Updated 4 years ago
A0WaQ4 / Weaver_ofslogin_vul
组合利用泛微信息泄漏漏洞和任意用户登录漏洞，可获取全部loginId并测试登录
☆59Updated 2 years ago
j5s / FscanX
A Large killer focused on intranet scanning
☆29Updated 4 years ago
r00tSe7en / log4jScan_Modify
对接JNDIMonitor的Burp Suite被动扫描插件
☆26Updated 3 years ago
AduraK2 / Shiro_Weblogic_Tool
针对部署在Weblogic上的Shiro
☆44Updated 2 years ago
wafinfo / MeterSphere-plugin-Backdoor
支持注入内存马和Bypass WAF
☆29Updated last year
KpLi0rn / DeserializeAll
一个简单的批量反编译jar包的小脚本
☆42Updated 3 years ago
unam4 / fineldapc
某软最新公开gadgegt,新加入不出网利用。
☆80Updated last year
luelueking / nacos_hessian_rce_poc
☆24Updated 2 years ago
lz520520 / encrypt-js
☆34Updated 3 years ago
Lotus6 / FileMonitor
Java命令行文件监控小工具(代码审计)
☆103Updated 3 years ago
K4ptor / CVE-2023-22515
Confluence未授权添加管理员用户漏洞利用脚本
☆25Updated last year
qi4L / QVD-2023-13065
Nacos JRaft Hessian 反序列化 RCE EXP
☆65Updated 2 years ago
MzzdToT / Kingdee_erp_Unserialize_rce
金蝶云星空 erp反序列化命令执行漏洞批量扫描POC&EXP，带命令回显
☆33Updated 2 years ago