pmiaowu / log4j2Scan
用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件
☆203Updated last year
Alternatives and similar repositories for log4j2Scan:
Users that are interested in log4j2Scan are comparing it to the libraries listed below
- 收集内存马打入方式☆495Updated 2 years ago
- 一个高度可定制化的JNDI和Java反序列化利用工具☆461Updated 2 years ago
- Redis-Attack By Replication (通过主从复制攻击Redis)☆327Updated 2 years ago
- 基于burpsuite的资产分析工具☆428Updated last year
- JNDI在java高版本的利用工具,FUZZ利用链☆549Updated 2 years ago
- 致力于收集Goby PoC,请勿用于非法操作,后果自负。☆249Updated 2 years ago
- ☆504Updated 2 years ago
- AWS云平台 AccessKey �泄漏利用工具☆381Updated last year
- fastjson漏洞burp插件,检测fastjson<1.2.68基于dnslog,fastjson<=1.2.24和1.2.33<=fatjson<=1.2.47的不出网检测和TomcatEcho,SpringEcho回显方案。☆117Updated 3 years ago
- 用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统☆613Updated 9 months ago
- xray高级版本破解通用启动器☆245Updated 2 years ago
- Java应用的一些配置文件字典,来源于公开的字典与平时收集☆303Updated last year
- impacket-gui☆292Updated last year
- Space_view 是一款Hunter(鹰图平台)或者FOFA平台 资产展示的浏览器油猴插件☆313Updated 4 months ago
- 致远OA综合利用工具☆226Updated 3 years ago
- 一个全新的敏感文件发现工具☆274Updated 4 years ago
- Hearts K-企业资产发现与脆弱性检查工具,自动化资产信息收集与漏洞扫描☆250Updated last year
- 强化fscan的漏扫POC库☆466Updated 2 years ago
- ☆316Updated 7 months ago
- burp插件 ShiroScan 主要用于框架、无dnslog key检测☆409Updated last year
- 域信息收集工具☆390Updated 2 years ago
- 《HackLog4j-永恒之恶龙》致敬全宇宙最无敌的Java日志库!Tribute to the most invincible Java logging library in the universe!☆198Updated 2 years ago
- fastjson利用,支持tomcat、spring回显,哥斯拉内存马;回显利用链为dhcp、ibatis、c3p0。☆279Updated 3 years ago
- 内网横向移动工具箱☆270Updated last year
- 集权设施扫描器☆423Updated last year
- shiro key 收集☆169Updated 3 years ago
- xray+rad批量主动扫描☆227Updated 2 years ago
- CVE-2022-22947☆219Updated 3 years ago
- 数据库综合利用工具☆542Updated 3 years ago
- ☆208Updated 6 months ago