safe6Sec / Penetration_Testing_POC
渗透测试有关的POC、EXP、脚本、提权、小工具等,欢迎补充、完善---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
☆9Updated 3 years ago
Related projects: ⓘ
- ☆20Updated this week
- JWT秘钥爆破脚本☆22Updated last year
- ☆23Updated this week
- CNVD-2021-30167 用友NC BeanShell远程代码执行☆31Updated 3 years ago
- 个人翻译/总结渗透测试思维导图☆28Updated 2 years ago
- ☆37Updated this week
- 若依后台定时任务一键利用☆17Updated 2 years ago
- 窃取当前用户的ssh,sudo密码☆68Updated last year
- Web弱密码爆破工具, 驱动浏览器进行弱密码爆破, 支持所有Web系统. 协程练手项目☆34Updated last year
- 快速批量判断目标列表是否存在CDN☆25Updated 8 months ago
- A Large killer focused on intranet scanning☆28Updated 3 years ago
- 对接JNDIMonitor的Burp Suite被动扫描插件☆23Updated 2 years ago
- 代码审计工具,用于监听mysql日志,支持mysql8.0以上和以下的版本。☆24Updated 2 years ago
- ☆35Updated 2 years ago
- Linux SUID 提权检测脚本,自动分析具有 s 权限的可执行文件并给出相应的提权利用方法☆46Updated 3 years ago
- 陆续补充一些自己写的cobaltstrike插件☆46Updated 2 years ago
- 一个既可主动,又可被动提取链接的burp插件☆42Updated 5 months ago
- Wwaf is a small tool for identifying Web application firewall (WAF) products.☆24Updated last year
- golang写的批量对目标网站进行截图的小工具,适合目标资产比较多时,快速定位薄弱点。☆32Updated last year
- Learning JAVA for Security☆32Updated 2 years ago
- ☆51Updated this week
- 二维码钓鱼☆28Updated last year
- 基于BurpShiroPassiveScan修改增加了Xray回显链生成☆53Updated 2 years ago
- windows 添加管理员--Rust版本☆41Updated 2 years ago
- ☆33Updated this week
- 子域名接管的几种变体靶场☆22Updated 2 months ago
- Nacos JRaft Hessian 反序列化 RCE EXP☆64Updated last year
- burp插件:python版,token防重放绕过☆19Updated 3 years ago
- ☆45Updated this week
- Java 代码审计-存在风险的函数汇总。方便我们日常代码审计过程中快速定位漏洞点,配合静态代码分析工具做到事半功倍。Java code audit - summary of risky functions. It is convenient for us to quickl…☆26Updated 2 months ago