ltfafei / my_POC
There is my vuln POC and EXP. Some of POC were collected, most of POC and EXP were written by myself.
☆11Updated 2 years ago
Alternatives and similar repositories for my_POC:
Users that are interested in my_POC are comparing it to the libraries listed below
- 简单记录下自己在挖掘SRC☆32Updated 4 years ago
- 一款被动扫描ssrf的burpsuite插件☆21Updated 2 years ago
- 根据多个不同地区进行聚合查询以获取更多 fofa 数据☆28Updated last year
- Burp Extender, ssrf scanner, 自动扫描ssrf漏洞☆46Updated 4 years ago
- ☆11Updated 8 years ago
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go☆113Updated 2 years ago
- 规则组合子域名字典生成☆28Updated 5 years ago
- web fuzzing && bug hunter☆60Updated 3 years ago
- ☆1Updated 4 years ago
- ☆19Updated 2 years ago
- PoC for pocsuite3 and nuclei☆55Updated 2 years ago
- Personal notes for Java Deserialization Vulnerability. 对应Java反序列化漏洞利用链集合详解、个人笔记☆19Updated 3 years ago
- common methods that used by my burp extension projects☆51Updated 11 months ago
- bypass 401/403☆13Updated 2 years ago
- 批量无损检测CVE-2022-22965☆37Updated 3 years ago
- bchecks for burpsuite☆14Updated last year
- 使用java编写的CRLF-Injection-burp被动扫描插件☆45Updated 2 years ago
- burp extension for SSRF☆27Updated last year
- 通过Whois信息发现更多与目标有关联的域名,扩大攻击面☆14Updated 3 years ago
- 对接JNDIMonitor的Burp Suite被动扫描插件☆23Updated 3 years ago
- pocsuite☆11Updated 3 years ago
- AutoScan 有多个目标时,多线程调用xray+rad进行自动扫描☆88Updated 2 years ago
- FuckAnywhere - 这是一个BurpSuite Jython(Python)插件,用于在HTTP请求中随处插入你想要进行测试的代码。☆51Updated 3 years ago
- Burp Extension in Python hilighting DOM Sinks and Hosts using DOM XSS Wiki regex☆25Updated 11 years ago
- burp插件:python版,token防重放绕过☆20Updated 4 years ago
- ARL 灯塔的 WIH 利用☆26Updated 9 months ago
- Spring Cloud Function SPEL RCE demo☆11Updated 3 years ago
- burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz☆61Updated 6 years ago
- Unauthorized_Application_Check 未授权应用漏洞批量检查,包含redis,Hadoop,docker,CouchDB,ftp,zookeeper,elasticsearch,memcached,mongodb,rsync_access,mysql…☆12Updated 3 years ago
- lbb是一个企业信息查询工具,可以帮助企业查询自身对外公开的应用、新媒体,网站等。☆42Updated 3 years ago