TheKingOfDuck / SBCVE
不定期记录一下浪费了时间去关注过的垃圾CVE漏洞。
☆120Updated last year
Alternatives and similar repositories for SBCVE:
Users that are interested in SBCVE are comparing it to the libraries listed below
- 一个可以伪装上线Cobaltstrike的脚本☆132Updated 2 years ago
- JDBC Attack Tricks☆138Updated last year
- 命令执行不回显但DNS协议出网的命令回显场景解决方案☆274Updated 2 years ago
- 懒鬼插件/审计过的后的渗透插件/我凭本事打的SESSION凭什么还要我自己动手后渗透?☆186Updated 2 weeks ago
- Web Cache Poisoning Vulnerability Scanner☆35Updated last month
- Some ReadObject Sink With JDBC☆202Updated 9 months ago
- Java Js Engine Payloads All in one☆270Updated last year
- 使用WindowsAPI写的一些渗透小工具☆98Updated 3 years ago
- 泛微OA_V9全版本的SQL远程代码执行漏洞☆157Updated 2 years ago
- ☆137Updated 2 years ago
- fastjson 80 远程代码执行漏洞复现☆190Updated 2 years ago
- 2023白帽补天大会部分代码☆121Updated last year
- 一款针对于IDE的反制蜜罐 IDE-honeypot☆104Updated 2 years ago
- ☆282Updated 2 years ago
- ☆106Updated 3 years ago
- fastjson不出网利用、c3p0☆249Updated 3 years ago
- Compatible with xray and nuclei poc framework☆190Updated 2 years ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆183Updated 8 months ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆266Updated 2 years ago
- 哥斯拉源码-v3.03-godzilla☆134Updated 2 years ago
- FuckHoneypot is 去他妈的蜜罐☆56Updated 2 years ago
- Java内存马注入工具☆245Updated last year
- 命令执行不回显但DNS协议出网的命令回显场景解决方案(修改为使用ceye接收请求,添加自定义DNS服务器)☆289Updated last year
- 不那么一样的 Java Agent 内存马☆262Updated last year
- 将令你眼前一亮的XSS利用工具!☆108Updated 3 years ago
- CSAgent 与 GoogleAuth 的缝合体,cobalt strike的破解+otp动态口令的agent☆133Updated 2 years ago
- A webshell manager for php🍩☆84Updated last year
- ☆206Updated 5 months ago
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆219Updated last year
- 本项目可以把一个或多个Jar包构建成数据库,用户连接数据库后通过SQL语句任意搜索需要的内容,例如类和方法信息,方法调用关系等☆76Updated last year