j2ekim / YApi_exp
YApi REC 远程代码执行漏洞利用工具
☆11Updated 3 years ago
Alternatives and similar repositories for YApi_exp:
Users that are interested in YApi_exp are comparing it to the libraries listed below
- log4j2 RCE漏洞(CVE-2021-44228)内网扫描器,可用于在不出网的条件下进行漏洞扫描,帮助企业内部快速发现Log4jShell漏洞。☆37Updated 3 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated 2 years ago
- burp插件:python版,token防重放绕过☆20Updated 4 years ago
- ☆29Updated 3 years ago
- 详见公众号☆39Updated last year
- CNVD-2021-30167 用友NC BeanShell远程代码执行☆30Updated 3 years ago
- 内网渗透相关总结☆37Updated 3 years ago
- gophish批量操作,适用于大批量钓鱼演练☆30Updated 4 years ago
- 用友NC反序列化漏洞payload生成☆72Updated 2 years ago
- 这是一个通过监听网络请求获取发起请求进程的脚本☆25Updated 10 months ago
- 文件下载命令快捷生成器,单文件版☆32Updated 4 years ago
- 金蝶云星空 erp反序列化命令执行漏洞批量扫描POC&EXP,带命令回显☆32Updated last year
- 基于BurpShiroPassiveScan修改增加了Xray回显链生成☆54Updated 2 years ago
- 基于SerializationDumper的Shiro Cookie序列化数据解密小工具☆52Updated 4 years ago
- 一个Spring4Shell 被动式检测的Burp插件☆93Updated 3 years ago
- 一款Golang编写的Struts2漏洞检测和利用工具,支持并发批 量检测☆53Updated 3 years ago
- ☆12Updated 3 years ago
- ☆81Updated 3 years ago
- XxlJob<=2.1.2配置不当情况下反序列化RCE☆94Updated 4 years ago
- ☆14Updated 4 years ago
- Linux SUID 提权检测脚本,自动分析具有 s 权限的可执行文件并给出相应的提权利用方法☆50Updated 4 years ago
- AutoScan 有多个目标时,多线程调用xray+rad进行自动扫描☆88Updated 2 years ago
- 用于下载nacos的所有配置管理列表到同一个txt☆31Updated 2 weeks ago
- ☆28Updated last year
- PoC for pocsuite3 and nuclei☆55Updated 2 years ago
- burpsuite wildcard 插件维护分支☆1Updated 2 years ago
- 一个超级缝合怪的图形化渗透工具☆35Updated 3 years ago
- FofaMap云查询版是基于C/S架构打造的Fofa数据采集器,仅需配置好一个服务端,即可实现多个客户端同时在线查询,其客户端支持FofaMap国庆版全部功能。☆38Updated 2 years ago
- 用于windows反弹shell的yaml-payload☆71Updated 3 years ago
- 《ASPX安全-只有ASPX安全才能拯救.NET》Only ASPX Security Can Save The NET.☆35Updated 2 years ago