c0ny1 / xxe-labLinks
一个包含php,java,python,C#等各种语言版本的XXE漏洞Demo
☆802Updated 2 years ago
Alternatives and similar repositories for xxe-lab
Users that are interested in xxe-lab are comparing it to the libraries listed below
Sorting:
- Burpsuite-Plugins-Usage☆517Updated 5 years ago
- 增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持☆964Updated last year
- XssPayload List . Usage:☆731Updated 5 years ago
- 上传漏洞fuzz字典生成脚本☆1,266Updated 4 years ago
- 从wooyun中提取的payload,以及burp插件☆840Updated 3 years ago
- 在渗透测试中快速检测常见中间件、组件的高危漏洞。☆732Updated 3 years ago
- SvnExploit支持SVN源代码泄露全版本Dump源码☆1,006Updated 2 years ago
- bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)☆1,160Updated 4 years ago
- 360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能☆1,189Updated 3 years ago
- Burp被动扫描流量转发插件☆1,448Updated last year
- PoCBox - Vulnerability Test Aid Platform☆960Updated last year
- Shiro<=1.2.4反序列化,一键检测工具☆988Updated 4 years ago
- sqlmap4burp++是一款兼容Windows,mac,linux多个系统平台的Burp与sqlmap联动插件☆782Updated 5 years ago
- MSSQL注入提权,bypass的一些总结☆730Updated last year
- 日常src平台域名收集☆593Updated 6 years ago
- Burp suite 分块传输辅助插件☆1,999Updated 3 years ago
- Weblogic环境搭建工具☆800Updated 5 years ago
- myscan 被动扫描☆664Updated 4 years ago
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。☆1,177Updated 6 years ago
- 通过BurpSuite来构建自己的爆破字典,可以通过字典爆破来发现隐藏资产。☆501Updated last year
- ☆182Updated 7 years ago
- PC客户端(C-S架构)渗透测试checklist / Client side(C-S) penetration checklist☆665Updated 4 years ago
- Tomcat-Ajp协议文件读取漏洞☆790Updated 5 years ago
- 一个各种方式突破Disable_functions达到命令执行的shell☆1,199Updated last year
- Java反序列化漏洞利用工具V1.0 Java反序列化相关漏洞的检查工具,采用JDK 1.8+NetBeans8.2开发,软件运行必须安装JDK 1.8或者以上版本。 支持:weblogic xml反序列化漏洞 CVE-2017-10271/CNVD-C-2019…☆497Updated 5 years ago
- thinkphp v5.x 远程代码执行漏洞-POC集合☆1,159Updated 6 years ago
- Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)☆1,360Updated 2 years ago
- Apache Shiro 反序列化漏 洞检测与利用工具☆563Updated 5 years ago
- AWD攻防赛webshell批量利用框架☆408Updated 6 years ago
- MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize☆1,346Updated 3 years ago