这个项目主要用于辅助测试Swagger的XSS漏洞
☆39Jun 11, 2022Updated 3 years ago
Alternatives and similar repositories for nginx_swagger
Users that are interested in nginx_swagger are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 一款扫描js中敏感api的burp插件☆38Aug 30, 2023Updated 2 years ago
- JavaAgent内存马实现、检测、修复demo☆11Dec 7, 2022Updated 3 years ago
- Xia_Yue_Plus 瞎越 增强版☆70Aug 20, 2025Updated 7 months ago
- FastJsonAutoTypeBypass☆16Apr 14, 2021Updated 4 years ago
- 完善的动态备份文件扫描工具 实现动态字典渲染、动态结果判断、自动字典记录、的敏感文件扫描器☆28May 21, 2025Updated 10 months ago
- asp.net内存马检测工具☆283Aug 22, 2023Updated 2 years ago
- 冰蝎、哥斯拉 jsp webshell通信流量解密器☆145Apr 18, 2023Updated 2 years ago
- 通过正则搜索、批量反编译特定Jar包中的class名称☆321Dec 9, 2021Updated 4 years ago
- 计算ip范围,支持 cidr,ip-range 格式的输入☆23Sep 5, 2023Updated 2 years ago
- 批量处理url链接,获取多级路径并打印☆46Jul 12, 2023Updated 2 years ago
- Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小☆66Jul 4, 2024Updated last year
- whatweb plus plugins☆17Sep 5, 2025Updated 6 months ago
- 使用java编写的CRLF-Injection-burp被动扫描插件☆45Dec 20, 2022Updated 3 years ago
- Text4Shell的burp被动扫描插件☆36Dec 29, 2022Updated 3 years ago
- 对/wgpsec/ENScan_GO的修改,只保留了爱企查接口,支持对外投资企业和子公司递归☆145Aug 19, 2023Updated 2 years ago
- DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名 产品(fuzz.red),Alphalog与传统DNSLog不同,更快、更安全。☆457Aug 20, 2025Updated 7 months ago
- Cola Dnslog v1.3.2 更加强大的dnslog平台/无�回显漏洞探测辅助平台 完全开源 dnslog httplog ldaplog rmilog 支持dns http ldap rmi等协议 提供API调用方式便于与其他工具结合 支持钉钉机器人、Bark等提醒…☆501Feb 6, 2023Updated 3 years ago
- BurpHttpHelper是一款Burpsuite插件,主要用于简化和解决Burpsuite对Http的一些操作.☆109Jan 22, 2023Updated 3 years ago
- AWS云平台 AccessKey 泄漏利用工具☆394Jul 18, 2023Updated 2 years ago
- 一款基于国内两大SEO搜索引擎爱站和站长之家的子域名爬取工具。☆14Jan 13, 2022Updated 4 years ago
- ☆28Aug 12, 2023Updated 2 years ago
- 禅道相关poc☆172Jun 20, 2024Updated last year
- 红队内网环境中一个能快速开启HTTP文件浏览服务的小工具 ,可执行Webshell,可用于在内网不出网时文件的下载,启动时会根据网卡IPV4地址输出URL(本地回环除外)。☆111Mar 19, 2023Updated 3 years ago
- HiddenDomainHunter☆20Apr 15, 2023Updated 2 years ago
- 一款代理扫描器☆566May 5, 2023Updated 2 years ago
- kill windows log☆45Mar 26, 2024Updated last year
- 大华智慧园区系统sso_initsession文件上传批量脚本☆21Sep 4, 2023Updated 2 years ago
- 基于load data逻辑漏洞的Mysql蜜罐☆23Jul 14, 2025Updated 8 months ago
- js / html /josn 中获取 泄露的接口 / URL / 未授权路径 获取之后尝试访问☆70Jan 26, 2022Updated 4 years ago
- 某软最新公开gadgegt,新加入不出网利用。☆89Sep 6, 2024Updated last year
- BCEL编解码工具☆16Aug 3, 2022Updated 3 years ago
- ☆343Mar 6, 2026Updated 2 weeks ago
- 自己的JNDI 利用工具,添加一些人性化功能☆131Sep 4, 2022Updated 3 years ago
- Java编写,Python作为辅助依赖的漏洞验证、利用工具,添加了进程查找模块、编码模块、命令模块、常见漏洞利用GUI模块、shiro rememberMe解密模块,加快测试效率☆761Feb 25, 2024Updated 2 years ago
- common methods that used by my burp extension projects☆52Apr 12, 2024Updated last year
- ☆36Dec 1, 2020Updated 5 years ago
- 绕过360、火绒等安全设备拦截添加用户☆15Feb 15, 2022Updated 4 years ago
- nuclei模版生成插件☆109Dec 19, 2023Updated 2 years ago
- Magisk burpsuite 证书模块,在安卓10以上通过magisk模块快速安装burpsuite证书☆41Feb 2, 2023Updated 3 years ago