此脚本用于测试 Rdies 未授权访问,在没权限写ssh私钥和定时任务又不知道web绝对路径的情况下,进行WEB目录探测
☆73May 3, 2019Updated 7 years ago
Alternatives and similar repositories for RedisDirScan
Users that are interested in RedisDirScan are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 通过 Redis 主从写出无损文件☆719May 25, 2020Updated 5 years ago
- ☆24Feb 24, 2019Updated 7 years ago
- 用于寻找多网卡主机方便内网跨网段渗透避免瞎打找不到核心网☆235Jul 17, 2020Updated 5 years ago
- 帮助java环境下任意文件下载情况自动化读取源码的小工具☆167Apr 5, 2019Updated 7 years ago
- 内网渗透中快速获取数据库所有库名,表名,列名。具体判断后再去翻数据,节省时间。适用于mysql,mssql。☆198Nov 11, 2019Updated 6 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- ☆10May 23, 2019Updated 7 years ago
- 使用WindowsAPI写的一些渗透小工具☆101Jun 17, 2021Updated 4 years ago
- cobaltstrike ms17-010 module and some other☆419Jun 13, 2019Updated 6 years ago
- 一款基于webshell命令执行功能实现的GUI webshell管理工具,支持流量加密☆219Jun 4, 2021Updated 4 years ago
- 可在Windows下执行系统命令的Redis模块,可用于Redis主从复制攻击。☆265Nov 25, 2022Updated 3 years ago
- ☆15Feb 13, 2018Updated 8 years ago
- flash 劫持轮子,CSRF,劫持,跳转,swf 有需求可以提issues ,src挖掘,劫持response☆86Nov 9, 2019Updated 6 years ago
- 此项目用来提取收集以往泄露的密码中符合条件的强弱密码☆1,131Apr 1, 2019Updated 7 years ago
- This repo contains Axis web shells☆18Jun 15, 2019Updated 6 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- geacon:简单适配了一个profile配置文件,可直接拿来修改使用,用于cs上线linux.☆160Aug 3, 2022Updated 3 years ago
- 利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码☆714May 10, 2021Updated 5 years ago
- Using To MySQL Elevate Privileges.☆171Nov 24, 2020Updated 5 years ago
- burp插件开发笔记☆11Dec 26, 2021Updated 4 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- 修改的SweetPotato,使之可以用于CobaltStrike v4.0☆246Apr 30, 2020Updated 6 years ago
- 适合在命令行中使用的轻巧的SQL Server数据库安全检测工具☆432Oct 23, 2021Updated 4 years ago
- Burp suite 分块传输辅助插件☆2,033Feb 23, 2022Updated 4 years ago
- 配合reGeorg使用的内网扫描工具☆62Oct 27, 2016Updated 9 years ago
- Bare Metal GPUs on DigitalOcean Gradient AI • AdPurpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
- SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE☆231Dec 5, 2020Updated 5 years ago
- 鱼儿在cs上线后自动收杆|Automatically stop fishing in javascript after the fish is hooked☆139Apr 19, 2020Updated 6 years ago
- 整理收集Struts2漏洞环境☆271Jan 9, 2018Updated 8 years ago
- 绕过专业工具检测的Webshell研究文章和免杀的Webshell☆1,732Nov 15, 2020Updated 5 years ago
- 一个简单的现代化公司域名使用规律预测及生成工具☆389Feb 24, 2022Updated 4 years ago
- 用于记录分享一些有趣的案例☆867Jan 10, 2022Updated 4 years ago
- MSSQL注入提权,bypass的一些总结☆738Jun 25, 2024Updated last year
- GoScan是采用Golang语言编写的一款分布式综合资产管理系统,适合红队、SRC等使用☆715May 6, 2021Updated 5 years ago
- 火刃 - 轻量级的,多功能的,联合xray、物联网引擎的全自动广域队列扫描器☆28Mar 7, 2022Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- webuploader-v-0.1.15未授权-任意文件上传☆52Sep 6, 2019Updated 6 years ago
- ��基于burpsuite headless 的代理式被动扫描系统☆95Feb 10, 2020Updated 6 years ago
- POC-T强化版本 POC-S , 用于红蓝对抗中快速验证Web应用漏洞, 对功能进行强化以及脚本进行分类添加,自带dnslog等, 平台补充来自vulhub靶机及其他开源项目的高可用POC☆357Mar 12, 2020Updated 6 years ago
- Windows杀软在线对比辅助☆286Jul 26, 2022Updated 3 years ago
- TeamView Get PassWord☆74Feb 20, 2022Updated 4 years ago
- 免杀webshell无限生成工具☆1,285Apr 3, 2020Updated 6 years ago
- SharpSQLTools 和@Rcoil一起写的小工具,可上传下载文件,xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。☆967Aug 5, 2021Updated 4 years ago