notes some projects in github
☆50Dec 29, 2025Updated 4 months ago
Alternatives and similar repositories for PentestLog
Users that are interested in PentestLog are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Python3 script to quickly get various information from a domain controller through his LDAP service.☆14Jan 4, 2022Updated 4 years ago
- CVE-2022-22978 Spring-Security bypass Demo☆15Jun 2, 2022Updated 3 years ago
- ☆32Apr 23, 2023Updated 3 years ago
- A method of bypassing EDR's active projection DLL's by preventing entry point exection☆24May 10, 2021Updated 5 years ago
- CVE-2023-38646 Metabase RCE☆55Oct 11, 2023Updated 2 years ago
- End-to-end encrypted email - Proton Mail • AdSpecial offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
- Java安全学习历程☆42Jul 7, 2023Updated 2 years ago
- Basic Psexec clone, but in golang.☆17Jul 2, 2022Updated 3 years ago
- 用友NC反序列化漏洞payload生成☆75Aug 30, 2022Updated 3 years ago
- 禅道研发项目管理系统`misc-captcha-user`认证绕过后台命令注入漏洞☆109Apr 24, 2023Updated 3 years ago
- 一款微信小程序源码包信息收集工具,根据已有项目改编☆24Feb 11, 2025Updated last year
- CVE-2022-39197 RCE POC☆13Oct 22, 2022Updated 3 years ago
- Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势☆15Sep 22, 2021Updated 4 years ago
- Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。☆11Nov 28, 2022Updated 3 years ago
- 7bits安全团队-《Java安全-记一次实战使用memoryshell》代码样例☆19Nov 13, 2022Updated 3 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- CVE-2022-22947注入哥斯拉内存马☆28Jun 21, 2023Updated 2 years ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆290Nov 20, 2023Updated 2 years ago
- ☆34Apr 7, 2022Updated 4 years ago
- Extract entire function source code based on giving line number using Javaparser☆21Jul 15, 2025Updated 10 months ago
- MyDict - 自行收集的高频使用字典文件☆82May 8, 2025Updated last year
- Rshell-web☆29May 14, 2026Updated last week
- 内存马持久化☆59May 19, 2022Updated 4 years ago
- 基于dbcp的fastjson rce 回显☆197Jun 28, 2021Updated 4 years ago
- fscan结果优化,更新DC域筛选☆10Nov 21, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- 阿里巴巴��安全SDK,提供SSRF、JDBC、XXE防护能力☆119Oct 15, 2025Updated 7 months ago
- 金蝶星空云反序列化漏洞内存马☆53Mar 27, 2024Updated 2 years ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆71Jul 22, 2025Updated 10 months ago
- Sqlinfo是一款快速探测数据库信息工具☆100Oct 30, 2022Updated 3 years ago
- 绕过360、火绒等安全设备拦截添加用户☆15Feb 15, 2022Updated 4 years ago
- 网络安全工作做使用到的工具、插件☆24Mar 8, 2022Updated 4 years ago
- Java bytecode line number restoration tool☆142Aug 31, 2025Updated 8 months ago
- 主要放一些关于域内安全和红队攻防的学习和研究记录☆37Jun 4, 2019Updated 6 years ago
- 一款支持自定义的 Java 回显载荷生成工具|A customizable Java echo payload generation tool.☆464Jan 12, 2025Updated last year
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- 子域名爆破,增加了智能爬虫功能☆70Mar 22, 2024Updated 2 years ago
- 代码审计工具,用于监听mysql日志,支持mysql8.0以上和以下的版本。☆34Nov 11, 2021Updated 4 years ago
- GYscan是一款基于Go语言开发的现代化综合渗透测试工具,专为安全研究人员、渗透测试工程师和红队成员设计。项目采用模块化架构,包含C2服务器端和客户端组件,支持Windows和Linux平台,提供系统安全分析和漏洞扫描功能。☆78May 6, 2026Updated 3 weeks ago
- xxl-job漏洞综合利用工具☆157Jun 3, 2025Updated 11 months ago
- 用Go+Fyne开发的,展示JAVA序列化流以及集成一键插入脏数据,UTF过长编码绕WAF(Utf OverLoad Encoding),修改类SerializeVersionUID功能的图形化工具。☆127Jan 14, 2025Updated last year
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆88Jul 6, 2023Updated 2 years ago
- Geoserver综合利用工具☆120Jan 7, 2026Updated 4 months ago