bigsizeme / Log4j-checkView external linksLinks
log4J burp被扫插件、CVE-2021-44228、支持dnclog.cn和burp内置DNS、可配合JNDIExploit生成payload
☆70Dec 13, 2021Updated 4 years ago
Alternatives and similar repositories for Log4j-check
Users that are interested in Log4j-check are comparing it to the libraries listed below
Sorting:
- SpringScan 漏洞检测 Burp插件☆605Nov 14, 2023Updated 2 years ago
- 遇见扫描器☆16May 15, 2022Updated 3 years ago
- fastjson利用,支持tomcat、spring回显,哥斯拉内存马;回显利用链为dhcp、ibatis、c3p0。☆325Mar 15, 2022Updated 3 years ago
- 哥斯拉nacos后渗透插件 maketoken adduser☆150Jul 7, 2023Updated 2 years ago
- zip slip☆38Apr 7, 2023Updated 2 years ago
- burp插件:python版,token防重放绕过☆19Jan 16, 2021Updated 5 years ago
- 🚀 一款为了学习go而诞生的漏洞利用工具☆450Jun 14, 2022Updated 3 years ago
- 渗透辅助 BurpSuite 小插件☆232Nov 26, 2025Updated 2 months ago
- CVE-2023-46604☆63Nov 3, 2023Updated 2 years ago
- fastjson 被动扫描、不出网payload生成☆367Nov 19, 2021Updated 4 years ago
- ☆342Jun 7, 2022Updated 3 years ago
- 用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件☆213Apr 18, 2023Updated 2 years ago
- 一款基于BurpSuite的被动式shiro检测插件☆1,790Dec 14, 2022Updated 3 years ago
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆231Aug 8, 2023Updated 2 years ago
- 数据库综合利用工具☆544Feb 16, 2022Updated 3 years ago
- A memory shell for ruoyi☆266Apr 28, 2023Updated 2 years ago
- Shiro反序列化回显利用、内存shell、检查 Burp插件☆217Sep 1, 2022Updated 3 years ago
- Google 、Baidu、Bing、Github Hack tools☆17Nov 3, 2021Updated 4 years ago
- 改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能☆279Nov 28, 2023Updated 2 years ago
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探�测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入☆770Jan 26, 2022Updated 4 years ago
- 自动化Host碰撞工具,帮助红队快速扩展网络边界,获取更多目标点☆594Oct 7, 2023Updated 2 years ago
- fastjson漏洞批量检测工具☆362Jul 12, 2024Updated last year
- CVE-2021-44228 Log4j2 BurpSuite Scanner,Customize ceye.io api or other apis,including internal networks☆840Jun 13, 2023Updated 2 years ago
- CVE-2022-22954 VMware Workspace ONE Access freemarker SSTI 漏洞 命令执行、批量检测脚本、文件写入☆70Apr 26, 2022Updated 3 years ago
- burpsuite 的Spring漏洞扫描插件。SpringVulScan:支持检测:路由泄露|CVE-2022-22965|CVE-2022-22963|CVE-2022-22947|CVE-2016-4977☆154Jan 23, 2023Updated 3 years ago
- 致远OA综合利用工具☆418Jun 3, 2021Updated 4 years ago
- Spring Actuator端点的BurpSuite被动扫描插件。☆203Nov 2, 2022Updated 3 years ago
- 一款基于BurpSuite的被动式FastJson检测插件☆1,237Oct 1, 2022Updated 3 years ago
- 获取 alibaba druid 一些 sessions , sql , urls☆292Apr 4, 2025Updated 10 months ago
- 通达OA综合利用工具☆516Mar 17, 2021Updated 4 years ago
- JeecgCracker 是一个专门针对 JeecgBoot 框架的密码爆破工具。☆29Oct 29, 2024Updated last year
- ExprInject / Java表达式注入自动化扫描 / Code By:Tas9er☆41Sep 11, 2025Updated 5 months ago
- 自己的JNDI 利用工具,添加一些人性化功能☆131Sep 4, 2022Updated 3 years ago
- 一款用于辅助渗透测试工程师日常渗透测试的Burp被动漏扫插件☆242Nov 25, 2022Updated 3 years ago
- SharpSQLTools 和@Rcoil一起写的小工具,可上传下载文件,xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。☆965Aug 5, 2021Updated 4 years ago
- 通过反射DLL注入、Win API、C#、以及底层实现NetUserAdd方式实现BypassAV进行增加用户的功能,实现Cobalt Strike插件化☆343Apr 10, 2022Updated 3 years ago
- CVE-2021-41773 CVE-2021-42013漏洞批量检测工具☆148Oct 9, 2021Updated 4 years ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- 帆软/致远密码解密工具☆359Jul 29, 2021Updated 4 years ago