bewhale / seeyon_zipfile_uploadView external linksLinks
致远OA通过发送特殊请求获取管理员cookie,再通过文件上传接口上传webshell压缩文件,最后发送解压请求获取webshell
☆10Apr 11, 2021Updated 4 years ago
Alternatives and similar repositories for seeyon_zipfile_upload
Users that are interested in seeyon_zipfile_upload are comparing it to the libraries listed below
Sorting:
- CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…☆14Dec 30, 2023Updated 2 years ago
- The official exploit for OCS Inventory NG v2.7 Remote Command Execution CVE-2020-14947☆19Jul 2, 2020Updated 5 years ago
- 利用chrome扩展 dump 浏览器cookie https://saucer-man.com/information_security/787.html☆15Sep 9, 2021Updated 4 years ago
- Log4j_dos_CVE-2021-45105☆13Dec 19, 2021Updated 4 years ago
- sudo heap overflow to LPE, in Go☆16Feb 9, 2021Updated 5 years ago
- (CNVD-2021-26422)亿邮电子邮件系统 远程命令执行漏洞☆12Apr 28, 2021Updated 4 years ago
- query specific user and login IP from remote machine☆18Nov 19, 2022Updated 3 years ago
- ☆13Jul 24, 2022Updated 3 years ago
- 使用JAVAFX图形化界面检测对HVV中常见的重点CMS系统和OA系统的已公开的漏洞进行验证。☆15Jul 15, 2022Updated 3 years ago
- ☆36Dec 12, 2022Updated 3 years ago
- 根据关键词(如用户名)快速生成相关弱口令字典☆19Dec 9, 2022Updated 3 years ago
- iOS安全与防护☆17May 31, 2025Updated 8 months ago
- 阿里云AK泄露利用工具☆53Apr 16, 2022Updated 3 years ago
- Code By:Tas9er / Redis未授权SSH协议公钥写入漏洞验证☆25Feb 2, 2021Updated 5 years ago
- Analysis Financial Attacker Groups, 金融行业攻击者团伙研究☆23Jun 24, 2021Updated 4 years ago
- 简单的Linux远程控制☆20Jun 3, 2017Updated 8 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆24May 10, 2021Updated 4 years ago
- golang 实现 sqlmap☆27Apr 5, 2021Updated 4 years ago
- 创建一个克隆隐藏的管理员账号/Create a Clone Hidden Administrator Account☆22Aug 28, 2019Updated 6 years ago
- HW-POC☆25Aug 24, 2023Updated 2 years ago
- This project is move advanced version of https://github.com/WKL-Sec/HiddenDesktop☆50Jan 11, 2026Updated last month
- CVE-2023-42820☆55Apr 3, 2024Updated last year
- Check if your AV/EDR does inline hooking, displays the hooked functions and allows you to compare them with the original ones.☆36Apr 24, 2025Updated 9 months ago
- Weblogic RCE with IIOP☆80Jan 18, 2020Updated 6 years ago
- 魔改shadowsocks,实现socks5内网穿透。☆63Nov 28, 2025Updated 2 months ago
- 利用EFSRPC协议批量探测出网☆67Oct 12, 2023Updated 2 years ago
- Bypass Windows Defender☆62Jun 16, 2022Updated 3 years ago
- 用bat脚本在windows环境下,一键免杀shellcode☆28Mar 6, 2022Updated 3 years ago
- JWT秘钥爆破脚本☆30Jun 21, 2023Updated 2 years ago
- ☆30Mar 21, 2023Updated 2 years ago
- FTP lnk调用pythonw程序,用于攻防钓鱼场景下免杀运行捆绑木马文件☆77Aug 27, 2024Updated last year
- jmx未授权访问 弱口令批量检测 GUI工具☆31Apr 28, 2023Updated 2 years ago
- A project demonstrating an app that is vulnerable to Spring Security authorization bypass CVE-2022-31692☆35Nov 7, 2022Updated 3 years ago
- CobaltStrike and Google Auth twice☆63Oct 11, 2021Updated 4 years ago
- CVE-2022-22965写入冰蝎webshell脚本☆63May 10, 2022Updated 3 years ago
- python编写的多个通达常见漏洞exp☆38Aug 26, 2021Updated 4 years ago
- CobaltStrike4.5 Sleeve解密文件,搬砖加一点点修改, 仅作备份使用.☆34Jun 17, 2022Updated 3 years ago
- ☆31Aug 31, 2021Updated 4 years ago
- 宏景ehr sql注入的tamper脚本(sqlmap使用)☆36Jun 14, 2023Updated 2 years ago