kunwu2023/kunwu

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/kunwu2023/kunwu)

kunwu2023 / kunwu

kunwu是新一代webshell检测引擎，使用了内置了模糊规则、污点分析模拟执行、机器学习三种高效的检测策略

☆295

Alternatives and similar repositories for kunwu

Users that are interested in kunwu are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

savior-only / Spring_All_Reachable
View on GitHub
Spring漏洞综合利用工具
☆674Jul 5, 2023Updated 2 years ago
Lotus6 / ConfluenceMemshell
View on GitHub
Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎内存马注入
☆555Feb 1, 2024Updated 2 years ago
KimJun1010 / WeblogicTool
View on GitHub
WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
☆1,777Nov 1, 2023Updated 2 years ago
Hel10-Web / Databasetools
View on GitHub
一款用Go语言编写的数据库自动化提权工具，支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接
☆861Aug 30, 2023Updated 2 years ago
pykiller / API-T00L
View on GitHub
互联网厂商API利用工具。
☆567Sep 13, 2024Updated last year
End-to-end encrypted email - Proton Mail • Ad
Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
zema1 / watchvuln
View on GitHub
一个高价值漏洞采集与推送服务 | Collect valueable vulnerabilities and push them to various services
☆1,790Nov 26, 2025Updated 4 months ago
kyo-w / router-router
View on GitHub
Java web路由内存分析工具
☆438May 22, 2025Updated 10 months ago
a1phaboy / FastjsonScan
View on GitHub
Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
☆1,051Oct 7, 2022Updated 3 years ago
shmilylty / netspy
View on GitHub
netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
☆2,203Jul 25, 2023Updated 2 years ago
TonyNPham / GodzillaPlugin-Suo5-MemProxy
View on GitHub
一款高性能 HTTP 内存代理 | 哥斯拉插件 | readteam | 红队 | 内存马 | Suo5 | Godzilla | 正向代理
☆288Aug 8, 2023Updated 2 years ago
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,470Apr 25, 2024Updated last year
yzddmr6 / ASP.NET-Memshell-Scanner
View on GitHub
asp.net内存马检测工具
☆283Aug 22, 2023Updated 2 years ago
pen4uin / java-memshell-generator
View on GitHub
一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
☆2,166Aug 21, 2025Updated 7 months ago
misaka19008 / PerlinPuzzle-Webshell-PHP
View on GitHub
使用分支对抗技术制作的PHP Webshell，截止2024年1月18日，共数十个查杀引擎免杀
☆304Jun 11, 2025Updated 9 months ago
Wordpress hosting with auto-scaling on Cloudways • Ad
Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
shuanx / BurpFingerPrint
View on GitHub
BurpSuite插件集成Ehole指纹库并进行常见OA弱口令爆破插件
☆743Sep 5, 2024Updated last year
pureqh / Hyacinth
View on GitHub
一款java漏洞集合工具
☆1,103Jan 13, 2026Updated 2 months ago
zema1 / suo5
View on GitHub
高性能 HTTP 正向代理工具 | A high-performance http tunneling tool
☆2,689Feb 2, 2026Updated last month
novysodope / fupo_for_yonyou
View on GitHub
用友漏洞检测，持续更新漏洞检测模块
☆479Jul 21, 2025Updated 8 months ago
yuyan-sec / Doraemon
View on GitHub
渗透辅助 BurpSuite 小插件
☆232Nov 26, 2025Updated 4 months ago
pen4uin / java-echo-generator
View on GitHub
一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
☆462Jan 12, 2025Updated last year
yhy0 / Jie
View on GitHub
Jie stands out as a comprehensive security assessment and exploitation tool meticulously crafted for web applications. Its robust suite o…
☆615Jul 5, 2024Updated last year
co01cat / SqlmapXPlus
View on GitHub
sqlmap Xplus 基于 sqlmap，对经典的数据库注入漏洞利用工具进行二开！
☆710Jan 21, 2025Updated last year
shuanx / BurpAPIFinder
View on GitHub
攻防演练过程中，我们通常会用浏览器访问一些资产，但很多未授权/敏感信息/越权隐匿在已访问接口过html、JS文件等，该插件能让我们发现未授权/敏感信息/越权/登陆接口等。
☆1,382Oct 3, 2024Updated last year
Open source password manager - Proton Pass • Ad
Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
whwlsfb / JDumpSpider
View on GitHub
HeapDump敏感信息提取工具
☆1,641Dec 15, 2025Updated 3 months ago
lintstar / LSTAR
View on GitHub
LSTAR - CobaltStrike 综合后渗透插件
☆1,263Jan 30, 2022Updated 4 years ago
LittleBear4 / OA-EXPTOOL
View on GitHub
OA综合利用工具，集合将近20款OA漏洞批量扫描
☆1,339Oct 28, 2023Updated 2 years ago
wgpsec / lc
View on GitHub
LC（List Cloud）是一个多云攻击面资产梳理工具
☆638Oct 6, 2024Updated last year
Whoopsunix / JavaRce
View on GitHub
Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
☆544Mar 6, 2025Updated last year
wafinfo / DecryptTools
View on GitHub
DecryptTools-综合解密
☆1,314Mar 2, 2025Updated last year
Naturehi666 / searchall
View on GitHub
强大的敏感信息搜索工具
☆976Nov 23, 2024Updated last year
White-hua / Apt_t00ls
View on GitHub
高危漏洞利用工具
☆1,830Feb 12, 2025Updated last year
veo / vagent
View on GitHub
多功能 java agent 内存马
☆514Oct 8, 2023Updated 2 years ago
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
yuyan-sec / RedisEXP
View on GitHub
Redis 漏洞利用工具
☆939Jan 26, 2025Updated last year
YYHYlh / Apache-Dubbo-CVE-2023-23638-exp
View on GitHub
Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
☆230Aug 8, 2023Updated 2 years ago
qi4L / WeblogicScan-go
View on GitHub
WeblogicScan一键检测
☆127May 6, 2024Updated last year
sma11new / Pyke-Shiro
View on GitHub
复杂请求下的Shiro反序列化利用工具
☆419Mar 12, 2024Updated 2 years ago
10cks / fofaEX
View on GitHub
FOFA EX 是一款基于fofa api（也可导入鹰图、夸克文件）实现的红队综合利用工具，可基于模板把工具作为插件进行集成，自动化进行资产探测，目前提供的插件功能如下：探活、 nuclei 模板扫描、IP反查域名、域名反查 ICP 备案、dismap 指纹扫描
☆237Jul 24, 2024Updated last year
UzJu / Cloud-Bucket-Leak-Detection-Tools
View on GitHub
六大云存储，泄露利用检测工具
☆1,245Mar 28, 2025Updated 11 months ago
R4gd0ll / I-Wanna-Get-All
View on GitHub
综合漏洞后渗透利用工具
☆1,693Dec 11, 2025Updated 3 months ago