lijiejie/idea_exploit

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/lijiejie/idea_exploit)

lijiejie / idea_exploit

Gather sensitive information from (.idea) folder for pentesters

☆370

Alternatives and similar repositories for idea_exploit

Users that are interested in idea_exploit are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

Ridter / redis-rce
View on GitHub
Redis 4.x/5.x RCE
☆975Nov 30, 2021Updated 4 years ago
c0ny1 / chunked-coding-converter
View on GitHub
Burp suite 分块传输辅助插件
☆2,029Feb 23, 2022Updated 4 years ago
w-digital-scanner / w13scan
View on GitHub
Passive Security Scanner (被动式安全扫描器)
☆1,950Feb 8, 2023Updated 3 years ago
lijiejie / ds_store_exp
View on GitHub
A .DS_Store file disclosure exploit. It parses .DS_Store file and downloads files recursively.
☆1,718May 6, 2023Updated 2 years ago
timwhitez / crawlergo_x_XRAY
View on GitHub
360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
☆1,183Nov 10, 2021Updated 4 years ago
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
lijiejie / swagger-exp
View on GitHub
A Swagger API Exploit
☆1,369Jun 7, 2024Updated last year
c0ny1 / passive-scan-client
View on GitHub
Burp被动扫描流量转发插件
☆1,459Jun 17, 2024Updated last year
c0ny1 / FastjsonExploit
View on GitHub
Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
☆1,392Dec 16, 2022Updated 3 years ago
opensec-cn / chip
View on GitHub
a simple tool to detect potential security threat in php code
☆316Sep 9, 2024Updated last year
welk1n / JNDI-Injection-Bypass
View on GitHub
Some payloads of JNDI Injection in JDK 1.8.0_191+
☆484Dec 9, 2020Updated 5 years ago
Qianlitp / crawlergo
View on GitHub
A powerful browser crawler for web vulnerability scanners
☆3,021Mar 11, 2025Updated last year
r35tart / Penetration_Testing_Case
View on GitHub
用于记录分享一些有趣的案例
☆865Jan 10, 2022Updated 4 years ago
l3m0n / Bypass_Disable_functions_Shell
View on GitHub
一个各种方式突破Disable_functions达到命令执行的shell
☆1,198Oct 17, 2023Updated 2 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,015May 21, 2024Updated last year
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
ring04h / pentest
View on GitHub
渗透测试用到的东东
☆430May 6, 2020Updated 5 years ago
dr0op / WeblogicScan
View on GitHub
增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
☆967Jun 16, 2024Updated last year
lufeirider / CVE-2019-2725
View on GitHub
CVE-2019-2725 命令回显
☆436May 8, 2023Updated 2 years ago
rabbitmask / WeblogicScan
View on GitHub
Weblogic一键漏洞检测工具，V1.5，更新时间：20200730
☆2,267May 22, 2023Updated 2 years ago
HatBoy / Struts2-Scan
View on GitHub
Struts2全漏洞扫描利用工具
☆2,210Jul 12, 2021Updated 4 years ago
webanalyzer / webanalyzer.py
View on GitHub
python webanalyzer
☆147Jun 2, 2021Updated 4 years ago
boy-hack / wooyun-payload
View on GitHub
从wooyun中提取的payload，以及burp插件
☆841Jun 17, 2022Updated 3 years ago
skmt / icmpsh
View on GitHub
shell over ICMP
☆19Dec 8, 2012Updated 13 years ago
opensec-cn / vtest
View on GitHub
用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
☆866Jul 21, 2019Updated 6 years ago
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
l3m0n / whatweb
View on GitHub
更快速的进行Web应用指纹识别
☆171May 9, 2019Updated 6 years ago
Artemis1029 / Java_xmlhack
View on GitHub
帮助java环境下任意文件下载情况自动化读取源码的小工具
☆166Apr 5, 2019Updated 6 years ago
jiangsir404 / pbscan
View on GitHub
基于burpsuite headless 的代理式被动扫描系统
☆95Feb 10, 2020Updated 6 years ago
admintony / svnExploit
View on GitHub
SvnExploit支持SVN源代码泄露全版本Dump源码
☆1,026Dec 20, 2022Updated 3 years ago
lijiejie / BBScan
View on GitHub
A fast vulnerability scanner helps pentesters pinpoint possibly vulnerable targets from a large number of web servers
☆2,368Dec 31, 2024Updated last year
Ivan1ee / NET-Deserialize
View on GitHub
总结了20+.Net反序列化文章，持续更新
☆749Apr 3, 2024Updated last year
YDHCUI / CNVD-2020-10487-Tomcat-Ajp-lfi
View on GitHub
Tomcat-Ajp协议文件读取漏洞
☆797Mar 3, 2020Updated 6 years ago
veracode-research / solr-injection
View on GitHub
Apache Solr Injection Research
☆580Jan 28, 2020Updated 6 years ago
threedr3am / tomcat-cluster-session-sync-exp
View on GitHub
tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包，可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
☆212May 19, 2020Updated 5 years ago
Simple, predictable pricing with DigitalOcean hosting • Ad
Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
r35tart / RedisWriteFile
View on GitHub
通过 Redis 主从写出无损文件
☆718May 25, 2020Updated 5 years ago
n0b0dyCN / redis-rogue-server
View on GitHub
Redis(<=5.0.5) RCE
☆1,150Sep 24, 2023Updated 2 years ago
yangyangwithgnu / bypass_disablefunc_via_LD_PRELOAD
View on GitHub
bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
☆1,171Aug 7, 2021Updated 4 years ago
Threezh1 / JSFinder
View on GitHub
JSFinder is a tool for quickly extracting URLs and subdomains from JS files on a website.
☆2,920Nov 24, 2021Updated 4 years ago
sv3nbeast / ShiroScan
View on GitHub
Shiro<=1.2.4反序列化，一键检测工具
☆987Mar 4, 2021Updated 5 years ago
aleenzz / MYSQL_SQL_BYPASS_WIKI
View on GitHub
mysql注入,bypass的一些心得
☆1,327Jun 25, 2024Updated last year
wyzxxz / shiro_rce_tool
View on GitHub
shiro 反序列命令执行辅助检测工具
☆1,566May 21, 2024Updated last year