cckuailong / YarnRpcRCE

Related projects: ⓘ

• coffeehb / Spring4Shell
  一个Spring4Shell 被动式检测的Burp插件
  ☆93Updated 2 years ago
• K1p2y3 / Tencent_Yun_tools
  ☁️Tencent Cloud AccessKey tools
  ☆16Updated 2 months ago
• nice0e3 / Cas_Exploit
  ☆70Updated this week
• SDNDTeam / CVE-2019-17558_Solr_Vul_Tool
  ☆39Updated this week
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆68Updated last year
• wuppp / releaseBehinderShell
  卸载冰蝎内存马
  ☆68Updated 3 years ago
• jas502n / ncDecode
  ☆152Updated this week
• Ghost2097221 / addMemShellsJSP
  通过jsp注入valve内存马，可以忽略框架影响，通用tomcat789
  ☆90Updated 2 years ago
• syyu6 / WinRpcTest
  利用RPC服务，批量探测内网Windows出网情况
  ☆115Updated 2 years ago
• mycve / BurpLogin
  ☆50Updated this week
• sv3nbeast / X-AutoXray
  AutoScan 有多个目标时，多线程调用xray+rad进行自动扫描
  ☆88Updated 2 years ago
• vaycore / vaycat
  ☆46Updated this week
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆48Updated last year
• test502git / Hosts_scanV2
  这是一个用于IP和域名碰撞匹配访问的小工具优化版，能减少碰撞中出来的误报，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。
  ☆45Updated 2 years ago
• cyxshizhu / OA-ezOFFICE
  ☆12Updated 3 years ago
• bkfish / yaml-payload-for-Win
  用于windows反弹shell的yaml-payload
  ☆66Updated 3 years ago
• ce-automne / FastjsonPatrol
  一款探测fastjson漏洞的BurpSuite插件
  ☆60Updated 2 years ago
• NS-Sp4ce / Frp_modify
  修改版FRP
  ☆67Updated 2 years ago
• mark0smith / Kunlun-M-GUI
  Kunlun-M 的GUI程序
  ☆50Updated last year
• Lotus6 / FileMonitor
  Java命令行文件监控小工具(代码审计)
  ☆92Updated 2 years ago
• r00tuser111 / SerializationDumper-Shiro
  基于SerializationDumper的Shiro Cookie序列化数据解密小工具
  ☆52Updated 4 years ago
• cyal1 / host_scan
  这是一个用于IP和域名碰撞匹配访问的小工具，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go
  ☆113Updated 2 years ago
• Conanjun / passive-scan-client-and-sendto
  burp被动扫描自动转发和手动重发插件
  ☆53Updated 4 years ago
• Axx8 / CVE-2022-22947_Rce_Exp
  Spring Cloud Gateway 远程代码执行漏洞Exp Spring_Cloud_Gateway_RCE_Exp-CVE-2022-22947
  ☆75Updated last year
• KpLi0rn / ysoserial
  在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆68Updated 3 years ago
• r3change / jdwp-shellifier
  ☆36Updated 2 years ago
• ort4u / Ortau
  ☆114Updated this week
• JohnnyZhouX / Intranet-Hacking
  内网渗透相关总结
  ☆37Updated 2 years ago
• dream0x01 / shiro-framework
  ☆37Updated this week