shengshengli / ShiroAttack4.5.3View external linksLinks
shiro反序列化利用综合利用,包含(回显执行命令/注入内存马)原版中NoCC的问题 https://github.com/j1anFen/shiro_attack
☆12May 1, 2022Updated 3 years ago
Alternatives and similar repositories for ShiroAttack4.5.3
Users that are interested in ShiroAttack4.5.3 are comparing it to the libraries listed below
Sorting:
- 渗透测试学习笔记☆14Jul 9, 2022Updated 3 years ago
- 红队笔记☆18Jul 20, 2022Updated 3 years ago
- 一个集和多线程 批量验证 poc验证 存活测试 备份文件探测 后台探测 渗透测试框架。☆18May 8, 2022Updated 3 years ago
- 鱼竿钓鱼干的学习笔记文档☆21Jan 5, 2023Updated 3 years ago
- 该项目为个人渗透测试学习笔记,请勿用作其他用途!☆25Jul 28, 2022Updated 3 years ago
- Redis 沙盒逃逸(CVE-2022-0543)POC&EXP☆25Jul 23, 2022Updated 3 years ago
- 参考国外巨佬思路,自己写一个为渗透测试初始化ubuntu虚拟机的bash脚本☆16Oct 13, 2025Updated 4 months ago
- 模拟QQ邮箱登录的钓鱼网站,数据可实时发送到手机上。☆10May 20, 2022Updated 3 years ago
- 从零开始的内网渗透学习记录☆12Mar 25, 2022Updated 3 years ago
- Apache 远程代码执行 (CVE-2021-42013)批量检测工具:Apache HTTP Server是美国阿帕奇(Apache)基金会的一款开源网页服务器。该服务器具有快速、可靠且可通过简单的API进行扩充的特点,发现 Apache HTTP Server 2.4…☆10Dec 24, 2021Updated 4 years ago
- CVE-2020-5902 CVE-2021-22986 CVE-2022-1388 POC集合☆10Jul 30, 2022Updated 3 years ago
- 一个自动挖掘漏洞的框架,日后会发展成强大的信息收集+漏洞挖掘脚本!☆26May 27, 2022Updated 3 years ago
- CVE-2021-43798 Grafana 任意文件读取漏洞 POC+参数☆14Dec 17, 2021Updated 4 years ago
- CVE-2021-22205 检测脚本,支持getshell和命令执行☆12Jul 25, 2022Updated 3 years ago
- Thinkphp各版本漏洞验证脚本☆32Mar 16, 2023Updated 2 years ago
- 一款信息泄漏利用工具,适用于.git/.svn/.DS_Store泄漏和目录列出(dumpall Golang重构版)☆22Apr 8, 2025Updated 10 months ago
- 万户数据库解密☆21Dec 3, 2023Updated 2 years ago
- Cobalt Strike二次开发笔记,记录功能和思路☆16Jul 9, 2022Updated 3 years ago
- Exploit for CVE-2022-27226☆15Mar 19, 2022Updated 3 years ago
- 本项目是记录自己在Java代码审计过程中遇到的一些优秀文章内容,以及涉及到的Java项目源文件,汇总起来方便初学者下载分析。☆31Jun 14, 2022Updated 3 years ago
- 异或shellcode和ppid欺骗免杀☆14Mar 8, 2022Updated 3 years ago
- SolarView Compact through 6.00 downloader.php commands injection (RCE) nuclei-templates☆14Jun 16, 2023Updated 2 years ago
- 一个红队知识仓库☆15Jun 13, 2022Updated 3 years ago
- Red Team Server (RTS)☆16Mar 8, 2024Updated last year
- CVE-2022-22947_POC_EXP☆13Mar 17, 2022Updated 3 years ago
- CVE-2023-29922 Batch detection script☆15May 23, 2023Updated 2 years ago
- POC for CVE-2022-21907: HTTP Protocol Stack Remote Code Execution Vulnerability.☆17Jun 18, 2025Updated 7 months ago
- Just learning around new stuff mostly Red Teaming and such but will try to see if I can update or simplify them more, nothing too exotic …☆44Mar 20, 2022Updated 3 years ago
- 渗透测试、攻防姿势笔记☆20Jun 13, 2025Updated 8 months ago
- (入门不当可能导致入狱) 基于linux的企业级别社会工程学渗透测试、轻量级别Web渗透辅助。内置的钓鱼网站可以获取主要的个人信息账户;网站克隆模块可以把白宫网站给克隆下来;内置的各种Web终端完全可以群体性的攻击和对社会工程学的测试;破坏性脚本和半自动编写勒索信完美辅助了…☆48Oct 15, 2022Updated 3 years ago
- 要你命三千,集多种渗透工具于一身的终极武器霸王。☆19Aug 11, 2022Updated 3 years ago
- Java内存马相关小工具☆19Jun 26, 2023Updated 2 years ago
- 一个简单的集成化渗透测试工具☆19Jun 7, 2022Updated 3 years ago
- 一款综合漏洞利用工具箱。☆51Jun 15, 2022Updated 3 years ago
- 一个针对shiro反序列化漏洞(CVE-2016-4437)的快速利用工具/A simple tool targeted at shiro framework attacks with ysoserial.☆24Jul 6, 2022Updated 3 years ago
- 帮助红队收集目标企业员工的邮箱信息,借助必应搜索引擎爬取邮箱。☆25Apr 26, 2022Updated 3 years ago
- Venom is a collaborative C2 framework used by Red Team operators. providing an interactive Web GUI written in Python and PowerShell.☆19Jul 14, 2022Updated 3 years ago
- CVE-2022-22947 memshell☆18Mar 18, 2022Updated 3 years ago
- 👻 [PoC] CSV+ 0.8.0 - Arbitrary Code Execution (CVE-2022-21241)☆24Feb 11, 2022Updated 4 years ago