TomAPU / poc_and_expLinks
搜集的或者自己写的poc或者exp
☆205Updated 3 years ago
Alternatives and similar repositories for poc_and_exp
Users that are interested in poc_and_exp are comparing it to the libraries listed below
Sorting:
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆176Updated 3 years ago
- 域渗透脑图中文翻译版☆278Updated 4 years ago
- 个人整理的一些域渗透Tricks,可能有一些错误。☆257Updated 4 years ago
- 基于msf的后渗透协作平台☆219Updated 4 years ago
- 敌后侦察☆236Updated 3 years ago
- 中国蚁剑JSP一句话Payload☆123Updated 5 years ago
- Flask 内存马☆312Updated 4 years ago
- SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE☆232Updated 5 years ago
- 基于反向代理的水坑部署工具☆262Updated 3 years ago
- Ligolo : 用于内网渗透的反向隧道☆226Updated 3 years ago
- 红蓝对抗交流心得☆106Updated 5 years ago
- 用于寻找多网卡主机方便内网跨网段渗透避免瞎打找不到核心网☆235Updated 5 years ago
- 自用字典,收集实战中遇到的奇特目录名、后门文件名等。不定期更新!☆113Updated 2 years ago
- A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …☆267Updated 2 months ago
- Tomcat 冰蝎内存马。☆214Updated 5 years ago
- 云函数扫描器实现代码☆167Updated 8 months ago
- 检测目标Mysql数据库是不是蜜罐☆128Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆182Updated 4 years ago
- JCE - JSP/JPSX CodeEncode - 用于 Webshell 逃避静态查杀的辅助脚本☆258Updated 4 years ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆269Updated 3 years ago
- 扫描常见未授权访问(redis、mongodb、memcached、elasticsearch、zookeeper、ftp、CouchDB、docker、Hadoop)☆190Updated 5 years ago
- 作为一个网络安全从业人员,在测试网站目录时,常用的就是御剑,7kb等几款,使用下来始终觉得缺少了什么东西,于是重复造了一个轮子,此版本支持自定义字典,返回大小,代理IP模式,爆破模式☆124Updated 4 years ago
- 一个全新的敏感文件发现工具☆270Updated 4 years ago
- 批量检查目标是否为cdn☆140Updated 4 years ago
- 整理的一些默认用户名/密码清单,Excel表☆136Updated 3 years ago
- Shiro-550 不依赖CC链利用工具☆451Updated last year
- 基于亚马逊S3\阿里云OSS\腾讯COS通信隧道的远程管理工具☆328Updated 5 years ago
- WIP: Demo for Attacking Apereo CAS☆97Updated 5 years ago
- Coremail任意文件上传漏洞POC☆158Updated 4 years ago
- 通过正则搜索、批量反编译特定Jar包中的class名称☆319Updated 4 years ago