一款针对Shiro550漏洞进行快速漏洞利用工具。 对 @SummerSec 大佬的项目https://github.com/SummerSec/ShiroAttack2 进行了一些改进。
☆250May 29, 2023Updated 2 years ago
Alternatives and similar repositories for ShiroAttack2
Users that are interested in ShiroAttack2 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 用友NC系列漏洞检测利用工具,支持一键检测、命令执行回显、文件落地、一键打入内存马、文件读取等☆583Aug 19, 2023Updated 2 years ago
- Spring漏洞综合利用工具☆674Jul 5, 2023Updated 2 years ago
- WeblogicTool,GUI漏洞利用工具,支持漏洞检测、命令执�行、内存马注入、密码解密等(深信服深蓝实验室天威战队强力驱动)☆1,777Nov 1, 2023Updated 2 years ago
- 用友漏洞综合利用工具☆264Nov 9, 2024Updated last year
- 用友漏洞检测,持续更新漏洞检测模块☆479Jul 21, 2025Updated 8 months ago
- Wordpress hosting with auto-scaling on Cloudways • AdFully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
- 一款高性能 HTTP 内存代理 | 哥斯拉插件 | readteam | 红队 | 内存马 | Suo5 | Godzilla | 正向代理☆288Aug 8, 2023Updated 2 years ago
- 泛微最近的漏洞利用工具(PS:2023)☆481Dec 14, 2023Updated 2 years ago
- 云安全利用工具-云平台AK/SK-WEB利用工具,添加AK/SK自动检测资源,无需手动执行,支持云服务器、存储桶、数据库操作☆587Dec 19, 2024Updated last year
- OA综合利用工具,集合将近20款OA漏洞批量扫描☆1,339Oct 28, 2023Updated 2 years ago
- 一款用Go语言编写的数据库自动化提权工具,支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接☆861Aug 30, 2023Updated 2 years ago
- 复杂请求下的Shiro反序列化利用工具☆419Mar 12, 2024Updated 2 years ago
- Nacos JRaft Hessian 反序列化 RCE 加载字节码 注入内存马 不出网利用☆847Jul 7, 2023Updated 2 years ago
- 一款dump hash工具配合后渗透的利用☆275Apr 21, 2023Updated 2 years ago
- 高危漏洞利用工具☆1,830Feb 12, 2025Updated last year
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- Confluence CVE 2021,2022,2023 利用工具,支持命令执行,哥斯拉,冰蝎 内存马注入☆555Feb 1, 2024Updated 2 years ago
- Shiro文件上传工具☆102Jun 28, 2023Updated 2 years ago
- 一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webs…☆1,470Apr 25, 2024Updated last year
- 哥斯拉jsp/jspx免杀webshell生成器☆208Apr 28, 2023Updated 2 years ago
- 一款针对用友NC综合漏洞利用工具☆240Nov 27, 2023Updated 2 years ago
- 互联网厂商API利用工具。☆567Sep 13, 2024Updated last year
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆230Aug 8, 2023Updated 2 years ago
- JavaGadgetGenerator 工具,支持 ysoserial,Hessian,字节码,Expr/SSTI,Shiro,JDBC 等 Gadget 生成,封装,混淆,出网延迟探测,内存马注入等...☆553Dec 7, 2025Updated 3 months ago
- 1、点击“检测漏洞”,会自动检测该URL是否存在S2-001、S2-005、S2-009、S2-013、S2-016、S2-019、S2-020/021、S2-032、S2-037、DevMode、S2-045/046、S2-052、S2-048、S2-053、S2-057…☆956Nov 3, 2025Updated 4 months ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- 一款集成高危漏洞exp的实用性工具☆1,295Nov 6, 2024Updated last year
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- Godzilla插件|内存马|Suo5内存代理|jmg for Godzilla☆243Jun 6, 2024Updated last year
- xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作,上传,job等相应操作。☆196Nov 25, 2023Updated 2 years ago
- Struts2漏洞扫描 Burp插件☆131Mar 21, 2023Updated 3 years ago
- Yonyou-UNSERIALIZE,用友NC 反序列化检查工具,批量检测用友NC 反序列化☆50Jul 21, 2023Updated 2 years ago
- 收集内存马打入方式☆507May 20, 2022Updated 3 years ago
- shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack☆2,396Apr 10, 2024Updated last year
- 综合漏洞后渗透利用工具☆1,693Dec 11, 2025Updated 3 months ago
- NordVPN Threat Protection Pro™ • AdTake your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
- Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件☆1,313Jun 29, 2024Updated last year
- MDUT-Extend(扩展版本)☆849Mar 17, 2026Updated last week
- 适用于某EHR&HRM的加解密工具,可直接用于sqlmap☆25Jan 14, 2024Updated 2 years ago
- 用友的一些反序列化链子以及1day,二开了狼组的YongYouNcTool,改了一下逻辑以及poc☆125Oct 12, 2024Updated last year
- 一款支持自定义的 Java 内存马生成工具|A customizable Java in-memory webshell generation tool.☆2,166Aug 21, 2025Updated 7 months ago
- JNDI在java高版本的利用工具,FUZZ利用链☆597Oct 8, 2022Updated 3 years ago
- Burp插件,根据自定义来达到对数据包的处理(适用于加解密、爆破等),类似mitmproxy,不同点在于经过了burp中转,在自动加解密的基础上,不影响APP、网站加解密正常逻辑等。☆1,350Mar 20, 2026Updated last week