r35tart/Penetration_Testing_Case external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

r35tart/Penetration_Testing_Case

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/r35tart/Penetration_Testing_Case)

Close

r35tart / Penetration_Testing_CaseView on GitHubMore

• External links
• Readme badge

用于记录分享一些有趣的案例

☆866Jan 10, 2022Updated 4 years ago

Alternatives and similar repositories for Penetration_Testing_Case

Users that are interested in Penetration_Testing_Case are comparing it to the libraries listed below

• yzddmr6 / webshell-venom

  View on GitHub
  免杀webshell无限生成工具
  ☆1,288Apr 3, 2020Updated 5 years ago
• Mel0day / RedTeam-BCS

  View on GitHub
  BCS（北京网络安全大会）2019 红队行动会议重点内容
  ☆819Sep 4, 2019Updated 6 years ago
• aleenzz / MYSQL_SQL_BYPASS_WIKI

  View on GitHub
  mysql注入,bypass的一些心得
  ☆1,326Jun 25, 2024Updated last year
• r35tart / RW_Password

  View on GitHub
  此项目用来提取收集以往泄露的密码中符合条件的强弱密码
  ☆1,133Apr 1, 2019Updated 6 years ago
• 1120362990 / vulnerability-list

  View on GitHub
  在渗透测试中快速检测常见中间件、组件的高危漏洞。
  ☆728Mar 21, 2022Updated 3 years ago
• aleenzz / Cobalt_Strike_wiki

  View on GitHub
  Cobalt Strike系列
  ☆2,413Dec 3, 2023Updated 2 years ago
• opensec-cn / vtest

  View on GitHub
  用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
  ☆866Jul 21, 2019Updated 6 years ago
• boy-hack / wooyun-payload

  View on GitHub
  从wooyun中提取的payload，以及burp插件
  ☆842Jun 17, 2022Updated 3 years ago
• uknowsec / Active-Directory-Pentest-Notes

  View on GitHub
  个人域渗透学习笔记
  ☆1,801Feb 7, 2020Updated 6 years ago
• LangziFun / LangSrcCurise

  View on GitHub
  SRC子域名资产监控
  ☆1,299Jan 14, 2021Updated 5 years ago
• l3m0n / Bypass_Disable_functions_Shell

  View on GitHub
  一个各种方式突破Disable_functions达到命令执行的shell
  ☆1,198Oct 17, 2023Updated 2 years ago
• c0ny1 / chunked-coding-converter

  View on GitHub
  Burp suite 分块传输辅助插件
  ☆2,023Feb 23, 2022Updated 4 years ago
• dr0op / WeblogicScan

  View on GitHub
  增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
  ☆968Jun 16, 2024Updated last year
• aleenzz / MSSQL_SQL_BYPASS_WIKI

  View on GitHub
  MSSQL注入提权,bypass的一些总结
  ☆737Jun 25, 2024Updated last year
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,012May 21, 2024Updated last year
• timwhitez / crawlergo_x_XRAY

  View on GitHub
  360/0Kee-Team/crawlergo动态爬虫结合长亭XRAY扫描器的被动扫描功能
  ☆1,183Nov 10, 2021Updated 4 years ago
• LandGrey / webshell-detect-bypass

  View on GitHub
  绕过专业工具检测的Webshell研究文章和免杀的Webshell
  ☆1,733Nov 15, 2020Updated 5 years ago
• yangyangwithgnu / bypass_disablefunc_via_LD_PRELOAD

  View on GitHub
  bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)
  ☆1,169Aug 7, 2021Updated 4 years ago
• Ridter / redis-rce

  View on GitHub
  Redis 4.x/5.x RCE
  ☆975Nov 30, 2021Updated 4 years ago
• LandGrey / ClassHound

  View on GitHub
  利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
  ☆711May 10, 2021Updated 4 years ago
• rabbitmask / WeblogicScan

  View on GitHub
  Weblogic一键漏洞检测工具，V1.5，更新时间：20200730
  ☆2,266May 22, 2023Updated 2 years ago
• uknowsec / SharpToolsAggressor

  View on GitHub
  内网渗透中常用的c#程序整合成cs脚本，直接内存加载。持续更新~
  ☆498Feb 13, 2020Updated 6 years ago
• c0ny1 / FastjsonExploit

  View on GitHub
  Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
  ☆1,389Dec 16, 2022Updated 3 years ago
• r35tart / RedisWriteFile

  View on GitHub
  通过 Redis 主从写出无损文件
  ☆719May 25, 2020Updated 5 years ago
• r0eXpeR / redteam_vul

  View on GitHub
  红队作战中比较常遇到的一些重点系统漏洞整理。
  ☆2,522Jul 17, 2021Updated 4 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• theLSA / CS-checklist

  View on GitHub
  PC客户端（C-S架构）渗透测试checklist / Client side(C-S) penetration checklist
  ☆663Feb 24, 2021Updated 5 years ago
• threedr3am / learnjavabug

  View on GitHub
  Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
  ☆2,689Mar 14, 2024Updated last year
• FunnyWolf / pystinger

  View on GitHub
  Bypass firewall for traffic forwarding using webshell
  ☆1,430Sep 29, 2021Updated 4 years ago
• Ivan1ee / NET-Deserialize

  View on GitHub
  总结了20+.Net反序列化文章，持续更新
  ☆748Apr 3, 2024Updated last year
• fofapro / Hosts_scan

  View on GitHub
  这是一个用于IP和域名碰撞匹配访问的小工具，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。
  ☆1,189Apr 30, 2019Updated 6 years ago
• 7dog7 / bottleneckOsmosis

  View on GitHub
  瓶颈渗透,web渗透,red红队,fuzz param,注释,js字典,ctf
  ☆717Jul 20, 2022Updated 3 years ago
• c0ny1 / passive-scan-client

  View on GitHub
  Burp被动扫描流量转发插件
  ☆1,460Jun 17, 2024Updated last year
• lufeirider / CVE-2019-2725

  View on GitHub
  CVE-2019-2725 命令回显
  ☆436May 8, 2023Updated 2 years ago
• Leezj9671 / Pentest_Interview

  View on GitHub
  个人准备渗透测试和安全面试的经验之谈，和去部分厂商的面试题，干货真的满满~
  ☆1,969Sep 18, 2021Updated 4 years ago
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,016Oct 15, 2020Updated 5 years ago
• CTF-MissFeng / bayonet

  View on GitHub
  bayonet是一款src资产管理系统，从子域名、端口服务、漏洞、爬虫等一体化的资产管理系统
  ☆1,507Nov 22, 2022Updated 3 years ago
• QAX-A-Team / sharpwmi

  View on GitHub
  sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
  ☆716Aug 3, 2021Updated 4 years ago
• ztosec / secscan-authcheck

  View on GitHub
  越权检测工具
  ☆746Jun 17, 2022Updated 3 years ago