Log4j 漏洞本地检测脚本。 Scan all java processes on your host to check whether it's affected by log4j2 remote code execution vulnerability (CVE-2021-45046)
☆84Dec 22, 2021Updated 4 years ago
Alternatives and similar repositories for log4j2_vul_local_scanner
Users that are interested in log4j2_vul_local_scanner are comparing it to the libraries listed below
Sorting:
- fastjson不出网利用、c3p0☆256Jul 30, 2021Updated 4 years ago
- 用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件☆212Apr 18, 2023Updated 2 years ago
- A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …☆268Oct 17, 2025Updated 4 months ago
- Remote Code Injection In Log4j☆469Jan 18, 2022Updated 4 years ago
- 本项目用于搜集 2022 年的漏洞,注意:本项目并不刻意搜集 POC 或 EXP,主要以CVE-2021、CVE-2022 为关键词,包含但不限于漏洞资讯、漏洞复现、漏洞分析、漏洞验证、漏洞利用☆381Apr 17, 2022Updated 3 years ago
- PC客户端(C-S架构)渗透测试checklist / Client side(C-S) penetration checklist☆663Feb 24, 2021Updated 5 years ago
- 增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持☆967Jun 16, 2024Updated last year
- Shiro-550 不依赖CC链利用工具☆450Jun 19, 2024Updated last year
- 主流供应商的一些攻击性漏洞汇总☆809Nov 8, 2021Updated 4 years ago
- 一款适用于红蓝对抗中的仿真钓鱼系统☆1,534May 30, 2023Updated 2 years ago
- A Swagger API Exploit☆1,369Jun 7, 2024Updated last year
- 安全测试平台☆237Sep 6, 2022Updated 3 years ago
- 一个简单的现代化公司域名使用规律预测及生成工具☆388Feb 24, 2022Updated 4 years ago
- 备份文件扫描,并自动进行下载☆130Jul 26, 2023Updated 2 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- Optimized DNS/HTTP Log Tool for pentesters, faster and easy to use.☆422Jun 27, 2024Updated last year
- 边界打点后的自动化渗透工具☆1,891Jul 19, 2021Updated 4 years ago
- 傻瓜式漏洞PoC测试框架☆1,443Oct 30, 2023Updated 2 years ago
- 利用天眼查查询企业子公司☆332Jan 9, 2023Updated 3 years ago
- domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等☆2,118Mar 3, 2026Updated last week
- 各种工具指纹收集分享☆529Nov 3, 2021Updated 4 years ago
- WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell☆535Aug 25, 2020Updated 5 years ago
- xss漏洞模糊测试payload的最佳集合 2020版☆511May 25, 2020Updated 5 years ago
- DNSLog-GO 是一款golang编写的监控 DNS 解析记录的工具,自带WEB界面 / DNSLog-GO is a monitoring tool written in Golang that monitors DNS resolution records. It …☆1,275Jan 21, 2026Updated last month
- 用CSharp写的一款信息搜集工具,目前支持Navicat、TeamView、Xshell、SecureCRT产品的密码解密☆250Aug 26, 2020Updated 5 years ago
- 记录各语言、框架中危险的sink,个人代码审计、漏洞研究使用。☆117Dec 30, 2021Updated 4 years ago
- 日常积累的一些红队工具及自己写的脚本,更偏向于一些diy的好用的工具,并不是一些比较常用的msf/awvs/xray这种☆1,415Aug 18, 2024Updated last year
- 侦查守卫(ObserverWard)的指纹库☆1,334Mar 3, 2026Updated last week
- (周瑜)Java - SpringBoot 持久化 WebShell(不仅仅是SpringBoot,适合任何符合JavaEE规范的服务)☆615Dec 29, 2021Updated 4 years ago
- 《云原生安全:攻防实践与体系构建》资料仓库☆780Feb 19, 2023Updated 3 years ago
- 40行代码检测到大部分CobaltStrike的shellcode☆294Jul 25, 2021Updated 4 years ago
- 利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码☆711May 10, 2021Updated 4 years ago
- shiro-cve-2020-17523 漏洞的两种绕过姿势分析 以及配套的漏洞环境☆119Feb 7, 2021Updated 5 years ago
- 兼容xray nuclei yaml格式 以及go代码格式的poc验证扫描器☆190Aug 23, 2023Updated 2 years ago
- 帆软/致远密码解密工具☆359Jul 29, 2021Updated 4 years ago
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入☆769Jan 26, 2022Updated 4 years ago
- 通用的指纹识别规则☆371Dec 2, 2022Updated 3 years ago
- Apache Solr Exploits 🌟☆348Oct 13, 2020Updated 5 years ago
- 运行于GitHub Actions 的仓库中自动化、自定义和执行软件开发工作流程,可以自己根据喜好定制功能,InCloud已经为您定制好了十种针对网段和域名的不同场景的信息收集与漏洞扫描流程。☆245Jul 1, 2024Updated last year