WAY29 / Doughnuts
A webshell manager for php🍩
☆84Updated last year
Alternatives and similar repositories for Doughnuts:
Users that are interested in Doughnuts are comparing it to the libraries listed below
- 一个可以伪装上线Cobaltstrike的脚本☆132Updated 2 years ago
- ☆219Updated 3 years ago
- Assassin是一款精简的基于命令行的webshell管理工具,它有着多种payload发送方式和编码方式,以及精简的payload代码,使得它成为隐蔽的暗杀者,难以被很好的防御。☆116Updated 2 years ago
- fastjson不出网利用、c3p0☆251Updated 3 years ago
- This is a easy tool for gen VBA code, and bypass most antivirus☆60Updated 3 years ago
- 可在Windows下执行系统命令的Redis模块,可用于Redis主从复制攻击。☆257Updated 2 years ago
- ☆96Updated last year
- ☆208Updated 6 months ago
- Weblogic Vuln POC EXP cve-2020-2551 cve-2020-2555 cve-2020-2883 ,。。。☆89Updated 2 years ago
- 个人整理的一些域渗透Tricks,可能有一些错误。☆251Updated 3 years ago
- 获取服务器或域控登录日志☆271Updated last year
- 泛微OA_V9全版本的SQL远程代码执行漏洞☆157Updated 2 years ago
- ☆283Updated 2 years ago
- 一些常见字典☆165Updated 3 years ago
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆219Updated last year
- A tool for detect&exploit vmware product log4j(cve-2021-44228) vulnerability.Support VMware HCX/vCenter/NSX/Horizon/vRealize Operations M…☆204Updated 3 years ago
- AntSword(蚁剑)全参数流量XOR和Base64加伪装WebShell☆162Updated 3 years ago
- 这是一个lnk伪装☆106Updated 3 years ago
- ☆203Updated 2 years ago
- SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE☆231Updated 4 years ago
- Compatible with xray and nuclei poc framework☆192Updated 2 years ago
- fastjson 80 远程代码执行漏洞复现☆191Updated 2 years ago
- 改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能☆279Updated last year
- Godzilla java Decode,哥斯拉jsp(内存马)流量解密☆105Updated 3 years ago
- 解密哥斯拉webshell管理工具流量☆65Updated 3 years ago
- Redis-Attack By Replication (通过主从复制攻击Redis)☆327Updated 2 years ago
- 利用字符集编码绕过waf的burpsuite插件☆117Updated 4 years ago
- 基于dbcp的fastjson rce 回显☆191Updated 3 years ago
- JCE - JSP/JPSX CodeEncode - 用于 Webshell 逃避静态查杀的辅助脚本☆257Updated 3 years ago
- 命令执行不回显但DNS协议出网的命令回显场景解决方案☆274Updated 2 years ago