TheKingOfDuck / SBCVEView external linksLinks
不定期记录一下浪费了时间去关注过的垃圾CVE漏洞。
☆119Jul 27, 2023Updated 2 years ago
Alternatives and similar repositories for SBCVE
Users that are interested in SBCVE are comparing it to the libraries listed below
Sorting:
- Java web路由内存分析工具☆437May 22, 2025Updated 8 months ago
- 建议使用新版:https://github.com/jar-analyzer/jar-analyzer☆896Nov 30, 2023Updated 2 years ago
- 项目监控工具 以及 Codeql 自动运行☆314Apr 13, 2023Updated 2 years ago
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆753Apr 14, 2021Updated 4 years ago
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆545Mar 6, 2025Updated 11 months ago
- ☆146Jan 16, 2023Updated 3 years ago
- Exchange 服务器安全性的辅助测试工具☆332Jul 21, 2023Updated 2 years ago
- JDBC Attack Tricks☆154Sep 3, 2023Updated 2 years ago
- Java RCE 回显测试代码☆1,015Oct 15, 2020Updated 5 years ago
- 帆软/致远密码解密工具☆359Jul 29, 2021Updated 4 years ago
- Cobalt Strike 二开项目☆185Feb 11, 2023Updated 3 years ago
- 一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service☆31Sep 24, 2024Updated last year
- 一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webs…☆1,464Apr 25, 2024Updated last year
- JNDI在java高版本的利用工具,FUZZ利用链☆597Oct 8, 2022Updated 3 years ago
- A list for Spring Security☆128Jan 16, 2024Updated 2 years ago
- 帆软报表漏洞检测工具☆113Jun 10, 2025Updated 8 months ago
- 一款使用Yaml定义搜索规则来搜索Class的工具☆108Aug 2, 2023Updated 2 years ago
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆132Jul 12, 2023Updated 2 years ago
- 伪造Myslq服务端,并利用Mysql逻辑漏洞来获取客户端的任意文件反击攻击者☆363Apr 24, 2022Updated 3 years ago
- 各种数据库的利用姿势☆1,034Jan 3, 2025Updated last year
- A Go library for generating Java deserialization payloads.☆155Sep 9, 2024Updated last year
- 注入JVM进程 动态获取目标进程连接的数据库☆342Mar 6, 2022Updated 3 years ago
- detect gitlab detail version��☆55Aug 26, 2024Updated last year
- Go相关的安全研究☆234Nov 6, 2023Updated 2 years ago
- 应对渗透中极限环境下命令回显 & 文件落地☆132Jul 1, 2022Updated 3 years ago
- ysoserial修改版,着重修改ysoserial.payloads.util.Gadgets.createTemplatesImpl使其可以通过引入自定义class的形式来执行命令、内存马、反序列化回显。☆751Jan 11, 2024Updated 2 years ago
- 用友NC反序列化漏洞payload生成☆73Aug 30, 2022Updated 3 years ago
- Codeql学习笔记☆900Apr 25, 2022Updated 3 years ago
- 利用NTLM Hash读取Exchange邮件☆441Jan 7, 2025Updated last year
- Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency☆1,049Oct 7, 2022Updated 3 years ago
- 一款API水平越权漏洞检测工具☆769Jun 27, 2023Updated 2 years ago
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆176Jan 4, 2022Updated 4 years ago
- 个人使用CodeQL编写的一些规则☆180Mar 30, 2022Updated 3 years ago
- 文章 Attack Code 的详细全文。安全和开发总是具有伴生属性,尤其是云的安全方向,本篇文章是希望能帮助到读者的云安全入门材料。Full text of the article Attack Code. Security and development always …☆557Feb 29, 2024Updated last year
- 无需文件落地Agent内存马生成器☆248May 30, 2024Updated last year
- java内存对象搜索辅助工具☆822Sep 23, 2022Updated 3 years ago
- EXP for CVE-2023-28434 MinIO unauthorized to RCE☆319Apr 4, 2023Updated 2 years ago
- WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell☆535Aug 25, 2020Updated 5 years ago
- A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.☆754Dec 2, 2022Updated 3 years ago