c0ny1/xxe-lab external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

c0ny1/xxe-lab

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/c0ny1/xxe-lab)

Close

c0ny1 / xxe-labView on GitHubMore

• External links
• Readme badge

一个包含php,java,python,C#等各种语言版本的XXE漏洞Demo

☆815Nov 28, 2022Updated 3 years ago

Alternatives and similar repositories for xxe-lab

Users that are interested in xxe-lab are comparing it to the libraries listed below

• c0ny1 / chunked-coding-converter

  View on GitHub
  Burp suite 分块传输辅助插件
  ☆2,023Feb 23, 2022Updated 4 years ago
• c0ny1 / upload-fuzz-dic-builder

  View on GitHub
  上传漏洞fuzz字典生成脚本
  ☆1,270Apr 1, 2021Updated 4 years ago
• c0ny1 / upload-labs

  View on GitHub
  一个想帮你总结所有类型的上传漏洞的靶场
  ☆4,121Jun 26, 2023Updated 2 years ago
• dr0op / WeblogicScan

  View on GitHub
  增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
  ☆967Jun 16, 2024Updated last year
• opensec-cn / vtest

  View on GitHub
  用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
  ☆866Jul 21, 2019Updated 6 years ago
• c0ny1 / FastjsonExploit

  View on GitHub
  Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
  ☆1,389Dec 16, 2022Updated 3 years ago
• 1120362990 / vulnerability-list

  View on GitHub
  在渗透测试中快速检测常见中间件、组件的高危漏洞。
  ☆728Mar 21, 2022Updated 3 years ago
• l3m0n / Bypass_Disable_functions_Shell

  View on GitHub
  一个各种方式突破Disable_functions达到命令执行的shell
  ☆1,198Oct 17, 2023Updated 2 years ago
• c0ny1 / vulstudy

  View on GitHub
  使用docker快速搭建各大漏洞靶场，目前可以一键搭建17个靶场。
  ☆2,421Mar 25, 2020Updated 5 years ago
• rabbitmask / WeblogicScan

  View on GitHub
  Weblogic一键漏洞检测工具，V1.5，更新时间：20200730
  ☆2,266May 22, 2023Updated 2 years ago
• c0ny1 / passive-scan-client

  View on GitHub
  Burp被动扫描流量转发插件
  ☆1,460Jun 17, 2024Updated last year
• HatBoy / Struts2-Scan

  View on GitHub
  Struts2全漏洞扫描利用工具
  ☆2,211Jul 12, 2021Updated 4 years ago
• Lucifer1993 / struts-scan

  View on GitHub
  Python2编写的struts2漏洞全版本检测和利用工具
  ☆1,419May 7, 2019Updated 6 years ago
• Ridter / redis-rce

  View on GitHub
  Redis 4.x/5.x RCE
  ☆975Nov 30, 2021Updated 4 years ago
• JoyChou93 / java-sec-code

  View on GitHub
  Java web common vulnerabilities and security code which is base on springboot and spring security
  ☆2,649Dec 2, 2024Updated last year
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,011May 21, 2024Updated last year
• ztosec / secscan-authcheck

  View on GitHub
  越权检测工具
  ☆746Jun 17, 2022Updated 3 years ago
• aleenzz / MYSQL_SQL_BYPASS_WIKI

  View on GitHub
  mysql注入,bypass的一些心得
  ☆1,326Jun 25, 2024Updated last year
• Mochazz / ThinkPHP-Vuln

  View on GitHub
  关于ThinkPHP框架的历史漏洞分析集合
  ☆1,120Jan 18, 2020Updated 6 years ago
• timwhitez / crawlergo_x_XRAY

  View on GitHub
  360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
  ☆1,183Nov 10, 2021Updated 4 years ago
• aleenzz / Cobalt_Strike_wiki

  View on GitHub
  Cobalt Strike系列
  ☆2,413Dec 3, 2023Updated 2 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• Lucifer1993 / TPscan

  View on GitHub
  一键ThinkPHP漏洞检测
  ☆1,163Nov 1, 2023Updated 2 years ago
• LangziFun / LangSrcCurise

  View on GitHub
  SRC子域名资产监控
  ☆1,299Jan 14, 2021Updated 5 years ago
• hongriSec / PHP-Audit-Labs

  View on GitHub
  一个关于PHP的代码审计项目
  ☆1,913Sep 17, 2019Updated 6 years ago
• Threezh1 / JSFinder

  View on GitHub
  JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
  ☆2,913Nov 24, 2021Updated 4 years ago
• se55i0n / DBScanner

  View on GitHub
  自动扫描内网常见sql、no-sql数据库脚本(mysql、mssql、oracle、postgresql、redis、mongodb、memcached、elasticsearch)，包含未授权访问及常规弱口令检测
  ☆567Dec 1, 2017Updated 8 years ago
• m6a-UdS / ssrf-lab

  View on GitHub
  Lab for exploring SSRF vulnerabilities
  ☆247May 30, 2021Updated 4 years ago
• boy-hack / wooyun-payload

  View on GitHub
  从wooyun中提取的payload，以及burp插件
  ☆842Jun 17, 2022Updated 3 years ago
• LandGrey / webshell-detect-bypass

  View on GitHub
  绕过专业工具检测的Webshell研究文章和免杀的Webshell
  ☆1,733Nov 15, 2020Updated 5 years ago
• fofapro / vulfocus

  View on GitHub
  🚀Vulfocus 是一个漏洞集成平台，将漏洞环境 docker 镜像，放入即可使用，开箱即用。
  ☆3,437Sep 9, 2025Updated 5 months ago
• yzddmr6 / webshell-venom

  View on GitHub
  免杀webshell无限生成工具
  ☆1,288Apr 3, 2020Updated 5 years ago
• r35tart / RW_Password

  View on GitHub
  此项目用来提取收集以往泄露的密码中符合条件的强弱密码
  ☆1,132Apr 1, 2019Updated 6 years ago
• 0xn0ne / weblogicScanner

  View on GitHub
  weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…
  ☆2,072Nov 24, 2023Updated 2 years ago
• feihong-cs / ShiroExploit-Deprecated

  View on GitHub
  Shiro550/Shiro721 一键化利用工具，支持多种回显方式
  ☆1,951Jun 4, 2021Updated 4 years ago
• 0verSp4ce / DoraBox

  View on GitHub
  DoraBox - Basic Web Vulnerability Training
  ☆802Jul 15, 2023Updated 2 years ago
• rebeyond / Behinder

  View on GitHub
  “冰蝎”动态二进制加密网站管理客户端
  ☆6,137Aug 24, 2023Updated 2 years ago
• Qianlitp / crawlergo

  View on GitHub
  A powerful browser crawler for web vulnerability scanners
  ☆3,016Mar 11, 2025Updated 11 months ago
• uknowsec / Active-Directory-Pentest-Notes

  View on GitHub
  个人域渗透学习笔记
  ☆1,801Feb 7, 2020Updated 6 years ago