一个以fuzz为中心思想的被动扫描工具
☆161Dec 26, 2023Updated 2 years ago
Alternatives and similar repositories for RCEFuzzer
Users that are interested in RCEFuzzer are comparing it to the libraries listed below
Sorting:
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆172Aug 9, 2023Updated 2 years ago
- 基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)☆321Dec 22, 2024Updated last year
- 让"WAF绕过"变得简单☆433Jan 26, 2025Updated last year
- 容器安全漏洞的分析与复现☆160Mar 26, 2024Updated last year
- JNDI在java高版本的利用工具,FUZZ利用链☆597Oct 8, 2022Updated 3 years ago
- 一款支持自定义的 Java 回显载荷生成工具|A customizable Java echo payload generation tool.☆461Jan 12, 2025Updated last year
- Java web路由内存分析工具☆438May 22, 2025Updated 9 months ago
- Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite o…☆614Jul 5, 2024Updated last year
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆139Dec 26, 2023Updated 2 years ago
- Java应用的一些配置文件字典,来源于公开的字典与平时收集☆321Feb 1, 2024Updated 2 years ago
- nginx WebShell/内存马,更优雅的nignx backdoor☆325Jan 4, 2024Updated 2 years ago
- burp手工检测fastjson辅助☆88Mar 4, 2024Updated 2 years ago
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆545Mar 6, 2025Updated 11 months ago
- Burp插件,自动化挖掘SSRF,Redirect,Sqli漏洞,自定义匹配参数☆451Sep 10, 2023Updated 2 years ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆502Jan 12, 2026Updated last month
- 本工具为jeecg框架漏洞利用工具非jeecg-boot!☆184Aug 13, 2024Updated last year
- javaeasyscanner - 富婆系列,代码审计辅助工具,致力于解放大脑,方便双手☆276Jun 18, 2024Updated last year
- ☆342Oct 11, 2025Updated 4 months ago
- 80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…☆866Jun 24, 2024Updated last year
- ebpf WebShell/内核马,一种新型内核马/WebShell技术☆352Jan 8, 2024Updated 2 years ago
- 爬网站JS文件,自动fuzz api接口,指定api接口(针对前后端分离项目,可指定后端接口地址),回显api响应☆756Jul 20, 2023Updated 2 years ago
- 一款轻量级匹配Sink点的代码审计扫描器,为了帮助红队过程中快速代码审计的小工具☆409Oct 6, 2024Updated last year
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆53Sep 10, 2023Updated 2 years ago
- 分割小工具,可分割木马,一键生成写入、合并、追加命令☆166Jan 5, 2024Updated 2 years ago
- 一款代理扫描器☆566May 5, 2023Updated 2 years ago
- 项目监控工具 以及 Codeql 自动运行☆313Apr 13, 2023Updated 2 years ago
- Confluence CVE 2021,2022,2023 利用工具,支持命令执行,哥斯拉,冰蝎 内存马注入☆554Feb 1, 2024Updated 2 years ago
- 互联网厂商API利用工具。☆555Sep 13, 2024Updated last year
- 帆软/致远密码解密工具☆360Jul 29, 2021Updated 4 years ago
- java-web 自动化鉴权绕��过☆376Apr 3, 2025Updated 11 months ago
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆779Feb 13, 2025Updated last year
- Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件☆1,314Jun 29, 2024Updated last year
- EZ是一款集信息收集、端口扫描、服务暴破、URL爬虫�、指纹识别、被动扫描为一体的跨平台漏洞扫描器。☆1,027Jan 17, 2025Updated last year
- 毒液爬行器:专为捡洞而生的爬虫神器☆211Mar 3, 2025Updated last year
- 无需文件落地Agent内存马生成器☆249May 30, 2024Updated last year
- Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency☆1,050Oct 7, 2022Updated 3 years ago
- ☆250Feb 25, 2024Updated 2 years ago
- 收集内存马打入方式☆506May 20, 2022Updated 3 years ago