inspiringz / CVE-2021-22205View external linksLinks
GitLab CE/EE Preauth RCE using ExifTool
☆237Jan 16, 2022Updated 4 years ago
Alternatives and similar repositories for CVE-2021-22205
Users that are interested in CVE-2021-22205 are comparing it to the libraries listed below
Sorting:
- ☆342Jun 7, 2022Updated 3 years ago
- 帆软/致远密码解密工具☆360Jul 29, 2021Updated 4 years ago
- 改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能☆279Nov 28, 2023Updated 2 years ago
- zip slip☆38Apr 7, 2023Updated 2 years ago
- vhost password decrypt☆262Oct 9, 2024Updated last year
- 基于dbcp的fastjson rce 回显☆197Jun 28, 2021Updated 4 years ago
- 适合在命令行中使用的轻巧的SQL Server数据库安全检测工具☆431Oct 23, 2021Updated 4 years ago
- ZipCreater主要应用于跨目录的文件上传漏洞的利用,它能够快速进行压缩包生成。☆187Apr 6, 2022Updated 3 years ago
- Exchange 服务器安全性的辅助测试工具☆332Jul 21, 2023Updated 2 years ago
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入☆770Jan 26, 2022Updated 4 years ago
- fastjson 被动扫描、不出网payload生成☆367Nov 19, 2021Updated 4 years ago
- Windows活动目录中的LDAP信息收集工具☆234Oct 9, 2021Updated 4 years ago
- Shiro-550 不依赖CC链利用工具☆451Jun 19, 2024Updated last year
- CVE-2021-21972 Exploit☆500Jun 8, 2023Updated 2 years ago
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆753Apr 14, 2021Updated 4 years ago
- Xshell全版本密码恢复工具☆927Jun 8, 2023Updated 2 years ago
- Java RCE 回显测试代码☆1,015Oct 15, 2020Updated 5 years ago
- One-click injection into the SSHD process to record and send the password for ssh login☆426Mar 12, 2024Updated last year
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆108Jan 8, 2021Updated 5 years ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- 域控安全one for all☆736Sep 9, 2024Updated last year
- Nmap script to guess* a GitLab version.☆249Updated this week
- 注入JVM进程 动态获取目标进程连接的数据库☆342Mar 6, 2022Updated 3 years ago
- ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。☆1,632Jun 16, 2024Updated last year
- 一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webs…☆1,464Apr 25, 2024Updated last year
- 获取Exchange信息的小工具☆231Oct 26, 2023Updated 2 years ago
- A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …☆268Oct 17, 2025Updated 4 months ago
- 提取DC日志,快速获取域用户对应IP地址☆308Mar 21, 2022Updated 3 years ago
- ☆195Dec 22, 2021Updated 4 years ago
- ☆294May 7, 2022Updated 3 years ago
- ☆117Sep 13, 2023Updated 2 years ago
- 防火墙出网探测工具,内网穿透型socks5代理☆270Nov 12, 2021Updated 4 years ago
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆778Feb 13, 2025Updated last year
- 创建隐藏计划任务,权限维持,Bypass AV☆556Sep 1, 2021Updated 4 years ago
- C# POC for CVE-2021-26855 aka ProxyLogon, supports the classically semi-interactive web shell as well as shellcode injection☆252Mar 31, 2021Updated 4 years ago
- 获取服务器或域控登录日志☆276Sep 8, 2023Updated 2 years ago
- fastjson不出网利用、c3p0☆255Jul 30, 2021Updated 4 years ago
- ☆274Oct 28, 2021Updated 4 years ago
- Fastjson姿势技巧集合☆1,824Oct 20, 2023Updated 2 years ago