reallys / pentest-domain
域控 学习+攻击大纲
☆67Updated 5 years ago
Alternatives and similar repositories for pentest-domain:
Users that are interested in pentest-domain are comparing it to the libraries listed below
- 若依后台定时任务一键利用☆17Updated 2 years ago
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆87Updated last year
- ☁️Tencent Cloud AccessKey tools☆16Updated 7 months ago
- 利用shiro反序列化注入冰蝎内存马☆35Updated 3 years ago
- HCM宏景加解密工具☆46Updated last year
- 对接JNDIMonitor的Burp Suite被动扫描插件☆23Updated 3 years ago
- windows 添加管理员--Rust版本☆44Updated 2 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated last year
- 安服面经☞渗透测试/代码审计/安全研究☆27Updated 2 years ago
- 用Go+Fyne开发的,展示JAVA序列化流以及集成一键插入脏数据,UTF过长编码绕WAF(Utf OverLoad Encoding),修改类SerializeVersionUID功能的图形化工具。☆92Updated last month
- 窃取当前用户的ssh,sudo密码☆70Updated last year
- Nacos JRaft Hessian 反序列化 RCE EXP☆65Updated last year
- Cobalt Strike random C2 Profile 修改版(适配腾讯云函数,亚马逊云函数和CrossC2自定义protocol)☆88Updated last year
- 某软最新公开gadgegt,新加入不出网利用。☆61Updated 5 months ago
- Java 内存马生成插件☆50Updated last year
- Yonyou-UNSERIALIZE,用友NC 反序列化检查工具,批量检测用友NC 反序列化☆50Updated last year
- cobaltstrike 直接判断目标beacon存在的杀软☆45Updated 3 years ago
- nacos api bypass & jwt bypass & get all configs☆38Updated last year
- ☆31Updated 3 years ago
- 应对渗透中极限环境下命令回显 & 文件落地☆132Updated 2 years ago
- 一个用于隐藏C2的、开箱即用的反向代理服务器。旨在省去繁琐的配置Nginx服务的过程。☆80Updated 3 years ago
- 内存马持久化☆58Updated 2 years ago
- jmx未授权访问 弱口令批量检测 GUI工具☆31Updated last year
- ☆37Updated 3 years ago
- 如何将Java反序列化Payload极致缩小☆48Updated 3 years ago
- 组合利用泛微信息泄漏漏洞和任意用户登录漏洞,可获取全部loginId并测试登录☆58Updated last year
- 用于windows反弹shell的yaml-payload☆70Updated 3 years ago
- 一个勒索程序模拟脚本☆27Updated 11 months ago
- CNVD-2021-30167 用友NC BeanShell远程代码执行☆30Updated 3 years ago
- CS shellcode 加载器☆61Updated 3 years ago