m09046105 / xiaoyi
自动批量检测java相关组件的rce漏洞,包括weblogic、struts2、shiro
☆20Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for xiaoyi
- exchange-ssrf-rce☆77Updated 3 years ago
- 通过burp代理流量寻找shiro站点☆61Updated 4 years ago
- ☆38Updated 4 years ago
- Shiro-721 Padding Oracle Attack☆70Updated 3 years ago
- rce工具☆27Updated 4 years ago
- ☆39Updated 4 years ago
- 一些POC、EXP☆11Updated 5 years ago
- ☆48Updated 3 years ago
- 一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。☆50Updated 2 years ago
- 卸载冰蝎内存马☆68Updated 3 years ago
- AWVS12&AWVS13 通用API批量导入脚本 AWVS12 & AWVS13 common API batch import script.☆25Updated 2 years ago
- ☆29Updated 3 years ago
- ☆24Updated 4 years ago
- 子域名监控式漏扫☆42Updated 4 years ago
- shiro 反序列化 回显检测☆39Updated 3 years ago
- webuploader-v-0.1.15未授权-任意文件上传☆51Updated 5 years ago
- ThinkPHP各版本反序列化利用代码☆32Updated 4 years ago
- 一些结合第三方组件的Fastjson POC,在1.2.48以后版本中陆续被添加至黑名单。☆56Updated 5 years ago
- 内网渗透相关总结☆37Updated 3 years ago
- 简单的分离免杀demo☆41Updated 3 years ago
- 资产扫描工具☆46Updated 4 years ago
- ☆35Updated 4 years ago
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go☆114Updated 2 years ago
- 2020年~2021年 网站CMS、中间件、框架系统漏洞集合☆36Updated 3 years ago
- CVE-2021-22205 Gitlab 未授权远程代码执行漏洞 EXP, 移除了对djvumake & djvulibre的依赖,可在win平台使用☆22Updated 3 years ago