prakharathreya / Struts2-RCE
A Burp Extender for checking for struts 2 RCE vulnerabilities.
☆283Updated 7 months ago
Alternatives and similar repositories for Struts2-RCE:
Users that are interested in Struts2-RCE are comparing it to the libraries listed below
- burpsuite extension for check unauthorized vulnerability☆230Updated 4 years ago
- 一款基于burp的反射xss检测插件☆152Updated 3 years ago
- 用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件☆202Updated last year
- fastjson漏洞burp插件,检测fastjson<1.2.68基于dnslog,fastjson<=1.2.24和1.2.33<=fatjson<=1.2.47的不出网检测和TomcatEcho,SpringEcho回显方案。☆114Updated 3 years ago
- Redis-Attack By Replication (通过主从复制攻击Redis)☆324Updated 2 years ago
- 域渗透脑图中文翻译版☆275Updated 3 years ago
- 面向HW的红队半自动扫描器☆222Updated 3 years ago
- 致力于收集Goby PoC,请勿用于非法操作,后果自负。☆249Updated 2 years ago
- 基于burpsuite的资产分析工具☆433Updated last year
- 批量检测log4j漏洞,主要还是批量fuzzz 头☆33Updated 3 years ago
- ☆320Updated 3 years ago
- 一款用于辅助渗透测试工程师日常渗透测试的Burp被动漏扫插件☆239Updated 2 years ago
- CVE-2022-22947☆220Updated 2 years ago
- xTools,一个辅助小工具☆163Updated 2 years ago
- 《HackLog4j-永恒之恶龙》致敬全宇宙最无敌的Java日志库!Tribute to the most invincible Java logging library in the universe!☆198Updated 2 years ago
- 各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新☆265Updated 2 years ago
- burp插件 ShiroScan 主要用于框架、无dnslog key检测☆393Updated last year
- 域信息收集工具☆388Updated 2 years ago
- Apache Solr Exploits 🌟☆338Updated 4 years ago
- 用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统☆602Updated 7 months ago
- 一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。☆356Updated 3 years ago
- 远程代码执行S2-062 CVE-2021-31805验证POC☆131Updated 2 years ago
- 一个LDAP请求监听器,摆脱dnslog平台☆285Updated last year
- JSONP Hunter in burpsuite.☆211Updated 4 years ago
- CobaltStrike4.4 一键部署脚本 随机生成密码、key、端口号、证书等,解决cs4.x无法运行在Linux上报错问题 灰常银杏化设计☆288Updated 2 years ago
- AWS云平台 AccessKey 泄漏利用工具☆381Updated last year
- 参考十余个项目整理的目录和文件字典☆126Updated 2 years ago
- ☆497Updated 2 years ago
- 数据库综合利用工具☆537Updated 2 years ago
- Log4j jndi injection fuzz tool☆70Updated 3 years ago