Alternatives and similar repositories for poc_and_exp

Users that are interested in poc_and_exp are comparing it to the libraries listed below

• flowerwind / JspFinder
  一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)
  ☆177Updated 3 years ago
• doubleee / WebFuzzing
  自用字典，收集实战中遇到的奇特目录名、后门文件名等。不定期更新！
  ☆112Updated last year
• iiiusky / AntiHoneypot-Chrome-simple
  Chrome 蜜罐检测插件
  ☆297Updated 4 years ago
• AntSwordProject / AntSword-Labs
  Awesome environment for antsword tests
  ☆179Updated 4 years ago
• dr0op / shiro-550-with-NoCC
  Shiro-550 不依赖CC链利用工具
  ☆450Updated 11 months ago
• no-one-sec / code-phish
  JetBrains系列产品.idea钓鱼反制红队
  ☆331Updated 3 years ago
• ydnzol / memshell
  Tomcat 冰蝎内存马。
  ☆213Updated 4 years ago
• ggg4566 / SQLEXP
  SQL 注入利用工具，存在waf的情况下自定义编写tamper脚本 dump数据
  ☆289Updated 4 years ago
• zema1 / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆356Updated 2 years ago
• Rvn0xsy / Pricking
  基于反向代理的水坑部署工具
  ☆258Updated 3 years ago
• 5wimming / gadgetinspector
  利用链、漏洞检测工具
  ☆369Updated 10 months ago
• Y4er / fastjson-bypass-autotype-1.2.68
  fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.
  ☆226Updated 2 years ago
• 7hang / POC-EXP
  Web端POC-EXP 整理
  ☆99Updated 4 years ago
• FunnyWolf / ligolo
  Ligolo : 用于内网渗透的反向隧道
  ☆226Updated 3 years ago
• AntSwordProject / AwesomeEncoder
  AntSword 自定义编(解)码器分享
  ☆248Updated 4 years ago
• NyDubh3 / Pentesting-Active-Directory-CN
  域渗透脑图中文翻译版
  ☆278Updated 3 years ago
• r35tart / GetIPinfo
  用于寻找多网卡主机方便内网跨网段渗透避免瞎打找不到核心网
  ☆232Updated 4 years ago
• Liqunkit / LiqunShield
  下架
  ☆141Updated 3 years ago
• Litch1-v / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆182Updated 4 years ago
• iceyhexman / flask_memory_shell
  Flask 内存马
  ☆310Updated 4 years ago
• cwkiller / unauthorized-check
  扫描常见未授权访问（redis、mongodb、memcached、elasticsearch、zookeeper、ftp、CouchDB、docker、Hadoop）
  ☆188Updated 5 years ago
• ev0A / Mysqlist
  Mysql Server端伪造-任意文件读取-CTF快速利用脚本
  ☆131Updated 5 years ago
• lalajun / RMIDeserialize
  RMI 反序列化环境 一步步
  ☆210Updated 4 years ago
• jweny / MemShellDemo
  内存马Demo合集 memshell demo for java / php / python
  ☆410Updated 4 years ago
• Veraxy00 / Shiro-EXP
  Apache Shiro 反序列化漏洞检测与利用工具，一键注入内存马
  ☆138Updated 4 years ago
• threedr3am / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。
  ☆215Updated 3 years ago
• bigsizeme / shiro-check
  Shiro反序列化回显利用、内存shell、检查 Burp插件
  ☆217Updated 2 years ago
• jayus0821 / Armor
  Armor 浏览器反蜜罐插件 honeypot
  ☆179Updated 3 years ago
• s7ckTeam / sWebScanner
  作为一个网络安全从业人员，在测试网站目录时，常用的就是御剑，7kb等几款，使用下来始终觉得缺少了什么东西，于是重复造了一个轮子，此版本支持自定义字典，返回大小，代理IP模式，爆破模式
  ☆122Updated 4 years ago
• Ch1ngg / WebLogicPasswordDecryptorUi
  解密weblogic AES或DES加密方法
  ☆231Updated 4 years ago