一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。
☆51Jan 6, 2022Updated 4 years ago
Alternatives and similar repositories for Copy2Java
Users that are interested in Copy2Java are comparing it to the libraries listed below
Sorting:
- 鱼儿在cs上线后自动收杆|Automatically stop fishing in javascript after the fish is hooked☆140Apr 19, 2020Updated 5 years ago
- 通过Web获取访客机器的hostname字段内容。☆65Oct 19, 2021Updated 4 years ago
- 利用xray高级版批量收集子域名☆18Feb 19, 2020Updated 6 years ago
- 卸载冰蝎内存马☆68Apr 13, 2021Updated 4 years ago
- 一个轻量级Web蜜罐 - A Little Web Honeypot.🍯🍯🍯🐝🐝🐝☆200Jan 13, 2022Updated 4 years ago
- 一款高效的参数fuzz工具|A faster param fuzzing test tool☆103Nov 8, 2020Updated 5 years ago
- CVE-2022-24990信息泄露+RCE 一条龙☆39Mar 29, 2022Updated 3 years ago
- 一个可以查看文件传输进度的Web项目☆19Jul 22, 2021Updated 4 years ago
- ☆11Mar 9, 2022Updated 3 years ago
- Burp extension to allow you to highlight Repeater tabs.☆10Jun 14, 2021Updated 4 years ago
- SMTP Netcat , test SMTP protocol☆105Jan 14, 2022Updated 4 years ago
- tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484…☆212May 19, 2020Updated 5 years ago
- 针对于Jenkins控制台用户的暴力破解工具☆33Jan 12, 2021Updated 5 years ago
- Practice Go programming and implement CobaltStrike's Beacon in Go☆14Mar 19, 2020Updated 5 years ago
- JRE8u20_RCE_Gadget☆255Jul 1, 2016Updated 9 years ago
- dnslog 优化☆12Mar 24, 2022Updated 3 years ago
- 一个简单的现代化公司域名使用规律预测及生成工具☆388Feb 24, 2022Updated 4 years ago
- Redis-Attack By Replication (通过主从复制攻击Redis)☆356Nov 25, 2022Updated 3 years ago
- 🐸fingerprint detect framework 批量深度指纹识别框架☆120Nov 13, 2025Updated 3 months ago
- Shiro-550 不依赖CC链利用工具☆451Jun 19, 2024Updated last year
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆458Mar 24, 2022Updated 3 years ago
- evilzip lets you create a zip file(with password) that contains files with directory traversal characters in their embedded path.☆103Sep 16, 2021Updated 4 years ago
- 鹏 RocB - Java代码审计IDEA插件 SAST☆151Sep 16, 2021Updated 4 years ago
- dnsub一款好用且强大的子域名扫描工具☆621Apr 8, 2021Updated 4 years ago
- 利用agent hock指定的class,在jar运行周期内,用于跟踪被执行的方法,辅助做一些事情,比如挖洞啊☆125Jul 17, 2020Updated 5 years ago
- 整理收集Struts2漏洞环境☆270Jan 9, 2018Updated 8 years ago
- ☆294May 7, 2022Updated 3 years ago
- 集成crawlergo、xray、dirsearch、nmap等工具的src漏洞挖掘工具,使用docker封装运行;使用oneforall自动遍历子域名并扫描;☆114Feb 23, 2021Updated 5 years ago
- AntSword(蚁剑)全参数流量XOR和Base64加伪装WebShell☆163Sep 28, 2021Updated 4 years ago
- 一款用于攻击spring boot actuator的集成环境,目前集成三种攻击方式,支持1.x、2.x☆86Jul 26, 2021Updated 4 years ago
- Covers the Arsenal for the BlackHat☆14Jan 16, 2026Updated last month
- 一个直接从eml文件格式的邮件中提取附件和内容的命令行工具(A command line tool that extracts attachments and content directly from emL file format messages)☆26Feb 12, 2022Updated 4 years ago
- ☆274Oct 28, 2021Updated 4 years ago
- 利用链、漏洞检测工具☆373Jul 31, 2024Updated last year
- This is a js front-end encryption blasting account and password tools,Because it calls JS in a clever way without us having to analyze th…☆77Dec 13, 2020Updated 5 years ago
- ☆342Oct 11, 2025Updated 4 months ago
- 记录各语言、框架中危险的sink,个人代码审计、漏洞研究使用。☆117Dec 30, 2021Updated 4 years ago
- 利用天眼查查询企业子公司☆332Jan 9, 2023Updated 3 years ago
- 递归式寻找域名和api。☆723Aug 3, 2023Updated 2 years ago