YDHCUI / CNVD-2020-10487-Tomcat-Ajp-lfi

Related projects: ⓘ

• Ridter / redis-rce
  Redis 4.x/5.x RCE
  ☆925Updated 2 years ago
• dr0op / WeblogicScan
  增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
  ☆942Updated 3 months ago
• lijiejie / IIS_shortname_Scanner
  an IIS shortname Scanner
  ☆525Updated last year
• c0ny1 / xxe-lab
  一个包含php,java,python,C#等各种语言版本的XXE漏洞Demo
  ☆769Updated last year
• wh1t3p1g / ysomap
  A helpful Java Deserialization exploit framework.
  ☆1,156Updated 2 months ago
• fnmsd / MySQL_Fake_Server
  MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
  ☆1,199Updated 2 years ago
• threedr3am / JSP-WebShells
  Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势
  ☆1,349Updated 2 years ago
• allyshka / Rogue-MySql-Server
  MySQL fake server for read files of connected clients
  ☆582Updated 7 years ago
• c0ny1 / FastjsonExploit
  Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
  ☆1,252Updated last year
• TheKingOfDuck / easyXssPayload
  XssPayload List . Usage:
  ☆707Updated 4 years ago
• n0b0dyCN / redis-rogue-server
  Redis(<=5.0.5) RCE
  ☆986Updated 11 months ago
• FunnyWolf / pystinger
  Bypass firewall for traffic forwarding using webshell 一款使用webshell进行流量转发的出网工具
  ☆1,363Updated 2 years ago
• wyzxxz / jndi_tool
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆1,882Updated 3 months ago
• yangyangwithgnu / bypass_disablefunc_via_LD_PRELOAD
  bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
  ☆1,133Updated 3 years ago
• c0ny1 / sqlmap4burp-plus-plus
  sqlmap4burp++是一款兼容Windows，mac，linux多个系统平台的Burp与sqlmap联动插件
  ☆739Updated 4 years ago
• hypn0s / AJPy
  ☆462Updated last year
• bit4woo / knife
  A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
  ☆1,588Updated last month
• Maskhe / FastjsonScan
  一个简单的Fastjson反序列化检测burp插件
  ☆837Updated 3 years ago
• l3m0n / Bypass_Disable_functions_Shell
  一个各种方式突破Disable_functions达到命令执行的shell
  ☆1,173Updated 11 months ago
• woodpecker-framework / woodpecker-framework-release
  高危漏洞精准检测与深度利用框架
  ☆1,345Updated last year
• pmiaowu / BurpShiroPassiveScan
  一款基于BurpSuite的被动式shiro检测插件
  ☆1,655Updated last year
• wyzxxz / shiro_rce_tool
  shiro 反序列 命令执行辅助检测工具
  ☆1,338Updated 3 months ago
• c0ny1 / chunked-coding-converter
  Burp suite 分块传输辅助插件
  ☆1,912Updated 2 years ago
• Dliv3 / redis-rogue-server
  Redis 4.x/5.x RCE
  ☆516Updated 3 years ago
• 1120362990 / vulnerability-list
  在渗透测试中快速检测常见中间件、组件的高危漏洞。
  ☆733Updated 2 years ago
• rebeyond / memShell
  a webshell resides in the memory of java web server
  ☆657Updated 6 years ago
• gobysec / GobyVuls
  Vulnerabilities of Goby supported with exploitation.
  ☆700Updated last month
• feihong-cs / Java-Rce-Echo
  Java RCE 回显测试代码
  ☆992Updated 3 years ago
• 0xn0ne / weblogicScanner
  weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…
  ☆1,982Updated 9 months ago
• cckuailong / reapoc
  OpenSource Poc && Vulnerable-Target Storage Box.
  ☆671Updated last year