XTeam-Wing/X-Scan external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

XTeam-Wing/X-Scan

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/XTeam-Wing/X-Scan)

Close

XTeam-Wing / X-ScanView on GitHubMore

• External links
• Readme badge

魔改版内网扫描工具

☆153Mar 16, 2022Updated 4 years ago

Alternatives and similar repositories for X-Scan

Users that are interested in X-Scan are comparing it to the libraries listed below

• Ni4n / ShellGenerate

  View on GitHub
  哥斯拉jsp/jspx免杀webshell生成器
  ☆208Apr 28, 2023Updated 2 years ago
• Ryze-T / Sylas

  View on GitHub
  数据库综合利用工具
  ☆543Feb 16, 2022Updated 4 years ago
• myzxcg / ShiroKeyCheck

  View on GitHub
  Shiro key check,golang Version
  ☆58Aug 27, 2022Updated 3 years ago
• czz1233 / GBByPass

  View on GitHub
  冰蝎 哥斯拉 WebShell bypass
  ☆763Jan 15, 2026Updated 2 months ago
• Lotus6 / ConfluenceMemshell

  View on GitHub
  Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎 内存马注入
  ☆554Feb 1, 2024Updated 2 years ago
• ce-automne / TomcatMemShell

  View on GitHub
  拿来即用的Tomcat7/8/9/10版本Listener/Filter/Servlet内存马，支持注入CMD内存马和冰蝎内存马
  ☆511Aug 31, 2022Updated 3 years ago
• jiushill / csplugin

  View on GitHub
  自己开的cs插件
  ☆248Feb 10, 2023Updated 3 years ago
• tpt11fb / AttackTomcat

  View on GitHub
  Tomcat常见漏洞GUI利用工具。CVE-2017-12615 PUT文件上传漏洞、tomcat-pass-getshell 弱认证部署war包、弱口令爆破、CVE-2020-1938 Tomcat AJP文件读取/包含
  ☆250Nov 15, 2022Updated 3 years ago
• Avienma / Mimikatz

  View on GitHub
  用c#实现了个远程拉取Mimikatz.ps1
  ☆61Dec 7, 2023Updated 2 years ago
• savior-only / Spring_All_Reachable

  View on GitHub
  Spring漏洞综合利用工具
  ☆674Jul 5, 2023Updated 2 years ago
• 1n7erface / Template

  View on GitHub
  Next generation RedTeam heuristic intranet scanning | 下一代RedTeam启发式内网扫描
  ☆1,115Sep 16, 2023Updated 2 years ago
• Goqi / Banli

  View on GitHub
  Banli-高危资产识别和高危漏洞扫描
  ☆457Apr 10, 2023Updated 2 years ago
• sp4zcmd / WeblogicExploit-GUI

  View on GitHub
  Weblogic漏洞利用图形化工具 支持注入内存马、一键上传webshell、命令执行
  ☆775Apr 20, 2022Updated 3 years ago
• yanghaoi / CobaltStrike_CNA

  View on GitHub
  使用多种WinAPI进行权限维持的CobaltStrike脚本，包含API设置系统服务，设置计划任务，管理用户等。
  ☆554Jan 18, 2022Updated 4 years ago
• sma11new / Pyke-Shiro

  View on GitHub
  复杂请求下的Shiro反序列化利用工具
  ☆419Mar 12, 2024Updated 2 years ago
• EASY233 / BpScan

  View on GitHub
  一款用于辅助渗透测试工程师日常渗透测试的Burp被动漏扫插件
  ☆242Nov 25, 2022Updated 3 years ago
• passer-W / shc_bypass

  View on GitHub
  内存加载shellcode绕过waf
  ☆209Jul 25, 2022Updated 3 years ago
• Adminxe / FileHunter

  View on GitHub
  钓鱼上线后渗透工具
  ☆131Feb 19, 2023Updated 3 years ago
• yuyan-sec / Doraemon

  View on GitHub
  渗透辅助 BurpSuite 小插件
  ☆232Nov 26, 2025Updated 3 months ago
• XTeam-Wing / X-AV

  View on GitHub
  X系列安全工具-AV免杀框架-BypassAV
  ☆207Oct 6, 2022Updated 3 years ago
• novysodope / fupo_for_yonyou

  View on GitHub
  用友漏洞检测，持续更新漏洞检测模块
  ☆479Jul 21, 2025Updated 8 months ago
• Bl0omZ / JNDIEXP

  View on GitHub
  JNDI在java高版本的利用工具,FUZZ利用链
  ☆597Oct 8, 2022Updated 3 years ago
• Conan924 / PostHikvision

  View on GitHub
  哥斯拉Hikvision综合安防后渗透插件，运行中心/web前台/MinIO 配置提取（解密）重置密码,还原密码。
  ☆170Oct 8, 2024Updated last year
• crisprss / BypassUserAdd

  View on GitHub
  通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化
  ☆344Apr 10, 2022Updated 3 years ago
• AgeloVito / adduserbysamr-bof

  View on GitHub
  Cobalt Strike BOF that Add a user to localgroup by samr
  ☆135Nov 30, 2022Updated 3 years ago
• pureqh / Hyacinth

  View on GitHub
  一款java漏洞集合工具
  ☆1,099Jan 13, 2026Updated 2 months ago
• metaStor / SpringScan

  View on GitHub
  SpringScan 漏洞检测 Burp插件
  ☆606Nov 14, 2023Updated 2 years ago
• altEr1125 / ShiroAttack2

  View on GitHub
  一款针对Shiro550漏洞进行快速漏洞利用工具。 对 @SummerSec 大佬的项目https://github.com/SummerSec/ShiroAttack2 进行了一些改进。
  ☆250May 29, 2023Updated 2 years ago
• i11us0ry / goon

  View on GitHub
  goon,集合了fscan和kscan等优秀工具功能的扫描爆破工具。功能包含：ip探活、port扫描、web指纹扫描、title扫描、压缩文件扫描、fofa获取、ms17010、mssql、mysql、postgres、redis、ssh、smb、rdp、telnet、to…
  ☆811Aug 5, 2024Updated last year
• whwlsfb / SpringSpider

  View on GitHub
  Spring Actuator端点的BurpSuite被动扫描插件。
  ☆202Nov 2, 2022Updated 3 years ago
• Rvn0xsy / PassDecode-jar

  View on GitHub
  帆软/致远密码解密工具
  ☆359Jul 29, 2021Updated 4 years ago
• shmilylty / SharpHostInfo

  View on GitHub
  SharpHostInfo是一款快速探测内网主机信息工具（深信服深蓝实验室天威战队强力驱动）
  ☆625Dec 15, 2022Updated 3 years ago
• yuyan-sec / RedisEXP

  View on GitHub
  Redis 漏洞利用工具
  ☆937Jan 26, 2025Updated last year
• errors11 / TomcatVuln

  View on GitHub
  Tomcat漏洞利用工具
  ☆316Nov 29, 2024Updated last year
• Lotus6 / JavaGadgetGenerator

  View on GitHub
  JavaGadgetGenerator 工具，支持 ysoserial，Hessian，字节码，Expr/SSTI，Shiro，JDBC 等 Gadget 生成，封装，混淆，出网延迟探测，内存马注入等...
  ☆552Dec 7, 2025Updated 3 months ago
• Goqi / AvHunt

  View on GitHub
  AvHunt-杀毒软件识别
  ☆175Dec 24, 2022Updated 3 years ago
• Avienma / DumpHash

  View on GitHub
  一款dump hash工具配合后渗透的利用
  ☆275Apr 21, 2023Updated 2 years ago
• winezer0 / DynaScan

  View on GitHub
  完善的动态备份文件扫描工具 实现动态字典渲染、动态结果判断、自动字典记录、的敏感文件扫描器
  ☆27May 21, 2025Updated 10 months ago
• pap1rman / postnacos

  View on GitHub
  哥斯拉nacos后渗透插件 maketoken adduser
  ☆150Jul 7, 2023Updated 2 years ago