prakharathreya / Struts2-RCE
A Burp Extender for checking for struts 2 RCE vulnerabilities.
☆283Updated 8 months ago
Alternatives and similar repositories for Struts2-RCE:
Users that are interested in Struts2-RCE are comparing it to the libraries listed below
- burpsuite extension for check unauthorized vulnerability☆230Updated 4 years ago
- 一款基于burp的反射xss检测插件☆152Updated 3 years ago
- 用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件☆202Updated last year
- 各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC 该项目将不断更新☆265Updated 2 years ago
- 面向HW的红队半自动扫描器☆223Updated 3 years ago
- fastjson漏洞burp插件,检测fastjson<1.2.68基于dnslog,fastjson<=1.2.24和1.2.33<=fatjson<=1.2.47的不出网检测和TomcatEcho,SpringEcho回显方案。☆115Updated 3 years ago
- 域信息收集工具☆390Updated 2 years ago
- ☆320Updated 3 years ago
- 一款用于辅助渗透测试工程师日常渗透测试的Burp被动漏扫插件☆240Updated 2 years ago
- Redis-Attack By Replication (通过主从复制攻击Redis)☆321Updated 2 years ago
- 域渗透脑图中文翻译版☆274Updated 3 years ago
- 个人整理的一些域渗透Tricks,可能有一些错误。☆249Updated 3 years ago
- xTools,一个辅助小工具☆163Updated 2 years ago
- burp插件 ShiroScan 主要用于框架、无dnslog key检测☆397Updated last year
- 《HackLog4j-永恒之恶龙》致敬全宇宙最无敌的Java日志库!Tribute to the most invincible Java logging library in the universe!☆198Updated 2 years ago
- 致力于收集Goby PoC,请勿用于非法操作,后果自负。☆250Updated 2 years ago
- Apache Solr Exploits 🌟☆338Updated 4 years ago
- JSONP Hunter in burpsuite.☆213Updated 4 years ago
- CVE-2020-14882_ALL综合利用工具,支持命令回显检测、批量命令回显、外置xml无回显命令执行等功能。☆144Updated 2 years ago
- 基于burpsuite的资产分析工具☆430Updated last year
- xray+rad批量主动扫描☆226Updated 2 years ago
- 批量检测log4j漏洞,主要还是批量fuzzz 头☆33Updated 3 years ago
- 一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。☆360Updated 3 years ago
- 一个LDAP请求监听器,摆脱dnslog平台☆285Updated last year
- CVE-2022-22947☆219Updated 2 years ago
- Log4j jndi injection fuzz tool☆71Updated 3 years ago
- xray高级版本破解通用启动器☆246Updated 2 years ago
- 用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统☆606Updated 8 months ago
- Shiro-550 不依赖CC链利用工具☆448Updated 8 months ago
- 扫描jboss常见漏洞路径是否存在。☆80Updated 5 years ago