自动化被动扫描系统分为数据源、数据处理、漏洞验证等三个子系统,本系统属于漏洞验证部分,根据提供的数据进行分布式安全验证,确定是否包含相关严重漏洞。
☆49Dec 26, 2017Updated 8 years ago
Alternatives and similar repositories for PassiveSecCheck
Users that are interested in PassiveSecCheck are comparing it to the libraries listed below
Sorting:
- 自动化被动扫描系统分为数据源、数据处理、漏洞验证等三个子系统,本系统属于数据处理部分,抓取流量镜像的数据,进行分析过滤去重等操作,发送至消息队列中,等待PassiveSecCheck消费☆34Dec 21, 2017Updated 8 years ago
- 针对大量WEB资产进行分布式WEB安全扫描,发现web环境下常规的一些安全漏洞☆99Apr 19, 2019Updated 6 years ago
- 安全狗sql注入绕过☆29Mar 21, 2018Updated 7 years ago
- nmap模块扫描端口服务后,调用对应的exp检测☆12Jun 9, 2018Updated 7 years ago
- My AI security testing projects☆41Jan 16, 2019Updated 7 years ago
- Kerberos accounts enumeration taking advantage of AS-REQ☆43Apr 25, 2018Updated 7 years ago
- 一款简易的插件化的漏洞扫描器框架☆67Sep 23, 2018Updated 7 years ago
- 常用系统服务默认端口列表☆13Apr 25, 2017Updated 8 years ago
- Reverseshell Generator☆10Dec 13, 2017Updated 8 years ago
- 乌云tangscan扫描器插件☆16Apr 30, 2017Updated 8 years ago
- !!!不建议使用了,可以使用AuditBeat!!! Linux服务器命令监控辅助脚本,ElasticSearch + Logstash + Kibana + Redis + Auditd☆28Apr 10, 2019Updated 6 years ago
- PoC code for crashing windows active directory☆35Sep 19, 2018Updated 7 years ago
- 以甲方安全人员的视角,尽可能收集发现企业的域名和服务器公网IP资产☆65Dec 15, 2017Updated 8 years ago
- 从扫描器结果分离出的一些大公司泛解析ip列表☆60Jun 8, 2017Updated 8 years ago
- PoC of Remote Command Execution via Log injection on SAP NetWeaver AS JAVA CRM☆52Mar 14, 2018Updated 7 years ago
- 对公网IP列表进行端口服务扫描,发现周期内的端口服务变化情况和弱口令安全风险☆608Apr 12, 2021Updated 4 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆10Mar 18, 2019Updated 6 years ago
- CVE-2017-4878 Samples - http://blog.talosintelligence.com/2018/02/group-123-goes-wild.html☆18Feb 5, 2018Updated 8 years ago
- Malicious PDF document parsing tool☆16Nov 1, 2017Updated 8 years ago
- 基于burpsuite headless 的代理式被动扫描系统☆95Feb 10, 2020Updated 6 years ago
- 扫描器Awvs 11和Nessus 7 Api利用脚本☆112Jan 25, 2018Updated 8 years ago
- PoC Code for CVE-2018-16712 (exploit by MmMapIoSpace)☆25Dec 1, 2018Updated 7 years ago
- 简单的Linux远程控制☆20Jun 3, 2017Updated 8 years ago
- 一款分布式被动代理式扫描器☆20Apr 12, 2018Updated 7 years ago
- A simple script for exploit RCE for Struts 2 S2-053(CVE-2017-12611)☆37Sep 8, 2017Updated 8 years ago
- This repository contains some details about abusing outlook.☆27Aug 17, 2018Updated 7 years ago
- PHP 白盒分析工具,结合AST 和数据流跟踪分析代码,达到自动化白盒审计功能☆148May 14, 2018Updated 7 years ago
- ☆11Jun 25, 2016Updated 9 years ago
- web模糊测试 - 将漏洞可能性放大☆145Apr 23, 2019Updated 6 years ago
- Phantom eye——A passive business logic vulnerability auditing tool☆52Mar 25, 2019Updated 6 years ago
- Learn how to get a reverse shell from JIRA application server☆24Dec 2, 2018Updated 7 years ago
- a tool to manipulate dcc(domain cached credentials) in windows registry, based mainly on the work of mimikatz and impacket☆68Aug 22, 2018Updated 7 years ago
- 基于爬虫的web漏洞扫描器☆155Oct 15, 2020Updated 5 years ago
- Updated version for the tool UltraRealy with support of the CVE-2019-1040 exploit☆20Jun 19, 2019Updated 6 years ago
- Linux AV tests☆13Apr 23, 2019Updated 6 years ago
- 一个Web版的docker管理程序,可以用来运行各种docker漏洞环境和CTF环境。☆102Nov 30, 2019Updated 6 years ago
- Web scan foundation framework☆23Nov 17, 2017Updated 8 years ago
- 批量漏洞扫描框架☆122Apr 24, 2024Updated last year
- Reverse Shell as a Service☆66Nov 9, 2020Updated 5 years ago