Whoopsunix/nacosScan external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Whoopsunix/nacosScan

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Whoopsunix/nacosScan)

Close

Whoopsunix / nacosScanView on GitHubMore

• External links
• Readme badge

nacos api bypass & jwt bypass & get all configs

☆42Aug 9, 2023Updated 2 years ago

Alternatives and similar repositories for nacosScan

Users that are interested in nacosScan are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• Whoopsunix / PPPVULNS

  View on GitHub
  Java CVE Vulnerability Environment
  ☆43Jun 11, 2024Updated last year
• qi4L / QVD-2023-13065

  View on GitHub
  Nacos JRaft Hessian 反序列化 RCE EXP
  ☆65Jun 13, 2023Updated 2 years ago
• X1r0z / frp

  View on GitHub
  基于原版 frp 二开, 添加了一些小功能
  ☆107Jan 29, 2024Updated 2 years ago
• safe6Sec / burpDevNote

  View on GitHub
  burp插件开发笔记
  ☆11Dec 26, 2021Updated 4 years ago
• luelueking / RuoYi-v4.7.8-RCE-POC

  View on GitHub
  ☆250Feb 25, 2024Updated 2 years ago
• Y4Sec-Team / mysql-jdbc-tricks

  View on GitHub
  JDBC Attack Tricks
  ☆154Sep 3, 2023Updated 2 years ago
• Hel10-Web / Databasetools

  View on GitHub
  一款用Go语言编写的数据库自动化提权工具，支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接
  ☆860Aug 30, 2023Updated 2 years ago
• Whoopsunix / fastjson_study

  View on GitHub
  Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul
  ☆96Oct 30, 2023Updated 2 years ago
• TonyNPham / GodzillaPlugin-Suo5-MemProxy

  View on GitHub
  一款高性能 HTTP 内存代理 | 哥斯拉插件 | readteam | 红队 | 内存马 | Suo5 | Godzilla | 正向代理
  ☆288Aug 8, 2023Updated 2 years ago
• Ryze-T / rust-addUser

  View on GitHub
  windows 添加管理员--Rust版本
  ☆45Jul 7, 2022Updated 3 years ago
• threedr3am / jar-compatibility-detector

  View on GitHub
  安全升级jar包时，辅助检测Java Archive (JAR) 包之间兼容性，各类符号引用的存在检测，包括方法、方法签名、字段定义和引用、类引用等等
  ☆14Jul 7, 2024Updated last year
• Hutt0n0 / ActiveMqRCE

  View on GitHub
  用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用 内存马注入
  ☆288Nov 20, 2023Updated 2 years ago
• idiotc4t / sharpwmi

  View on GitHub
  (批量化改造)sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
  ☆108Jan 8, 2021Updated 5 years ago
• su18 / hack-fastjson-1.2.80

  View on GitHub
  ☆525Sep 16, 2022Updated 3 years ago
• SummerSec / AgentInjectTool

  View on GitHub
  改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能
  ☆279Nov 28, 2023Updated 2 years ago
• YYHYlh / Apache-Dubbo-CVE-2023-23638-exp

  View on GitHub
  Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
  ☆230Aug 8, 2023Updated 2 years ago
• A0WaQ4 / HexDnsEchoT

  View on GitHub
  命令执行不回显但DNS协议出网的命令回显场景解决方案（修改为使用ceye接收请求，添加自定义DNS服务器）
  ☆292Aug 20, 2023Updated 2 years ago
• HHa1ey / TKHunter

  View on GitHub
  一个基于JavaFX写的一个Hunter资产测绘平台的图形化工具
  ☆121Nov 9, 2022Updated 3 years ago
• xk11z / unauthorized_com

  View on GitHub
  未授权检测的命令行版，支持批量检测
  ☆156Apr 5, 2025Updated 11 months ago
• yhy0 / RustScan

  View on GitHub
  一个调用 rustscan 进行端口扫描的 go 库
  ☆22Dec 30, 2021Updated 4 years ago
• wafinfo / TeamViewer

  View on GitHub
  TeamView Get PassWord
  ☆74Feb 20, 2022Updated 4 years ago
• 0xf4n9x / CDGXStreamDeserRCE

  View on GitHub
  亿赛通电子文档安全管理系统XStream反序列化漏洞任意文件上传利用
  ☆120Aug 9, 2024Updated last year
• soufianetahiri / AD-Pentest-Cheatsheet

  View on GitHub
  AD Pentest Cheatsheet by BlackWasp
  ☆23Oct 10, 2022Updated 3 years ago
• RowTeam / SharpSQLTools

  View on GitHub
  ☆218Aug 2, 2022Updated 3 years ago
• sccmdaveli / NACOSexp

  View on GitHub
  NACOS漏洞利用脚本，检测默认弱口令，未授权，以及任意用户添加
  ☆16May 28, 2023Updated 2 years ago
• Whoopsunix / JavaRce

  View on GitHub
  Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
  ☆544Mar 6, 2025Updated last year
• y1nglamore / IDOR_detect_tool

  View on GitHub
  一款API水平越权漏洞检测工具
  ☆766Jun 27, 2023Updated 2 years ago
• TheKingOfDuck / SBCVE

  View on GitHub
  不定期记录一下浪费了时间去关注过的垃圾CVE漏洞。
  ☆119Jul 27, 2023Updated 2 years ago
• whocansee / FilelessAgentMemShell

  View on GitHub
  无需文件落地Agent内存马生成器
  ☆249May 30, 2024Updated last year
• 0x727 / DropLabTools

  View on GitHub
  一个垃圾利用工具，半自动发包机器
  ☆228Sep 8, 2022Updated 3 years ago
• F6JO / RouteVulScan

  View on GitHub
  Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
  ☆1,313Jun 29, 2024Updated last year
• howmp / reality

  View on GitHub
  grs内网穿透工具通过reality协议隐藏特征
  ☆613Dec 4, 2025Updated 3 months ago
• scareing / cmd2shellcode

  View on GitHub
  cmd2shellcode
  ☆79May 6, 2021Updated 4 years ago
• TD0U / WeaverScan

  View on GitHub
  泛微oa漏洞利用工具
  ☆255Jan 4, 2023Updated 3 years ago
• Mr-xn / HCMendetool

  View on GitHub
  HCM宏景加解密工具
  ☆49Jun 20, 2025Updated 9 months ago
• Rvn0xsy / Invoke-x64dbg-loaddll

  View on GitHub
  调用x64dbg中的loadll.exe白加黑示例代码
  ☆65Jun 18, 2024Updated last year
• p1n93r / SpringBootAdmin-thymeleaf-SSTI

  View on GitHub
  SpringBootAdmin-thymeleaf-SSTI which can cause RCE
  ☆86Jul 18, 2023Updated 2 years ago
• zhaoyumi / WeaverExploit_All

  View on GitHub
  泛微最近的漏洞利用工具（PS：2023）
  ☆481Dec 14, 2023Updated 2 years ago
• wjlin0 / riverPass

  View on GitHub
  riverPass 是一个用Go编写的瑞数WAF绕过工具。它利用了WebSocket协议，将请求发送的自身浏览器中，从而绕过了瑞数WAF的检测。
  ☆234Oct 18, 2024Updated last year