一个以fuzz为中心思想的被动扫描工具
☆160Dec 26, 2023Updated 2 years ago
Alternatives and similar repositories for RCEFuzzer
Users that are interested in RCEFuzzer are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆171Aug 9, 2023Updated 2 years ago
- burp手工检测fastjson辅助☆87Mar 4, 2024Updated 2 years ago
- 基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)☆321Dec 22, 2024Updated last year
- Java web路由内存分析工具☆438May 22, 2025Updated 10 months ago
- 容器安全漏洞的分析与复现☆160Mar 26, 2024Updated last year
- 让"WAF绕过"变得简单☆432Jan 26, 2025Updated last year
- 一款支持自定义的 Java 回显载荷生成工具|A customizable Java echo payload generation tool.☆462Jan 12, 2025Updated last year
- Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite o…☆615Jul 5, 2024Updated last year
- JNDI在java高版本的利用工具,FUZZ利用链☆597Oct 8, 2022Updated 3 years ago
- nginx WebShell/内存马,更优雅的nignx backdoor☆324Jan 4, 2024Updated 2 years ago
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆138Dec 26, 2023Updated 2 years ago
- Java应用的一些配置文件字典,来源于公开的字典与平时收集☆320Feb 1, 2024Updated 2 years ago
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆544Mar 6, 2025Updated last year
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- 闭源系统半自动漏洞挖掘工具,针对 jar/war/zip 进行静态代码分析,输出从source到sink的可达路径。LLM将验证路径可达性,并根据上下文给出该路径可信分数☆506Jan 12, 2026Updated 2 months ago
- ebpf WebShell/内核马,一种新型内核马/WebShell技术☆353Jan 8, 2024Updated 2 years ago
- 分割小工具,可分割木马,一键生成写入、合并、追加命令☆165Jan 5, 2024Updated 2 years ago
- ☆343Mar 6, 2026Updated 2 weeks ago
- 爬网站JS文件,自动fuzz api接口,指定api接口(针对前后端分离项目,可指定后端接口地址),回显api响应☆755Jul 20, 2023Updated 2 years ago
- 本工具为jeecg框架漏洞利用工具非jeecg-boot!☆183Aug 13, 2024Updated last year
- Confluence CVE 2021,2022,2023 利用工具,支持命令执行,哥斯拉,冰蝎 内存马注入☆555Feb 1, 2024Updated 2 years ago
- 互联网厂商API利用工具。☆567Sep 13, 2024Updated last year
- 80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…☆871Jun 24, 2024Updated last year
- 项目监控工具 以及 Codeql 自动运行☆313Apr 13, 2023Updated 2 years ago
- 一款代理扫描器☆566May 5, 2023Updated 2 years ago
- 对Auth/Waf 自动化bypass的burpsuite插件☆1,110Feb 28, 2026Updated 3 weeks ago
- Burp插件,自动化挖掘SSRF,Redirect,Sqli漏洞,自定义匹配参数☆464Sep 10, 2023Updated 2 years ago
- 无需文件落地Agent内存马生成器☆249May 30, 2024Updated last year
- 帆软/致远密码解密工具☆359Jul 29, 2021Updated 4 years ago
- ☆250Feb 25, 2024Updated 2 years ago
- 收集内存马打入方式☆507May 20, 2022Updated 3 years ago
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆53Sep 10, 2023Updated 2 years ago
- 毒液爬行器:专为捡洞而生的爬虫神器☆211Mar 3, 2025Updated last year
- javaeasyscanner - 富婆系列,代码审计辅助工具,致力于解放大脑,方便双手☆278Jun 18, 2024Updated last year
- Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件☆1,313Jun 29, 2024Updated last year
- 一款用Go语言编写的数据库自动化提权工具,支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接☆861Aug 30, 2023Updated 2 years ago
- LC(List Cloud)是一个多云攻击面资产梳理工具☆638Oct 6, 2024Updated last year
- Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency☆1,050Oct 7, 2022Updated 3 years ago
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆779Feb 13, 2025Updated last year