Tentacle is a POC vulnerability verification and exploit framework. It supports free extension of exploits and uses POC scripts. It supports calls to zoomeye, fofa, shodan and other APIs to perform bulk vulnerability verification for multiple targets.
☆374Mar 6, 2024Updated 2 years ago
Alternatives and similar repositories for Tentacle
Users that are interested in Tentacle are comparing it to the libraries listed below
Sorting:
- 在渗透测试中快速检测常见中间件、组件的高危漏洞。☆728Mar 21, 2022Updated 3 years ago
- 渗透测试插件化并发框架 / Open-sourced remote vulnerability PoC/EXP framework☆1,952Mar 28, 2022Updated 3 years ago
- Bypass firewall for traffic forwarding using webshell☆1,430Sep 29, 2021Updated 4 years ago
- Python3编写的CMS漏洞检测框架☆1,453May 22, 2023Updated 2 years ago
- ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。☆1,634Jun 16, 2024Updated last year
- Struts2漏洞扫描利用工具 - Golang版. Struts2 Scanner Written in Golang☆572Jan 10, 2022Updated 4 years ago
- Cooolis-ms是一个包含了Metasploit Payload Loader、Cobalt Strike External C2 Loader、Reflective DLL injection的代码执行工具,它的定位在于能够在静态查杀上规避一些我们将要执行且含有特征的…☆929Jan 7, 2026Updated 2 months ago
- 内网渗透中常用的c#程序整合成cs脚本,直接内存加载。持续更新~☆498Feb 13, 2020Updated 6 years ago
- 此项目用来提取收集以往泄露的密码中符合条件的强弱密码☆1,132Apr 1, 2019Updated 6 years ago
- 用于漏洞排查的pocsuite3验证POC代码☆347Aug 7, 2022Updated 3 years ago
- Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、…☆4,272Apr 4, 2021Updated 4 years ago
- A powerful browser crawler for web vulnerability scanners☆3,016Mar 11, 2025Updated 11 months ago
- Java RCE 回显测试代码☆1,015Oct 15, 2020Updated 5 years ago
- POC-T强化版本 POC-S , 用于红蓝对抗中快速验证Web应用漏洞, 对功能进行强化以及脚本进行分类添加,自带dnslog等, 平台补充来自vulhub靶机及其他开源项目的高可用POC☆357Mar 12, 2020Updated 5 years ago
- myscan 被动扫描☆667Mar 19, 2021Updated 4 years ago
- 资产扫描工具☆45Sep 1, 2020Updated 5 years ago
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于�测试各类无回显、无法直观判断或特定场景下的漏洞。☆866Jul 21, 2019Updated 6 years ago
- Venom - A Multi-hop Proxy for Penetration Testers☆2,152May 11, 2022Updated 3 years ago
- bayonet是一款src资产管理系统,从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统☆1,507Nov 22, 2022Updated 3 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆518Jul 29, 2020Updated 5 years ago
- ☆1,380Jul 2, 2020Updated 5 years ago
- 红队作战中比较常遇到的一些重点系统漏洞整理。☆2,521Jul 17, 2021Updated 4 years ago
- 绕过专业工具检测的Webshell研究文章和免杀的Webshell☆1,733Nov 15, 2020Updated 5 years ago
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆469Sep 16, 2023Updated 2 years ago
- A Burp Suite Extension that try to find all sub-domain, similar-domain and related-domain of an organization automatically! 基于流量自动收集整个企业或…☆675Jul 16, 2023Updated 2 years ago
- Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)☆1,389Dec 16, 2022Updated 3 years ago
- Watchdog是bayonet修改版,重新优化了数据库及web及扫描程序,加入多节点☆626Dec 8, 2022Updated 3 years ago
- 🚀 A simple asset discovery engine for cybersecurity. (网络资产发现引擎)☆1,342Dec 8, 2022Updated 3 years ago
- CobaltStrike后渗透测试插件☆1,555Oct 28, 2021Updated 4 years ago
- Passive Security Scanner (被动式安全扫描器)☆1,948Feb 8, 2023Updated 3 years ago
- 漏洞利用框架模块分享仓库☆348Oct 8, 2019Updated 6 years ago
- Shiro反序列化利用工具,支持新版本(AES-GCM)Shiro的key爆破,配合ysoserial,生成回显Payload☆896May 28, 2021Updated 4 years ago
- 红队基础设施自动化部署工具☆853Jan 4, 2023Updated 3 years ago
- Penetration Testing Platform☆1,350Jul 6, 2022Updated 3 years ago
- Collecting and writing PoC or EXP for vulnerabilities on some application☆390Jun 2, 2021Updated 4 years ago
- 利用NTLM Hash读取Exchange邮件☆441Jan 7, 2025Updated last year
- A Bypass Anti-virus Software Lateral Movement Command Execution Tool☆1,464Jan 20, 2025Updated last year
- PoCBox - Vulnerability Test Aid Platform☆964Mar 26, 2024Updated last year
- BCS(北京网络安全大会)2019 红队行动会议重点内容☆819Sep 4, 2019Updated 6 years ago