mstxq17 / cve-2020-1472View external linksLinks
cve-2020-1472 复现利用及其exp
☆112Sep 16, 2020Updated 5 years ago
Alternatives and similar repositories for cve-2020-1472
Users that are interested in cve-2020-1472 are comparing it to the libraries listed below
Sorting:
- WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell☆535Aug 25, 2020Updated 5 years ago
- 这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具,用于节省红队工作量,通过下载浏览器数据库、记录密钥来离线解密浏览器密码。☆638Apr 4, 2021Updated 4 years ago
- 应对渗透中极限环境下命令回显 & 文件落地☆132Jul 1, 2022Updated 3 years ago
- 提取DC日志,快速获取域用户对应IP地址☆308Mar 21, 2022Updated 3 years ago
- sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆717Aug 3, 2021Updated 4 years ago
- 利用NTLM Hash读取Exchange邮件☆441Jan 7, 2025Updated last year
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- [ProxyLogon] CVE-2021-26855 & CVE-2021-27065 Fixed RawIdentity Bug Exploit. [ProxyOracle] CVE-2021-31195 & CVE-2021-31196 Exploit Chains.…☆178Oct 21, 2022Updated 3 years ago
- 获取Exchange信息的小工具☆232Oct 26, 2023Updated 2 years ago
- NetBIOS scanning tool written in c#☆71Aug 6, 2021Updated 4 years ago
- ☆294May 7, 2022Updated 3 years ago
- Java RCE 回显测试代码☆1,015Oct 15, 2020Updated 5 years ago
- Xshell全版本密码恢复工具☆928Jun 8, 2023Updated 2 years ago
- Memshell☆292Dec 7, 2021Updated 4 years ago
- Shiro-550 不依赖CC链利用工具☆451Jun 19, 2024Updated last year
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆357Sep 20, 2022Updated 3 years ago
- SharpSQLTools 和@Rcoil一起写的小工具,可上传下载文件,xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。☆965Aug 5, 2021Updated 4 years ago
- 修改frp支持域前置与配置文件自删除☆397Dec 31, 2020Updated 5 years ago
- 域控安全one for all☆736Sep 9, 2024Updated last year
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆108Jan 8, 2021Updated 5 years ago
- frp0.38.1 支持域前置、远程加载配置文件、配置文件自删除、流量特征修改☆133Apr 26, 2022Updated 3 years ago
- 清除Go编译时自带的信息☆855Jul 20, 2022Updated 3 years ago
- 注入JVM进程 动态获取目标进程连接的数据库☆342Mar 6, 2022Updated 3 years ago
- 创建隐藏计划任务,权限维持,Bypass AV☆556Sep 1, 2021Updated 4 years ago
- A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …☆268Oct 17, 2025Updated 4 months ago
- CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon,其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能☆731Sep 1, 2021Updated 4 years ago
- 远程创建任务计划工具☆190Apr 23, 2022Updated 3 years ago
- Bypass firewall for traffic forwarding using webshell☆1,432Sep 29, 2021Updated 4 years ago
- 用CSharp写的一款信息搜集工具,目前支持Navicat、TeamView、Xshell、SecureCRT 产品的密码解密☆251Aug 26, 2020Updated 5 years ago
- CVE-2021-3156非交互式执行命令☆203Feb 9, 2021Updated 5 years ago
- ☆117Sep 13, 2023Updated 2 years ago
- ☆232Jan 3, 2022Updated 4 years ago
- 2021hvv漏洞汇总☆678Apr 24, 2021Updated 4 years ago
- 改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能☆279Nov 28, 2023Updated 2 years ago
- 影子用户 克隆☆232Dec 30, 2021Updated 4 years ago
- One-click injection into the SSHD process to record and send the password for ssh login☆427Mar 12, 2024Updated last year
- 一款可以在不出网的环境下进行反向代理及cs上线的 工具☆491Apr 26, 2023Updated 2 years ago
- JNDI在java高版本的利用工具,FUZZ利用链☆597Oct 8, 2022Updated 3 years ago
- Apache Solr Exploits 🌟☆348Oct 13, 2020Updated 5 years ago