TimelineSec/2020-Vulnerabilities external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

TimelineSec/2020-Vulnerabilities

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/TimelineSec/2020-Vulnerabilities)

Close

TimelineSec / 2020-VulnerabilitiesView on GitHubMore

• External links
• Readme badge

2020年漏洞复现大全

☆169Feb 22, 2021Updated 5 years ago

Alternatives and similar repositories for 2020-Vulnerabilities

Users that are interested in 2020-Vulnerabilities are comparing it to the libraries listed below

• TimelineSec / ATTCK-Tools-library

  View on GitHub
  TimelineSec ATT&CK 工具库
  ☆262Apr 14, 2023Updated 2 years ago
• uknowsec / TailorScan

  View on GitHub
  自用缝合怪内网扫描器，支持端口扫描，识别服务，获取title，扫描多网卡，ms17010扫描，icmp存活探测。
  ☆283Nov 12, 2020Updated 5 years ago
• winezer0 / whatweb-plus

  View on GitHub
  whatweb 增强版 8000+插件（提供windows可执行文件）
  ☆27Jul 10, 2025Updated 8 months ago
• aetkrad / goby_poc

  View on GitHub
  goby poc or exp,分享goby最新网络安全漏洞检测或利用代码
  ☆633Jan 11, 2022Updated 4 years ago
• XTeam-Wing / RedTeaming2020

  View on GitHub
  RedTeaming知识星球2020年安全知识汇总
  ☆473May 5, 2021Updated 4 years ago
• A-D-Team / grafanaExp

  View on GitHub
  A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …
  ☆268Oct 17, 2025Updated 4 months ago
• FunnyWolf / pystinger

  View on GitHub
  Bypass firewall for traffic forwarding using webshell
  ☆1,430Sep 29, 2021Updated 4 years ago
• zilong3033 / fastjsonScan

  View on GitHub
  fastjson漏洞burp插件，检测fastjson<1.2.68基于dnslog，fastjson<=1.2.24和1.2.33<=fatjson<=1.2.47的不出网检测和TomcatEcho,SpringEcho回显方案。
  ☆124May 14, 2021Updated 4 years ago
• bit4woo / domain_hunter_pro

  View on GitHub
  domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
  ☆2,118Mar 3, 2026Updated last week
• FunnyWolf / TFirewall

  View on GitHub
  防火墙出网探测工具,内网穿透型socks5代理
  ☆269Nov 12, 2021Updated 4 years ago
• Rvn0xsy / zipcreater

  View on GitHub
  ZipCreater主要应用于跨目录的文件上传漏洞的利用，它能够快速进行压缩包生成。
  ☆187Apr 6, 2022Updated 3 years ago
• r0eXpeR / redteam_vul

  View on GitHub
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,521Jul 17, 2021Updated 4 years ago
• zhzyker / my-speech

  View on GitHub
  我的演讲 ppt or pdf 归档库
  ☆10Mar 28, 2021Updated 4 years ago
• Ascotbe / Medusa

  View on GitHub
  Medusa是一个红队武器库平台，目前包括XSS平台、协同平台、CVE监控、免杀生成、DNSLOG、钓鱼邮件、文件获取等功能，持续开发中
  ☆2,219Mar 3, 2024Updated 2 years ago
• jayus0821 / swagger-hack

  View on GitHub
  自动化爬取并自动测试所有swagger接口
  ☆1,164Dec 1, 2025Updated 3 months ago
• grayddq / EBurst

  View on GitHub
  这个脚本主要提供对Exchange邮件服务器的账户爆破功能，集成了现有主流接口的爆破方式。
  ☆339May 22, 2023Updated 2 years ago
• YinWC / 2021hvv_vul

  View on GitHub
  2021hvv漏洞汇总
  ☆678Apr 24, 2021Updated 4 years ago
• zhzyker / exphub

  View on GitHub
  Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、…
  ☆4,272Apr 4, 2021Updated 4 years ago
• Lucifer1993 / SatanSword

  View on GitHub
  红队综合渗透框架
  ☆1,178May 11, 2023Updated 2 years ago
• lengjibo / NetUser

  View on GitHub
  使用windows api添加用户，可用于net无法使用时.分为nim版，c++版本，RDI版，BOF版。
  ☆421Sep 29, 2021Updated 4 years ago
• 1n7erface / PocList

  View on GitHub
  Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-…
  ☆1,079May 11, 2023Updated 2 years ago
• HatBoy / Struts2-Scan

  View on GitHub
  Struts2全漏洞扫描利用工具
  ☆2,211Jul 12, 2021Updated 4 years ago
• ybdt / exp-hub

  View on GitHub
  Poc and Exp
  ☆1,230Dec 8, 2025Updated 3 months ago
• kelvinBen / AppInfoScanner

  View on GitHub
  一款适用于以HW行动/红队/渗透测试团队为场景的移动端(Android、iOS、WEB、H5、静态网站)信息收集扫描工具，可以帮助渗透测试工程师、攻击队成员、红队成员快速收集到移动端或者静态WEB站点中关键的资产信息并提供基本的信息输出,如：Title、Domain、CDN…
  ☆3,512Dec 18, 2022Updated 3 years ago
• DeEpinGh0st / Erebus

  View on GitHub
  CobaltStrike后渗透测试插件
  ☆1,555Oct 28, 2021Updated 4 years ago
• feihong-cs / ShiroExploit-Deprecated

  View on GitHub
  Shiro550/Shiro721 一键化利用工具，支持多种回显方式
  ☆1,952Jun 4, 2021Updated 4 years ago
• jas502n / oracleShell

  View on GitHub
  oracle 数据库命令执行
  ☆579Nov 6, 2020Updated 5 years ago
• 0range-x / Domain-penetration_one-stop

  View on GitHub
  域渗透一条龙
  ☆738Feb 16, 2022Updated 4 years ago
• SkewwG / domainTools

  View on GitHub
  内网域渗透小工具
  ☆733Apr 20, 2021Updated 4 years ago
• s7ckTeam / Glass

  View on GitHub
  Glass是一款针对资产列表的快速指纹识别工具，通过调用Fofa/ZoomEye/Shodan/360等api接口快速查询资产信息并识别重点资产的指纹，也可针对IP/IP段或资产列表进行快速的指纹识别。
  ☆1,008Jan 26, 2022Updated 4 years ago
• broken5 / WebAliveScan

  View on GitHub
  对目标域名进行快速的存活扫描、简单的指纹识别、目录扫描
  ☆914Dec 8, 2022Updated 3 years ago
• Ares-X / shiro-exploit

  View on GitHub
  Shiro反序列化利用工具，支持新版本(AES-GCM)Shiro的key爆破，配合ysoserial，生成回显Payload
  ☆896May 28, 2021Updated 4 years ago
• 1y0n / AV_Evasion_Tool

  View on GitHub
  掩日 - 免杀执行器生成工具
  ☆2,758Aug 18, 2025Updated 6 months ago
• safe6Sec / Fastjson

  View on GitHub
  Fastjson姿势技巧集合
  ☆1,829Oct 20, 2023Updated 2 years ago
• cckuailong / vulbase

  View on GitHub
  各大漏洞文库合集
  ☆757Oct 5, 2021Updated 4 years ago
• wgpsec / tig

  View on GitHub
  Threat Intelligence Gathering 威胁情报收集，旨在提高蓝队拿到攻击 IP 后对其进行威胁情报信息收集的效率。
  ☆850Aug 10, 2023Updated 2 years ago
• JDArmy / DCSec

  View on GitHub
  域控安全one for all
  ☆736Sep 9, 2024Updated last year
• xfiftyone / STS2G

  View on GitHub
  Struts2漏洞扫描利用工具 - Golang版. Struts2 Scanner Written in Golang
  ☆572Jan 10, 2022Updated 4 years ago
• BaizeSec / bylibrary

  View on GitHub
  白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目
  ☆1,490Oct 12, 2023Updated 2 years ago