passwa11/cf-backup

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/passwa11/cf-backup)

passwa11 / cf-backup

云环境利用框架（Cloud exploitation framework）主要用来方便红队人员在获得 AK 的后续工作。

☆62

Alternatives and similar repositories for cf-backup

Users that are interested in cf-backup are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

safe1024 / apollofish-template
View on GitHub
阿波罗钓鱼演练平台(ApolloFish)的网页钓鱼模板、邮箱钓鱼模板共享仓库。
☆23Jan 20, 2026Updated 3 months ago
b0bac / PyNoPSExec
View on GitHub
修改自SharpNoPSExec的基于python的横移工具 A Lateral Movement Tool Learned From SharpNoPSExec -- Twitter: @juliourena
☆32May 8, 2021Updated 4 years ago
zg-sec / PHP_FileUpload
View on GitHub
PHP文件上传50+绕过手法全景解析
☆17Mar 16, 2025Updated last year
MzzdToT / Kingdee_erp_Unserialize_rce
View on GitHub
金蝶云星空 erp反序列化命令执行漏洞批量扫描POC&EXP，带命令回显
☆33Jul 20, 2023Updated 2 years ago
zhaoyumi / yoyoExploit
View on GitHub
一个用友漏洞检测工具
☆29May 15, 2024Updated last year
End-to-end encrypted email - Proton Mail • Ad
Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
wgpsec / YongYouNcTool
View on GitHub
用友NC系列漏洞检测利用工具，支持一键检测、命令执行回显、文件落地、一键打入内存马、文件读取等
☆587Aug 19, 2023Updated 2 years ago
H3rmesk1t / Predator
View on GitHub
内网综合扫描工具
☆44Apr 16, 2024Updated 2 years ago
shanshanerxi / Memory-horse
View on GitHub
关于内存马的学习研究支持新手从0到1，从内存马原理，内存马植入内存马检测到内存马防御与内存马应急以及内存马查杀全系列java内存马/php/.net/c++/python 喜欢可以点个star 后续持续更新
☆145Apr 24, 2024Updated 2 years ago
10cks / LinuxKeeperGo
View on GitHub
Linux 持久化工具：自动检测可持久化方式，目前支持ssh及crab持久化，无需依赖开箱即用
☆25Oct 29, 2024Updated last year
Mayter / mssql-command-tool
View on GitHub
xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作，上传，job等相应操作。
☆197Nov 25, 2023Updated 2 years ago
mastersir-lab / DecryptOA
View on GitHub
OA系统解密小工具
☆47Dec 10, 2023Updated 2 years ago
Aabyss-Team / awsKeyTools
View on GitHub
AWS云平台 AccessKey 泄漏利用工具
☆395Jul 18, 2023Updated 2 years ago
myzxcg / NoNameExploit
View on GitHub
集权利用工具
☆167Feb 28, 2025Updated last year
Le1a / JarLibsConsolidator
View on GitHub
一个IDEA插件：一键收集项目中所有jar包依赖的工具插件。遍历项目目录收集所有jar文件，复制到all-in-one文件夹，并自动添加为项目库。
☆50Oct 30, 2025Updated 6 months ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
Chanzi-keji / chanzi
View on GitHub
"chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability ru…
☆488Feb 1, 2026Updated 3 months ago
pureqh / xxl-job-attack
View on GitHub
xxl-job漏洞综合利用工具
☆157Jun 3, 2025Updated 11 months ago
CRlife / Rscan
View on GitHub
自动化扫描利器，指纹识别更精准，漏洞扫描更全面
☆381Oct 29, 2025Updated 6 months ago
Conan924 / NacosExploit
View on GitHub
NacosExploit 命令执行内存马等利用
☆217Jul 18, 2024Updated last year
Hutt0n0 / ActiveMqRCE
View on GitHub
用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用内存马注入
☆289Nov 20, 2023Updated 2 years ago
YYHYlh / Dubbo-Scan
View on GitHub
一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。
☆172Aug 9, 2023Updated 2 years ago
wgpsec / lc
View on GitHub
LC（List Cloud）是一个多云攻击面资产梳理工具
☆641Oct 6, 2024Updated last year
tom0li / Apache-backdoor
View on GitHub
Apache-backdoor Apache 中间件模块后门
☆53Jan 10, 2020Updated 6 years ago
sma11new / Pyke-Shiro
View on GitHub
复杂请求下的Shiro反序列化利用工具
☆421Mar 12, 2024Updated 2 years ago
Wordpress hosting with auto-scaling - Free Trial Offer • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
mastersir-lab / JianChi
View on GitHub
一款内网渗透常用命令的CS插件，解决记不住命令的苦恼！
☆19Mar 10, 2022Updated 4 years ago
Lotus6 / ConfluenceMemshell
View on GitHub
Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎内存马注入
☆558Feb 1, 2024Updated 2 years ago
RuoJi6 / xxl-job-FLM
View on GitHub
xxl-job内存马
☆230Jan 26, 2025Updated last year
simonlee-hello / EWSTool
View on GitHub
EWSTool是一个针对EXCHANGE邮件服务器的后渗透利用工具。使用ews接口，实现人员邮箱列表获取、搜索邮件、下载邮件等实用功能。
☆64Mar 12, 2025Updated last year
X1r0z / spring-amqp-deserialization
View on GitHub
PoC of Spring AMQP Deserialization Vulnerability (CVE-2023-34050)
☆13Jan 29, 2024Updated 2 years ago
ShangRui-hash / bucket-takeover-lab
View on GitHub
子域名接管的几种变体靶场
☆23Jun 22, 2024Updated last year
wafinfo / NCTOOls
View on GitHub
一款针对用友NC综合漏洞利用工具
☆241Nov 27, 2023Updated 2 years ago
M0untainShley / FEExploit
View on GitHub
某 FE 平台一键漏洞探测工具，支持单 url 以及批量探测
☆33Nov 11, 2024Updated last year
GhostTroops / ksubdomain
View on GitHub
子域名爆破，增加了智能爬虫功能
☆70Mar 22, 2024Updated 2 years ago
Deploy on Railway without the complexity - Free Credits Offer • Ad
Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
geekmc / FindShell
View on GitHub
内存马查杀工具，尤其针对Agent型，原理是dump出JVM当前的class并进行字节码分析，并加入自动修复的功能
☆179May 10, 2023Updated 2 years ago
Bl0omZ / JNDIEXP
View on GitHub
JNDI在java高版本的利用工具,FUZZ利用链
☆602Oct 8, 2022Updated 3 years ago
Neo-Maoku / SearchAvailableExe
View on GitHub
寻找可利用的白文件
☆560Aug 18, 2025Updated 8 months ago
1ucky7 / MySQL_Fake_Server_for_woodpecker_yso
View on GitHub
MySQL_Fake_Server-啄木鸟yso适配版
☆44Sep 20, 2024Updated last year
Whoopsunix / PPPRASP
View on GitHub
JavaRce complements project - use RASP to prevent vulnerabilities
☆24Apr 22, 2024Updated 2 years ago
1diot9 / MyJavaSecStudy
View on GitHub
在Java安全学习过程中的笔记和代码
☆104Apr 25, 2026Updated last week
957204459 / ysoserial-1
View on GitHub
此项目为su18大佬的仓库镜像，如有问题可发issuse删库
☆86May 4, 2023Updated 3 years ago