phith0n/xray-poc-generation

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/phith0n/xray-poc-generation)

phith0n / xray-poc-generation

🧬 辅助生成 XRay YAML POC

☆271

Alternatives and similar repositories for xray-poc-generation

Users that are interested in xray-poc-generation are comparing it to the libraries listed below

Sorting:

jweny / pocassist
View on GitHub
傻瓜式漏洞PoC测试框架
☆1,443Oct 30, 2023Updated 2 years ago
c0ny1 / passive-scan-client
View on GitHub
Burp被动扫描流量转发插件
☆1,460Jun 17, 2024Updated last year
Ciyfly / woodpecker
View on GitHub
兼容xray nuclei yaml格式以及go代码格式的poc验证扫描器
☆190Aug 23, 2023Updated 2 years ago
feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,016Oct 15, 2020Updated 5 years ago
CTF-MissFeng / GoScan
View on GitHub
GoScan是采用Golang语言编写的一款分布式综合资产管理系统，适合红队、SRC等使用
☆717May 6, 2021Updated 4 years ago
zema1 / yarx
View on GitHub
An awesome reverse engine for xray poc. | 一个自动化根据 xray poc 生成对应靶站的工具
☆422Mar 22, 2023Updated 2 years ago
c0ny1 / chunked-coding-converter
View on GitHub
Burp suite 分块传输辅助插件
☆2,023Feb 23, 2022Updated 4 years ago
Echocipher / AUTO-EARN
View on GitHub
一个利用OneForAll进行子域收集、Shodan API端口扫描、Xray漏洞Fuzz、Server酱的自动化漏洞扫描、即时通知提醒的漏洞挖掘辅助工具
☆738Dec 8, 2022Updated 3 years ago
chennqqi / godnslog
View on GitHub
An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
☆469Sep 16, 2023Updated 2 years ago
jjf012 / gopoc
View on GitHub
用cel-go重现了长亭xray的poc检测功能的轮子
☆297Jun 24, 2022Updated 3 years ago
LangziFun / LangSrcCurise
View on GitHub
SRC子域名资产监控
☆1,299Jan 14, 2021Updated 5 years ago
xfiftyone / STS2G
View on GitHub
Struts2漏洞扫描利用工具 - Golang版. Struts2 Scanner Written in Golang
☆572Jan 10, 2022Updated 4 years ago
bigsizeme / shiro-check
View on GitHub
Shiro反序列化回显利用、内存shell、检查 Burp插件
☆217Sep 1, 2022Updated 3 years ago
al0ne / Nmap_Bypass_IDS
View on GitHub
Nmap&Zmap特征识别，绕过IDS探测
☆329Aug 1, 2019Updated 6 years ago
LandGrey / ClassHound
View on GitHub
利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
☆711May 10, 2021Updated 4 years ago
c0ny1 / FastjsonExploit
View on GitHub
Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
☆1,389Dec 16, 2022Updated 3 years ago
ac0d3r / Hyuga
View on GitHub
Hyuga is a tool for monitoring Out-of-Band (OOB) traffic, supporting DNS, HTTP, LDAP, RMI, and DNS-Rebinding。🪤
☆538Dec 27, 2025Updated 2 months ago
r35tart / RedisWriteFile
View on GitHub
通过 Redis 主从写出无损文件
☆719May 25, 2020Updated 5 years ago
iceyhexman / flask_memory_shell
View on GitHub
Flask 内存马
☆313Mar 26, 2021Updated 4 years ago
jiangsir404 / pbscan
View on GitHub
基于burpsuite headless 的代理式被动扫描系统
☆95Feb 10, 2020Updated 6 years ago
webanalyzer / rules
View on GitHub
通用的指纹识别规则
☆371Dec 2, 2022Updated 3 years ago
exp1orer / JNDI-Inject-Exploit
View on GitHub
解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
☆770Jan 26, 2022Updated 4 years ago
BeichenDream / MysqlT
View on GitHub
伪造Myslq服务端,并利用Mysql逻辑漏洞来获取客户端的任意文件反击攻击者
☆364Apr 24, 2022Updated 3 years ago
opensec-cn / vtest
View on GitHub
用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
☆866Jul 21, 2019Updated 6 years ago
l3m0n / whatweb
View on GitHub
更快速的进行Web应用指纹识别
☆170May 9, 2019Updated 6 years ago
CTF-MissFeng / bayonet
View on GitHub
bayonet是一款src资产管理系统，从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统
☆1,507Nov 22, 2022Updated 3 years ago
webanalyzer / webanalyzer.py
View on GitHub
python webanalyzer
☆147Jun 2, 2021Updated 4 years ago
timwhitez / crawlergo_x_XRAY
View on GitHub
360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
☆1,183Nov 10, 2021Updated 4 years ago
er10yi / MagiCude
View on GitHub
分布式端口（漏洞）扫描、资产安全管理、实时威胁监控与通知、高效漏洞闭环、漏洞wiki、邮件报告通知、poc框架
☆571Mar 24, 2023Updated 2 years ago
SPuerBRead / Bridge
View on GitHub
无回显漏洞测试辅助平台，平台使用Java编写，提供DNSLOG，HTTPLOG等功能，辅助渗透测试过程中无回显漏洞及SSRF等漏洞的验证和利用。
☆402Dec 21, 2025Updated 2 months ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,404Jan 18, 2022Updated 4 years ago
r0eXpeR / redteam_vul
View on GitHub
红队作战中比较常遇到的一些重点系统漏洞整理。
☆2,521Jul 17, 2021Updated 4 years ago
bit4woo / domain_hunter_pro
View on GitHub
domain_hunter的高级版本，SRC挖洞、HW打点之必备！自动化资产收集；快速Title获取；外部工具联动；等等
☆2,116Jan 23, 2026Updated last month
xiaoZ-hc / redtool
View on GitHub
日常积累的一些红队工具及自己写的脚本，更偏向于一些diy的好用的工具，并不是一些比较常用的msf/awvs/xray这种
☆1,414Aug 18, 2024Updated last year
BaizeSec / bylibrary
View on GitHub
白阁文库是白泽Sec安全团队维护的一个漏洞POC和EXP公开项目
☆1,490Oct 12, 2023Updated 2 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,011May 21, 2024Updated last year
AlphabugX / Alphalog
View on GitHub
DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名产品(fuzz.red)，Alphalog与传统DNSLog不同，更快、更安全。
☆456Aug 20, 2025Updated 6 months ago
DeEpinGh0st / Erebus
View on GitHub
CobaltStrike后渗透测试插件
☆1,554Oct 28, 2021Updated 4 years ago
EASY233 / Finger
View on GitHub
一款红队在大量的资产中存活探测与重点攻击系统指纹探测工具
☆1,716Dec 22, 2023Updated 2 years ago