p1g3 / CORS-SCAN
扫描存在CORS跨域漏洞的网站。
☆93Updated 5 years ago
Alternatives and similar repositories for CORS-SCAN:
Users that are interested in CORS-SCAN are comparing it to the libraries listed below
- Spring Actuator端点的BurpSuite被动扫描插件。☆196Updated 2 years ago
- 一个全新的敏感文件发现工具☆269Updated 4 years ago
- 批量检测敏感信息泄露☆59Updated 4 years ago
- 脚写HW爆出来的漏洞的GUI工具☆68Updated 4 years ago
- Fofa采集工具☆112Updated 3 years ago
- ☆167Updated 2 years ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in redis with password.用于生成附带密码认证的gopher内容,用于SSRF等利用。☆114Updated 5 years ago
- shiro反序列化批量ip��快速检测脚本☆78Updated 4 years ago
- xxl-job未授权命令执行☆108Updated 3 years ago
- 一款用于src资产信息收集的工具☆56Updated 4 years ago
- fastjson不出网利用、c3p0☆252Updated 3 years ago
- 2020年~2021年 网站CMS、中间件、框架系统漏洞集合☆100Updated 4 years ago
- JSONP Hunter in burpsuite.☆223Updated 5 years ago
- 将域名转为ip段权重☆213Updated 2 years ago
- 中国蚁剑JSP一句话Payload☆120Updated 4 years ago
- ☆82Updated 8 years ago
- ☆72Updated 4 years ago
- ThinkPHP全日志扫描工具,命令行版和BurpSuite插件版☆131Updated 4 years ago
- 针对 403 页面的 fuzz 脚本☆124Updated 3 years ago
- WIP: Demo for Attacking Apereo CAS☆91Updated 4 years ago
- 完善的动态备份文件扫描工具 实现动态字典渲染、动态结果判断、自动字典记录、的敏感文件扫描器☆23Updated 10 months ago
- 用于mssql手注生成混淆payload☆77Updated 4 years ago
- Apache Shiro 反序列化漏洞检测与利用工具,一键注入内存马☆138Updated 4 years ago
- rad加crawlergo爬虫,查漏补缺☆113Updated 3 years ago
- 批量检查目标是否为cdn☆140Updated 4 years ago
- Java应用的一些配置文件字典,来源于公开的字典与平时收集☆305Updated last year
- 🐸Unauthorized Detection Framework未授权访问检测框架☆161Updated last year
- Web Pentesting Fuzz 字典,一个就够了。☆71Updated 5 years ago
- 代码审计总结☆80Updated 3 years ago
- 一个LDAP请求监听器,摆脱dnslog平台☆288Updated 2 years ago