lijiejie / MisConfig_HTTP_Proxy_Scanner

The scanner helps to scan misconfigured reverse proxy servers and misconfigured forward proxy servers

☆172

Alternatives and similar repositories for MisConfig_HTTP_Proxy_Scanner:

Users that are interested in MisConfig_HTTP_Proxy_Scanner are comparing it to the libraries listed below

WAY29 / pocV
Compatible with xray and nuclei poc framework
☆192Updated 2 years ago
kezibei / fastjson_payload
☆208Updated 6 months ago
Lonely-night / fastjsonVul
fastjson 80 远程代码执行漏洞复现
☆191Updated 2 years ago
ffffffff0x / 403-fuzz
针对 403 页面的 fuzz 脚本
☆124Updated 3 years ago
depycode / fastjson-c3p0
fastjson不出网利用、c3p0
☆251Updated 3 years ago
YYHYlh / Apache-Dubbo-CVE-2023-23638-exp
Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
☆219Updated last year
A0WaQ4 / HexDnsEchoT
命令执行不回显但DNS协议出网的命令回显场景解决方案（修改为使用ceye接收请求，添加自定义DNS服务器）
☆289Updated last year
whwlsfb / SpringSpider
Spring Actuator端点的BurpSuite被动扫描插件。
☆196Updated 2 years ago
kezibei / Urldns
☆316Updated 7 months ago
depycode / fastjson-local-echo
基于dbcp的fastjson rce 回显
☆190Updated 3 years ago
TheKingOfDuck / RCEFuzzer
一个以fuzz为中心思想的被动扫描工具
☆156Updated last year
sv3nbeast / DnslogCmdEcho
命令执行不回显但DNS协议出网的命令回显场景解决方案
☆274Updated 2 years ago
f0ng / JavaFileDict
Java应用的一些配置文件字典，来源于公开的字典与平时收集
☆303Updated last year
SummerSec / AgentInjectTool
改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能
☆278Updated last year
wealeson1 / wcpvs
Web Cache Poisoning Vulnerability Scanner
☆35Updated last month
A-D-Team / attackRmi
☆219Updated 3 years ago
SuperZero / CVE-2023-33246
Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit
☆103Updated last year
yuyan-sec / druid_sessions
获取 alibaba druid 一些 sessions , sql , urls
☆262Updated 2 years ago
woodpecker-appstore / weblogic-infodetector
woodpecker框架weblogic信息探测插件
☆179Updated 2 years ago
Wrin9 / weaverOA_sql_RCE
泛微OA_V9全版本的SQL远程代码执行漏洞
☆157Updated 2 years ago
ThestaRY7 / supplier
主流供应商的一些攻击性漏洞汇总
☆105Updated 3 years ago
KrystianLi / ExchangeOWA
一款OutLook信息收集工具
☆234Updated last year
LiAoRJ / CS_fakesubmit
一个可以伪装上线Cobaltstrike的脚本
☆132Updated 2 years ago
xyy-ws / NoAgent-memshell-scanner
☆107Updated 3 years ago
alwaystest18 / hostCollision
一款host碰撞工具，做了较多的误报优化
☆179Updated 9 months ago
YYHYlh / Dubbo-Scan
一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。
☆165Updated last year
safe6Sec / MemoryShell
内存马学习
☆170Updated 2 years ago
woodpecker-appstore / jexpr-encoder-utils
Java表达式语句生成器
☆184Updated last year
yzddmr6 / Java-Js-Engine-Payloads
Java Js Engine Payloads All in one
☆270Updated last year
winezer0 / springboot_scan
支持自动化的切换请求方式、自动化的请求重试、以完整的扫描Springboot路径
☆2Updated 2 years ago