TheKingOfDuck / SBCVELinks
不定期记录一下浪费了时间去关注过的垃圾CVE漏洞。
☆119Updated last year
Alternatives and similar repositories for SBCVE
Users that are interested in SBCVE are comparing it to the libraries listed below
Sorting:
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆193Updated last year
- 一个可以伪装上线Cobaltstrike的脚本☆134Updated 2 years ago
- 命令执行不回显但DNS协议出网的命令回显场景解决方案☆274Updated 2 years ago
- 使用WindowsAPI写的一些渗透小工具☆99Updated 4 years ago
- 2023白帽补天大会部分代码☆124Updated last year
- 一款针对于IDE的反制蜜罐 IDE-honeypot☆107Updated 2 years ago
- Compatible with xray and nuclei poc framework☆199Updated 2 years ago
- ☆107Updated 3 years ago
- 禅道相关poc☆167Updated last year
- ☆222Updated 3 weeks ago
- 各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新☆37Updated 3 years ago
- fastjson 80 远程代码执行漏洞复现☆195Updated 2 years ago
- 泛微OA_V9全版本的SQL远程代码执行漏洞☆158Updated 3 years ago
- 致力于收集Goby PoC,请勿用于非法操作,后果自负。☆249Updated 2 years ago
- 命令执行不回显但DNS协议出网的命令回显场景解决方案(修改为使用ceye接收请求,添加自定义DNS服务器)☆291Updated last year
- 免杀死亡笔记☆117Updated 2 years ago
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆225Updated last year
- 将令你眼前一亮的XSS利用工具!☆114Updated 3 years ago
- fastjson不出网利用、c3p0☆252Updated 3 years ago
- 哥斯拉源码-v3.03-godzilla☆140Updated 3 years ago
- 基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)☆296Updated 6 months ago
- JDBC Attack Tricks☆142Updated last year
- 懒鬼插件/审计过的后的渗透插件/我凭本事打的SESSION凭什么还要我自己动手后渗透?☆195Updated 4 months ago
- CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!☆95Updated 7 months ago
- Java Js Engine Payloads All in one☆273Updated last year
- CSAgent 与 GoogleAuth 的缝合体,cobalt strike的破解+otp动态口令的agent☆133Updated 2 years ago
- ☆142Updated 2 years ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆266Updated 3 years ago
- A webshell manager for php🍩☆84Updated 2 years ago
- Godzilla java Decode,哥斯拉jsp(内存马)流量解密☆111Updated 3 years ago