sp4zcmd / 0day
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
☆12Updated 2 years ago
Alternatives and similar repositories for 0day:
Users that are interested in 0day are comparing it to the libraries listed below
- remote execute js when debugger.paused☆42Updated last year
- burp插件:python版,token防重放绕过☆20Updated 4 years ago
- 一些结合第三方组件的Fastjson POC,在1.2.48以后版本中陆续被添加至黑名单。☆56Updated 5 years ago
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆87Updated last year
- ☆38Updated 4 years ago
- 对接JNDIMonitor的Burp Suite被动扫描插件☆23Updated 3 years ago
- burpsuite wildcard 插件维护分支☆1Updated 2 years ago
- 一个Spring4Shell 被动式��检测的Burp插件☆93Updated 2 years ago
- AutoScan 有多个目标时,多线程调用xray+rad进行自动扫描☆88Updated 2 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated last year
- Hadoop Yan ResourceManager unauthorized RCE☆34Updated 3 years ago
- ☆61Updated 4 years ago
- 解答开发关于安全漏洞的常见问题☆41Updated 4 years ago
- Linux SUID 提权检测脚本,自动分析具有 s 权限的可执行文件并给出相应的提权利用方法☆48Updated 4 years ago
- ☆81Updated 3 years ago
- 在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 3 years ago
- burpsuite插件-被动无感识别指纹-主动poc扫描☆25Updated 5 months ago
- ☆35Updated 2 years ago
- ☆67Updated 3 years ago
- burp被动扫描自动转发和手动重发插件☆52Updated 4 years ago
- 一个简单的批量反编译jar包的小脚本☆35Updated 2 years ago
- 基于SerializationDumper的Shiro Cookie序列化数据解密小工具☆51Updated 4 years ago
- java☆54Updated 2 years ago
- 一款探测fastjson漏洞的BurpSuite插件☆60Updated 2 years ago
- log4j2 RCE漏洞(CVE-2021-44228)内网扫描器,可用于在不出网的条件下进行漏洞扫描,帮助企业内部快速发现Log4jShell漏洞。☆37Updated 3 years ago
- CodeQL 寻找 JNDI利用 Lookup接口☆163Updated 2 years ago
- 一款BurpSuite插件,辅助手工测试☆72Updated last year
- 基于BurpShiroPassiveScan修改增加了Xray回显链生成☆54Updated 2 years ago
- ☆12Updated 3 years ago
- XxlJob<=2.1.2配置不当情况下反序列化RCE☆92Updated 4 years ago