渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
☆32Feb 7, 2024Updated 2 years ago
Alternatives and similar repositories for Penetration_Testing_POC
Users that are interested in Penetration_Testing_POC are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 收集整理漏洞EXP/POC,大部分漏洞来源网络,目前收集整理了1400多个poc/exp,长期更新。☆66Jan 7, 2025Updated last year
- 攻防演练中防守方重点知识点整理,旨在方便平时看看,也在需要的时候有一个miniwiki☆30Jun 19, 2024Updated last year
- 外网信息收集-思维导图☆17Jul 17, 2023Updated 2 years ago
- A command-line tool for testing RocketMQ vulnerabilities.☆13Feb 7, 2025Updated last year
- 专为渗透小白定制的SQL注入靶场,上手简单(巨难),练习sql注入的不二之选☆59Jun 12, 2025Updated 9 months ago
- 用于爬取谷歌关键词搜索的url,便于红队,src等快速提取☆33May 21, 2024Updated last year
- A Windows Skin-Changer for League of Legends based on lol-skins and cslol-manager.☆21Dec 31, 2025Updated 2 months ago
- 免杀知识库 | 开源免杀木马效果测试 360 火绒 卡巴斯基 Microsoft Defender | 免杀工具汇总☆348Jun 26, 2025Updated 8 months ago
- PHP代码审计案例-1000PHP☆27Aug 20, 2024Updated last year
- WPCracker弱口令探测☆24Aug 9, 2019Updated 6 years ago
- xxl_job_executor_默认Access_Token_不出网综合利用☆39Oct 20, 2025Updated 5 months ago
- Laravel Debug mode RCE漏洞(CVE-2021-3129)poc / exp☆13Mar 4, 2023Updated 3 years ago
- Unauthenticated Command Injection In Progress Kemp LoadMaster☆19Aug 26, 2025Updated 6 months ago
- A curated collection of Living off the Land (LotL) attack demonstrations where trusted binaries go rogue, because if it didn’t launch cal…☆35Jan 7, 2026Updated 2 months ago
- DLL Unhooking☆12Mar 26, 2021Updated 4 years ago
- 基于Pocsuite3、goby编写的漏洞poc&exp存档☆12Nov 19, 2023Updated 2 years ago
- Courier 信使,自用应急响应信息收集脚本,便于快速进行信息收集、定位攻击信息。☆19Oct 16, 2024Updated last year
- ☆23Aug 20, 2023Updated 2 years ago
- Tomcat漏洞批量检测工具☆13Dec 18, 2025Updated 3 months ago
- 免杀☆12May 6, 2024Updated last year
- 用于创建HonKit电子书的HonKit的模板☆17Jan 1, 2025Updated last year
- A driver loader tool that helps in the study of Windows kernel. || 一个驱动加载工具,在Windows内核的学习过程中可以提供帮助。☆11Jul 3, 2020Updated 5 years ago
- ☆12Oct 31, 2024Updated last year
- A tool for extracting free licenses from Eset NOD32 antivirus accounts through web scraping☆23Feb 1, 2026Updated last month
- Code By:Tas9er / PHPStudyMySQL弱口令爆破安全测试☆16Jan 15, 2021Updated 5 years ago
- ☆26May 27, 2025Updated 9 months ago
- 自动抓取微信公众号安全漏洞文章,转换为Markdown格式并建立本地知识库,每日持续更新。本项目基于 [原版wxvl](https://github.com/20142995/wxvl) 进行扩展。☆16Aug 8, 2025Updated 7 months ago
- php webshell bypass D盾、safedog、360、火绒等,仅支持php7☆18Aug 25, 2025Updated 6 months ago
- GYscan是一款基于Go语言开发的现代化综合渗��透测试工具,专为安全研究人员、渗透测试工程师和红队成员设计。项目采用模块化架构,包含C2服务器端和客户端组件,支持Windows和Linux平台,提供系统安全分析和漏洞扫描功能。☆76Mar 3, 2026Updated 3 weeks ago
- 哈基米 一个分布式蜜网系统 | hachimi A Distributed Honeypot System☆189Jan 24, 2025Updated last year
- Java代码审计学习笔记☆13Dec 20, 2024Updated last year
- Privilege Escalation using Passwd - April Fools prank☆37Apr 3, 2025Updated 11 months ago
- 正方教务系统Session Hijacking通杀0day☆27Jun 26, 2019Updated 6 years ago
- 禅道认证绕过后台命令执行Getshell☆13Jan 8, 2025Updated last year
- A C# tool with more flexibility to customize scheduled task for both persistence and lateral movement in red team operation☆18Dec 18, 2024Updated last year
- Cobalt Strike 钉钉机器人上线提醒☆15Sep 8, 2024Updated last year
- 常见反沙箱反虚拟机总结☆20Nov 13, 2024Updated last year
- A comprehensive repository for malware analysis and threat intelligence, including Cobalt Strike Beacon configurations, YARA rules, IOCs,…☆16Mar 6, 2026Updated 2 weeks ago
- 蓝队笔记--------面向安全事件的实践指南,实战笔记。包含安全事件发现(威胁狩猎)、应急处置(应急响应)、安全数据挖掘、威胁情报等多个方面。☆16Updated this week