Alternatives and similar repositories for hb:

Users that are interested in hb are comparing it to the libraries listed below

• Qclover / jsspider
  A js infomation dig tool.
  ☆69Updated 4 years ago
• wuppp / shiro_rce_exp
  Shiro RCE (Padding Oracle Attack)
  ☆143Updated 5 years ago
• uknowsec / BurpSuite-Extender-fastjson
  Reference：https://www.w2n1ck.com/article/44/
  ☆152Updated 4 years ago
• kingkaki / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆102Updated 4 years ago
• 1c3z / fileleak
  又一款敏感文件泄漏检测工具
  ☆104Updated 5 years ago
• S9MF / Xss_Test
  记录个人XSS学习
  ☆105Updated 4 years ago
• jas502n / CVE-2019-2888
  WebLogic EJBTaglibDescriptor XXE漏洞(CVE-2019-2888)
  ☆58Updated 5 years ago
• jas502n / SHIRO-721
  RememberMe Padding Oracle Vulnerability RCE
  ☆71Updated 5 years ago
• tobechenghuai / Shiro_721_Padding_Oracle_RCE
  Shiro_721 exp 纯手工实现Padding Oracle整个过程
  ☆68Updated 5 years ago
• is101101 / sqlmap_chunked_proxy
  sqlmap分块传输代理
  ☆51Updated 5 years ago
• guimaizi / testing_wave
  ☆58Updated 4 years ago
• ekgg / Caidao-AES-Version
  一个Burp插件，实现用AES算法透明加密原版菜刀Caidao.exe与服务器端交互的http数据流
  ☆79Updated 6 years ago
• timwhitez / Frog-Fp
  🐸fingerprint detect framework 批量深度指纹识别框架
  ☆119Updated 2 years ago
• DSO-Lab / defvul
  DSO-Lab 漏洞研究成果整理
  ☆82Updated 2 years ago
• iSafeBlue / fastjson-autotype-bypass-demo
  fastjson 1.2.68 版本 autotype bypass
  ☆140Updated 2 years ago
• jas502n / SHIRO-550
  Shiro RememberMe 1.2.4 反序列化 漏洞
  ☆53Updated 5 years ago
• QAX-A-Team / HideShell
  A JSP backdoor that enables under Tomcat hiding arbitrary JSP files, in addition to their access logs.
  ☆214Updated 5 years ago
• Jumbo-WJB / burp_find_shiro
  通过burp代理流量寻找shiro站点
  ☆60Updated 4 years ago
• StarkChristmas / Shiro_exploit
  Apache Shiro Java Analysis and Utilization of Deserialization Vulnerabilities
  ☆41Updated 4 years ago
• r35tart / RedisDirScan
  此脚本用于测试 Rdies 未授权访问，在没权限写ssh私钥和定时任务又不知道web绝对路径的情况下，进行WEB目录探测
  ☆73Updated 5 years ago
• whirlwind110 / tphack
  Thinkphp3/5 Log文件泄漏利用工具
  ☆60Updated 7 years ago
• feihong-cs / JspMaster-Deprecated
  一款基于webshell命令执行功能实现的GUI webshell管理工具，支持流量加密
  ☆216Updated 3 years ago
• jiansiting / CVE-2019-2725
  weblogic绕过和wls远程执行
  ☆36Updated 5 years ago
• we1h0 / SiteServer-CMS-Remote-download-Getshell
  SiteServer CMS 5.x远程模板下载Getshell漏洞
  ☆69Updated 4 years ago
• jas502n / SpringBoot_Actuator_RCE
  SpringBoot_Actuator_RCE
  ☆97Updated 4 years ago
• admintony / shiro_rememberMe_Rce
  利用长亭xray高级版的回显Gadget重写的一个shiro反序列化利用工具。
  ☆123Updated 4 years ago
• shengqi158 / Jackson-databind-RCE-PoC
  ☆80Updated 7 years ago
• NS-Sp4ce / MoAn_Honey_Pot_Urls
  X安蜜罐用的一些存在JSonp劫持的API
  ☆93Updated 3 years ago
• threedr3am / tomcat-cluster-session-sync-exp
  tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包， 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
  ☆213Updated 4 years ago
• TheKingOfDuck / burpJsEncrypter
  More Easier Burp Extension To Solve Javascript Front End Encryption,一款更易使用的解决前端加密问题的Burp插件。
  ☆45Updated 4 years ago