hongriSec / PHP-Audit-LabsView external linksLinks
一个关于PHP的代码审计项目
☆1,910Sep 17, 2019Updated 6 years ago
Alternatives and similar repositories for PHP-Audit-Labs
Users that are interested in PHP-Audit-Labs are comparing it to the libraries listed below
Sorting:
- PHP代码审计分段讲解☆1,721Aug 29, 2022Updated 3 years ago
- 关于ThinkPHP框架的历史漏洞分析集合☆1,118Jan 18, 2020Updated 6 years ago
- 一个各种方式突破Disable_functions达到命令执行的shell☆1,198Oct 17, 2023Updated 2 years ago
- Java web common vulnerabilities and security code which is base on springboot and spring security☆2,645Dec 2, 2024Updated last year
- Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…☆2,689Mar 14, 2024Updated last year
- Burp suite 分块传输辅助插件☆2,021Feb 23, 2022Updated 3 years ago
- 1000个PHP代码审计案例(2016.7以前乌云公开漏洞)☆1,110Jul 26, 2016Updated 9 years ago
- 自己学习java安全的一些总结,主要是安全审计相关☆1,694Jan 5, 2022Updated 4 years ago
- Share Things Related to Java - Java安全漫谈笔记相关内容☆1,989Apr 9, 2025Updated 10 months ago
- KunLun-M是一个完全开源的静态白盒扫描工具,支持PHP、JavaScript的语义扫描,基础安全、组件安全扫描,Chrome Ext\Solidity的基础扫描。☆2,379Jan 16, 2026Updated 3 weeks ago
- mysql注入,bypass的一些心得☆1,326Jun 25, 2024Updated last year
- You Know, For WEB Fuzzing !☆8,255Nov 13, 2023Updated 2 years ago
- 记录自己对《代码审计》的理解和总结,对危险函数的深入分析以及在p牛的博客和代码审计圈的收获☆980Oct 8, 2018Updated 7 years ago
- python安全和代码审计相关资料收集 resource collection of python security and code review☆1,353Aug 6, 2020Updated 5 years ago
- SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list☆6,114Mar 10, 2021Updated 4 years ago
- 《Java安全-只有Java安全才能拯救宇宙》Only Java Security Can Save The Universe.☆2,874Aug 4, 2023Updated 2 years ago
- 绕过专业工具检测的Webshell研究文章和免杀的Webshell☆1,732Nov 15, 2020Updated 5 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- Cobalt Strike系列☆2,411Dec 3, 2023Updated 2 years ago
- Weblogic一键漏洞检测工具,V1.5,更新时间:20200730☆2,263May 22, 2023Updated 2 years ago
- Code-Audit-Challenges☆991Nov 17, 2018Updated 7 years ago
- 红队作战中比较常遇到的一些重点系统漏洞整理。☆2,521Jul 17, 2021Updated 4 years ago
- Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、…☆4,274Apr 4, 2021Updated 4 years ago
- JNDI服务利用工具 RMI/LDAP,支持部 分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,010May 21, 2024Updated last year
- bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)☆1,170Aug 7, 2021Updated 4 years ago
- JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.☆2,909Nov 24, 2021Updated 4 years ago
- 上传漏洞fuzz字典生成脚本☆1,271Apr 1, 2021Updated 4 years ago
- Getting started with java code auditing 代码审计入门的小项目☆930Feb 22, 2023Updated 2 years ago
- “冰蝎”动态二进制加密网站管理客户端☆6,129Aug 24, 2023Updated 2 years ago
- EHole(棱洞)3.0 重构版-红队重点攻击系统指纹探测工具☆3,435Apr 2, 2024Updated last year
- 360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能☆1,183Nov 10, 2021Updated 4 years ago
- SRC子域名资产监控☆1,300Jan 14, 2021Updated 5 years ago
- 2018年初整理的一些内网渗透TIPS,后面更新的慢,所以整理出来希望跟小伙伴们一起更新维护~☆4,610Feb 24, 2023Updated 2 years ago
- 远控免杀系列文章及配套工具,汇总测试了互联网上的几十种免杀工具、113种白名单免杀方式、8种代码编译免杀、若干免杀实战技术,并对免杀效果进行了一一测试,为远控的免杀和杀软对抗免杀提供参考。☆5,021Sep 14, 2024Updated last year
- 从零开始内网渗透学习☆3,009Apr 8, 2016Updated 9 years ago
- Struts2全漏洞扫描利用工具☆2,209Jul 12, 2021Updated 4 years ago
- CMS漏洞测试用例集合☆1,767Dec 20, 2018Updated 7 years ago
- 应急响应实战笔记,一个安全工程师的自我修养。☆5,507Jun 26, 2023Updated 2 years ago
- 代码审计相关的一些知识☆423Jun 25, 2024Updated last year