huimzjty / vulwikiView external linksLinks
热门框架/组件/服务漏洞的描述/利用/修复
☆12Apr 13, 2023Updated 2 years ago
Alternatives and similar repositories for vulwiki
Users that are interested in vulwiki are comparing it to the libraries listed below
Sorting:
- Web shell generation tool written in go☆12Feb 28, 2023Updated 2 years ago
- CVE-2020-13933 靶场: shiro 认证绕过漏洞☆14Apr 9, 2023Updated 2 years ago
- 基于go语言的帆软报表漏洞检测工具☆14Sep 4, 2022Updated 3 years ago
- 本软件首先集成危害性较大框架和部分主流cms的rce(无需登录,或者登录绕过执行rce)和反序列化(利用链简单)。傻瓜式导入url即可实现批量getshell。批量自动化测试。例如:Thinkphp,Struts2,weblogic。出现的最新漏洞进行实时跟踪并且更新例如:…☆17May 22, 2022Updated 3 years ago
- 【随机动态生成】php免杀webshell☆37Feb 5, 2022Updated 4 years ago
- ZentaoSqli 禅道存在SQL注入漏洞 CNVD-2022-42853☆20Aug 22, 2022Updated 3 years ago
- weblogic批量打入内存马,electron+vue3+springboot实现。☆54Mar 13, 2024Updated last year
- 炭火,渗透测试全流程工具☆24Sep 1, 2025Updated 5 months ago
- 遮天免杀☆27Jun 29, 2022Updated 3 years ago
- 2025护网POC☆46Jul 31, 2025Updated 6 months ago
- 一个自动挖掘漏洞的框架,日后会发展成强大的信息收集+漏洞挖掘脚本!☆26May 27, 2022Updated 3 years ago
- ☆30Dec 6, 2024Updated last year
- icmp隧道远控工具,支持交互式shell(session/beacon)、文件传输,可选通讯加密方式、包步态等,在流量对抗上做了增强。☆51Aug 11, 2025Updated 6 months ago
- Thinkphp各版本漏洞验证脚本☆32Mar 16, 2023Updated 2 years ago
- 一个简单的socks5服务器,实现一键启动本机socks5代理服务,同时支持设置简单的鉴权。☆27Oct 26, 2022Updated 3 years ago
- 打CTF实在厌倦了找利用链,就知道一个fastjson的版本,一堆依赖找啊找,头都疼。为了解决这个烦恼,用了卓卓师傅的fastjson黑名单工具和库,自己改造了一下。☆32Jan 3, 2020Updated 6 years ago
- Golang implement winrm client with pass the hash☆32Apr 29, 2024Updated last year
- CScan 是一个基于Go语言开发的网络空间资产搜索工具,支持多个主流网络空间搜索引擎:FOFA Hunter Quake,能够快速搜索IP、域名等资产信息。☆42Jan 16, 2025Updated last year
- This is the ringzer0 writeup of web exploitation catagery. The name is "Word mean something"☆14Dec 8, 2023Updated 2 years ago
- 通过Web获取访客机器的hostname字段内容。☆65Oct 19, 2021Updated 4 years ago
- zoomeye客户端 钟馗之眼客户端☆11Feb 15, 2022Updated 4 years ago
- 基于bpmn 2.0协议实现的工作流引擎☆12Jan 17, 2024Updated 2 years ago
- 一款内网快速打点的辅助性扫描工具,方便红队人员在内网横向移动前期的信息搜集、漏洞探测利用环节的工作开展。其工具特性主要为支持一键化三个档位的便捷式信息与漏洞扫描或每个功能模块单独式扫描探测功能。☆88Dec 14, 2022Updated 3 years ago
- Java漏洞调试分析集合☆91Mar 11, 2024Updated last year
- 快速切换公司,家里,机房,客户公司等各种场景ip设置☆37Dec 15, 2017Updated 8 years ago
- 简单的分离免杀demo☆42Apr 23, 2021Updated 4 years ago
- weblogic历史漏洞利用工具☆91Jul 25, 2022Updated 3 years ago
- Interactive Shells like PsExec, but in Go☆16Apr 30, 2025Updated 9 months ago
- 🐍 Python Exploit for CVE-2022-0739☆11Dec 9, 2022Updated 3 years ago
- CVE-2021-4034 POC and Docker and Analysis write up☆12May 23, 2022Updated 3 years ago
- Apache Superset Auth Bypass (CVE-2023-27524)☆11May 9, 2023Updated 2 years ago
- We defined the interfaces of four Python classes, namely ABE, Authority, User, and init, using the Charm-Crypto framework.☆11Apr 1, 2023Updated 2 years ago
- ☆10Dec 10, 2025Updated 2 months ago
- bypassing the twitter safety link firewall :)☆12May 4, 2025Updated 9 months ago
- This Log4j RCE exploit originated from https://github.com/tangxiaofeng7/CVE-2021-44228-Apache-Log4j-Rce☆10Dec 16, 2021Updated 4 years ago
- 代码审计关键词扫描工具☆11Apr 29, 2024Updated last year
- Toolkit for Active Directory security assessments.☆10Jun 4, 2024Updated last year
- 资产测绘输出xlsx表格☆14Sep 10, 2024Updated last year
- Trustzone Exploit that allows running code in secure mode on Surface RT (Tegra 3) with the help of Yahallo (by imbushuo)☆11Mar 30, 2023Updated 2 years ago