Str1am/OAScan external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Str1am/OAScan

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Str1am/OAScan)

Close

Str1am / OAScanView on GitHubMore

• External links
• Readme badge

一款用来扫描oa的漏洞的工具

☆54Aug 24, 2023Updated 2 years ago

Alternatives and similar repositories for OAScan

Users that are interested in OAScan are comparing it to the libraries listed below

• Str1am / Auto_JsFinder

  View on GitHub
  ☆21Jun 29, 2022Updated 3 years ago
• lu2ker / ApiHelper

  View on GitHub
  一款BurpSuite插件，辅助手工测试
  ☆72Aug 4, 2023Updated 2 years ago
• MzzdToT / Yongyou_NC_Cloud_upload_rce

  View on GitHub
  用友NC Cloud前台远程命令执行漏洞批量扫描poc、exp，带命令执行回显
  ☆20Jul 21, 2023Updated 2 years ago
• XRSec / Emergency-Response

  View on GitHub
  红队应急响应工具（支持麒麟系统）
  ☆54Aug 13, 2025Updated 7 months ago
• clearcdq / OA-vulnerability-tool

  View on GitHub
  包括（致远，泛微，通达，用友，万户，蓝凌），常见的oa漏洞均可检测
  ☆59Apr 27, 2023Updated 2 years ago
• S9MF / ShiroScan2

  View on GitHub
  基于BurpShiroPassiveScan修改增加了Xray回显链生成
  ☆56Sep 6, 2022Updated 3 years ago
• TD0U / WeaverScan

  View on GitHub
  泛微oa漏洞利用工具
  ☆255Jan 4, 2023Updated 3 years ago
• rambleZzz / jmxbfGUI

  View on GitHub
  jmx未授权访问 弱口令批量检测 GUI工具
  ☆31Apr 28, 2023Updated 2 years ago
• Wrin9 / weaverOA_v9_ALL_upload_RCE

  View on GitHub
  泛微OA_V9全版本前台任意文件上传漏洞
  ☆29Apr 26, 2022Updated 3 years ago
• SkyBlueEternal / jdk-change

  View on GitHub
  支持windows\linux\macOS | jdk一键切换版本\一键切换jdk版本\jdk版本更换
  ☆28Jan 29, 2022Updated 4 years ago
• novysodope / fupo_for_yonyou

  View on GitHub
  用友漏洞检测，持续更新漏洞检测模块
  ☆479Jul 21, 2025Updated 8 months ago
• Peony2022 / shiro_killer

  View on GitHub
  批量ShiroKey检测爆破工具
  ☆308Jan 4, 2023Updated 3 years ago
• winezer0 / DynaScan

  View on GitHub
  完善的动态备份文件扫描工具 实现动态字典渲染、动态结果判断、自动字典记录、的敏感文件扫描器
  ☆27May 21, 2025Updated 10 months ago
• Fu5r0dah / TongdaScan_go

  View on GitHub
  通达OA漏洞检测工具-TongdaScan_go
  ☆222May 27, 2023Updated 2 years ago
• york-cmd / vscan

  View on GitHub
  开源、轻量、快速、跨平台 的网站漏洞扫描工具，帮助您快速检测网站安全隐患。功能 端口扫描(port scan) 指纹识别(fingerprint) 漏洞检测(nday check) 智能爆破 (admin brute) 敏感文件扫描(file fuzz)
  ☆11Aug 16, 2023Updated 2 years ago
• burpheart / imagepuller

  View on GitHub
  可以从公开仓库直接拖取镜像的一个小工具 方便直接解包审计代码
  ☆13Feb 11, 2023Updated 3 years ago
• dahezhiquan / CharcoalFire

  View on GitHub
  炭火，渗透测试全流程工具
  ☆24Sep 1, 2025Updated 6 months ago
• zangcc / Aazhen-RexHa

  View on GitHub
  自研JavaFX图形化漏洞扫描工具，支持扫描的漏洞分别是： ThinkPHP-2.x-RCE， ThinkPHP-5.0.23-RCE， ThinkPHP5.0.x-5.0.23通杀RCE， ThinkPHP5-SQL注入&敏感信息泄露， ThinkPHP 3.x 日志泄露…
  ☆472May 9, 2025Updated 10 months ago
• fasnow / nasin

  View on GitHub
  用于下载nacos的所有配置管理列表到同一个txt
  ☆31Apr 8, 2025Updated 11 months ago
• xiaokp7 / TongdaOATool

  View on GitHub
  通达OA漏洞检测工具
  ☆343Jul 11, 2024Updated last year
• mscandev / mscan

  View on GitHub
  方便快捷是这款扫描器的优点，能随意修改增加模块。目前的版本功能如下：支持子域名收集、POC批量验证、目录扫描、检测CDN、域名转IP、主机扫描、过滤重复、检测HTTP状态、压缩程序、XRAY扫描。
  ☆67Aug 12, 2022Updated 3 years ago
• Schira4396 / HrmsTamper

  View on GitHub
  适用于某EHR&HRM的加解密工具，可直接用于sqlmap
  ☆25Jan 14, 2024Updated 2 years ago
• hkylin / CrackCaptcahLogin

  View on GitHub
  CrackCaptcahLogin
  ☆16Nov 22, 2017Updated 8 years ago
• qi4L / yongyouScan-go

  View on GitHub
  用友漏洞批量检测
  ☆94Mar 26, 2024Updated last year
• Esonhugh / yapi-rce-webshell

  View on GitHub
  Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小
  ☆66Jul 4, 2024Updated last year
• adeljck / scf_scanner_server

  View on GitHub
  云函数扫描器
  ☆60Dec 6, 2023Updated 2 years ago
• ZhuriLab / Starmap

  View on GitHub
  一个轮子融合的子域名收集小工具
  ☆161Sep 16, 2022Updated 3 years ago
• handbye / base64encode

  View on GitHub
  burpsuite POST数据包base64编码插件
  ☆17Mar 14, 2024Updated 2 years ago
• lele8 / Sqlinfo

  View on GitHub
  Sqlinfo是一款快速探测数据库信息工具
  ☆101Oct 30, 2022Updated 3 years ago
• yuyan-sec / Doraemon

  View on GitHub
  渗透辅助 BurpSuite 小插件
  ☆232Nov 26, 2025Updated 3 months ago
• li8u99 / Seeyon_exp_plus

  View on GitHub
  seeyon致远OA全漏洞检测与利用
  ☆57Apr 11, 2022Updated 3 years ago
• Ciyfly / woodpecker

  View on GitHub
  兼容xray nuclei yaml格式 以及go代码格式的poc验证扫描器
  ☆190Aug 23, 2023Updated 2 years ago
• MzzdToT / HAC_Bored_Writing

  View on GitHub
  各种漏洞批量扫描poc、exp，涵盖未授权、RCE、文件上传、sql注入、信息泄露等
  ☆290Dec 4, 2023Updated 2 years ago
• zhaoyumi / yoyoExploit

  View on GitHub
  一个用友漏洞检测工具
  ☆29May 15, 2024Updated last year
• VitoYane / Webpass

  View on GitHub
  Web弱密码爆破工具, 驱动浏览器进行弱密码爆破, 支持所有Web系统. 协程练手项目
  ☆40Nov 14, 2022Updated 3 years ago
• A0WaQ4 / Weaver_ofslogin_vul

  View on GitHub
  组合利用泛微信息泄漏漏洞和任意用户登录漏洞，可获取全部loginId并测试登录
  ☆59Aug 3, 2023Updated 2 years ago
• m0sway / Yosakura

  View on GitHub
  Red Team Tools 快速扫描端口，识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息。
  ☆61Jul 5, 2022Updated 3 years ago
• ExpLangcn / Payload-List

  View on GitHub
  整理SQLI、XSS、RCE、Path的payload文件备份留存
  ☆15Nov 9, 2022Updated 3 years ago
• lcvvvv / appfinger

  View on GitHub
  appfinger(和风)是一款Http指纹管理工具~~~
  ☆101Nov 7, 2022Updated 3 years ago