oauth2研究: 实现代码、漏洞利用、修复方案
☆19May 21, 2019Updated 6 years ago
Alternatives and similar repositories for oauth2
Users that are interested in oauth2 are comparing it to the libraries listed below
Sorting:
- 更快速的进行Web应用指纹识别☆170May 9, 2019Updated 6 years ago
- dynamic crawler for web vulnerability scanner☆252Mar 4, 2020Updated 6 years ago
- 一个NodeJS实现的漏扫动态爬虫☆81Dec 11, 2022Updated 3 years ago
- Shiro RCE (Padding Oracle Attack)☆148Nov 15, 2019Updated 6 years ago
- web模糊测试 - 将漏洞可能性放大☆145Apr 23, 2019Updated 6 years ago
- OpenVPN Connect for Windows (MSI) - 3.1.0.361 - Privilege Escalation☆26Feb 28, 2020Updated 6 years ago
- 注入检测工具☆44Aug 12, 2019Updated 6 years ago
- 浏览器用户全部信息收集js☆167Oct 27, 2015Updated 10 years ago
- IP画像业务安全版私有化部署SDK☆13Dec 8, 2022Updated 3 years ago
- Practice Go programming and implement CobaltStrike's Beacon in Go☆14Mar 19, 2020Updated 5 years ago
- Python3 Reverse Shell☆13May 24, 2019Updated 6 years ago
- ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6☆217Aug 17, 2017Updated 8 years ago
- 总结了一下2019年在JVM环境中使用XXE攻击的知识☆58Oct 31, 2019Updated 6 years ago
- A Git repository containing the Alternate Path to Delegation Reports for all applied-for new gTLDs☆16Jan 31, 2022Updated 4 years ago
- Remote Command Execution Over Spark☆97Feb 21, 2026Updated 2 weeks ago
- flash 劫持轮子,CSRF,劫持,跳转,swf 有需求可以提issues ,src挖掘,劫持response☆86Nov 9, 2019Updated 6 years ago
- 个人用于在自动化挖掘gadget时,方便查找gadget chains中class所在jar包,以助于便捷审计测试gadget有效性的那么一个小工具。☆60Mar 25, 2020Updated 5 years ago
- Zimbra XXE+SSRF+UPLOAD Poc☆59Jun 25, 2019Updated 6 years ago
- 透明代理切换脚本,仅支持 Linux☆52Oct 9, 2021Updated 4 years ago
- 渗透测试复盘总结☆15Jul 16, 2020Updated 5 years ago
- ☆43Sep 19, 2023Updated 2 years ago
- 基于burpsuite headless 的代理式被动扫描系统☆95Feb 10, 2020Updated 6 years ago
- Shiro_721 exp 纯手工实现Padding Oracle整个过程☆67Nov 20, 2019Updated 6 years ago
- PHP 扩展, 用于 PHP-FPM、FastCGI、LD_PRELOAD等模式下突破 disabled_functions☆107Sep 8, 2021Updated 4 years ago
- ☆145Jun 20, 2018Updated 7 years ago
- Cobalt Strike Malleable Profile Inline Patch Template: A Position Independent Code (PIC) Code Template For Creating Shellcode That Can Be…☆42Sep 3, 2020Updated 5 years ago
- Drupal8's REST RCE, SA-CORE-2019-003, CVE-2019-6340☆71Jun 10, 2020Updated 5 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆103Mar 10, 2020Updated 5 years ago
- A Java runtime information-gathering tool which uses the Java Attach API for information acquisition☆204Apr 26, 2021Updated 4 years ago
- linux内核提权后门模块demo☆36Jun 11, 2019Updated 6 years ago
- 用WebShell攻击PHP-FPM Attacking PHP-FPM with WebShell☆41May 6, 2021Updated 4 years ago
- ☆16Feb 26, 2018Updated 8 years ago
- 🚀Faster Github Monitor🚀☆104Jan 7, 2023Updated 3 years ago
- webshell and nonwebshell samples,which can be used to train machine learning models to detect webshell☆43Apr 13, 2019Updated 6 years ago
- ☆18Dec 25, 2024Updated last year
- Native Java serialization filter blacklist for common gadgets☆20Sep 12, 2019Updated 6 years ago
- 关于蜜罐的一些微小的统计工作☆30Aug 26, 2020Updated 5 years ago
- ☆51Aug 16, 2018Updated 7 years ago
- CatchMail can be used to find some email addresses!☆73May 22, 2023Updated 2 years ago