shack2/skyscorpion

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/shack2/skyscorpion)

shack2 / skyscorpion

新版将不再对外公开发布。天蝎权限管理工具采用Java平台的JavaFX技术开发的桌面客户端，支持跨平台运行，目前基于JDK1.8开发，运行必须安装JDK或JRE 1.8，注意不能是open jdk，只能是oracle的jdk。天蝎权限管理工具基于冰蝎加密流量进行WebShell通信管理的原理，目前实现了jsp、aspx、php、asp端的常用操作功能，在原基础上，优化了大文件上传下载、Socket代理的问题，修改了部分API接口代码。

☆386

Alternatives and similar repositories for skyscorpion

Users that are interested in skyscorpion are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

xinyu2428 / TDOA_RCE
View on GitHub
通达OA综合利用工具
☆517Mar 17, 2021Updated 5 years ago
Y4er / WebLogic-Shiro-shell
View on GitHub
WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞，一键注册蚁剑filter内存shell
☆534Aug 25, 2020Updated 5 years ago
r35tart / RedisWriteFile
View on GitHub
通过 Redis 主从写出无损文件
☆718May 25, 2020Updated 5 years ago
uknowsec / frpModify
View on GitHub
修改frp支持域前置与配置文件自删除
☆398Dec 31, 2020Updated 5 years ago
mrknow001 / aliyun-accesskey-Tools
View on GitHub
阿里云accesskey利用工具
☆1,228Apr 8, 2022Updated 4 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
wyzxxz / shiro_rce_tool
View on GitHub
shiro 反序列命令执行辅助检测工具
☆1,572May 21, 2024Updated last year
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,016May 21, 2024Updated last year
FunnyWolf / pystinger
View on GitHub
Bypass firewall for traffic forwarding using webshell
☆1,430Sep 29, 2021Updated 4 years ago
SafeGroceryStore / MDUT
View on GitHub
MDUT - Multiple Database Utilization Tools
☆2,209Sep 22, 2023Updated 2 years ago
Daybr4ak / C2ReverseProxy
View on GitHub
一款可以在不出网的环境下进行反向代理及cs上线的工具
☆491Apr 26, 2023Updated 2 years ago
feihong-cs / ShiroExploit-Deprecated
View on GitHub
Shiro550/Shiro721 一键化利用工具，支持多种回显方式
☆1,957Jun 4, 2021Updated 4 years ago
hayasec / 360SafeBrowsergetpass
View on GitHub
这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具，用于节省红队工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
☆637Apr 4, 2021Updated 5 years ago
lz520520 / railgun
View on GitHub
☆2,286Jan 17, 2025Updated last year
DeEpinGh0st / Erebus
View on GitHub
CobaltStrike后渗透测试插件
☆1,564Oct 28, 2021Updated 4 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
pandasec888 / taowu-cobalt_strike
View on GitHub
☆1,826Nov 24, 2025Updated 4 months ago
BeichenDream / Godzilla
View on GitHub
哥斯拉
☆4,359Jul 17, 2024Updated last year
1y0n / AV_Evasion_Tool
View on GitHub
掩日 - 免杀执行器生成工具
☆2,759Aug 18, 2025Updated 7 months ago
dr0op / shiro-550-with-NoCC
View on GitHub
Shiro-550 不依赖CC链利用工具
☆451Jun 19, 2024Updated last year
Adminisme / ServerScan
View on GitHub
ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。
☆1,637Jun 16, 2024Updated last year
sv3nbeast / ShiroScan
View on GitHub
Shiro<=1.2.4反序列化，一键检测工具
☆985Mar 4, 2021Updated 5 years ago
uknowsec / SharpDecryptPwd
View on GitHub
对密码已保存在 Windwos 系统上的部分程序进行解析,包括：Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品（Xshell,Xftp)。源码：https://github.com/RowTeam/SharpDecrypt…
☆1,263Mar 16, 2022Updated 4 years ago
yzddmr6 / As-Exploits
View on GitHub
中国蚁剑后渗透框架
☆941Jan 18, 2024Updated 2 years ago
MountCloud / BehinderClientSource
View on GitHub
❄️冰蝎客户端源码-V4.0.6🔞
☆942Jul 8, 2025Updated 9 months ago
Wordpress hosting with auto-scaling - Free Trial • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
uknowsec / SharpSQLTools
View on GitHub
SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。
☆966Aug 5, 2021Updated 4 years ago
pmiaowu / HostCollision
View on GitHub
用于host碰撞而生的小工具,专门检测渗透中需要绑定hosts才能访问的主机或内部系统
☆667Jun 13, 2024Updated last year
Ryze-T / Sylas
View on GitHub
数据库综合利用工具
☆543Feb 16, 2022Updated 4 years ago
lengjibo / NetUser
View on GitHub
使用windows api添加用户，可用于net无法使用时.分为nim版，c++版本，RDI版，BOF版。
☆421Sep 29, 2021Updated 4 years ago
pmiaowu / BurpShiroPassiveScan
View on GitHub
一款基于BurpSuite的被动式shiro检测插件
☆1,798Dec 14, 2022Updated 3 years ago
timwhitez / Cobalt-Strike-Aggressor-Scripts
View on GitHub
Cobalt Strike Aggressor 插件包
☆673Aug 31, 2021Updated 4 years ago
iiiusky / alicloud-tools
View on GitHub
阿里云ECS、策略组辅助小工具
☆879Mar 2, 2023Updated 3 years ago
Tas9er / ByPassBehinder
View on GitHub
ByPassBehinder / 冰蝎WebShell免杀生成 / Code By:Tas9er
☆839May 28, 2022Updated 3 years ago
QAX-A-Team / sharpwmi
View on GitHub
sharpwmi是一个基于rpc的横向移动工具，具有上传文件和执行命令功能。
☆717Aug 3, 2021Updated 4 years ago
Wordpress hosting with auto-scaling - Free Trial • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
QAX-A-Team / BrowserGhost
View on GitHub
这是一个抓取浏览器密码的工具，后续会添加更多功能
☆1,458May 21, 2022Updated 3 years ago
L-codes / Neo-reGeorg
View on GitHub
Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
☆3,340Mar 11, 2026Updated last month
wyzxxz / heapdump_tool
View on GitHub
heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等
☆1,444May 21, 2024Updated last year
achuna33 / MYExploit
View on GitHub
OAExploit一款基于产品的一键扫描工具。
☆1,483Sep 20, 2022Updated 3 years ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,406Jan 18, 2022Updated 4 years ago
Ares-X / shiro-exploit
View on GitHub
Shiro反序列化利用工具，支持新版本(AES-GCM)Shiro的key爆破，配合ysoserial，生成回显Payload
☆896May 28, 2021Updated 4 years ago
Tas9er / ByPassBehinder4J
View on GitHub
冰蝎Java WebShell自动化免杀生成
☆784Mar 15, 2022Updated 4 years ago