sukabuliet/ThinkphpRCE

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/sukabuliet/ThinkphpRCE)

sukabuliet / ThinkphpRCE

Thinkphp rce扫描脚本，附带日志扫描

☆242

Alternatives and similar repositories for ThinkphpRCE

Users that are interested in ThinkphpRCE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

NS-Sp4ce / TongDaOA-Fake-User
View on GitHub
通达OA 任意用户登录漏洞
☆358Aug 27, 2020Updated 5 years ago
jas502n / DBconfigReader
View on GitHub
泛微ecology OA系统接口存在数据库配置信息泄露漏洞
☆50Jul 13, 2020Updated 5 years ago
Lucifer1993 / TPscan
View on GitHub
一键ThinkPHP漏洞检测
☆1,162Nov 1, 2023Updated 2 years ago
zilong3033 / fastjsonScan
View on GitHub
fastjson漏洞burp插件，检测fastjson<1.2.68基于dnslog，fastjson<=1.2.24和1.2.33<=fatjson<=1.2.47的不出网检测和TomcatEcho,SpringEcho回显方案。
☆126May 14, 2021Updated 5 years ago
OA-HUNTER / TongDa-OA
View on GitHub
通达OA一些漏洞点
☆162Aug 20, 2020Updated 5 years ago
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
bigsizeme / shiro-check
View on GitHub
Shiro反序列化回显利用、内存shell、检查 Burp插件
☆217Sep 1, 2022Updated 3 years ago
dr0op / WeblogicScan
View on GitHub
增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
☆962Jun 16, 2024Updated last year
sf197 / GetPwd
View on GitHub
用CSharp写的一款信息搜集工具，目前支持Navicat、TeamView、Xshell、SecureCRT产品的密码解密
☆251Aug 26, 2020Updated 5 years ago
CTF-MissFeng / Watchdog
View on GitHub
Watchdog是bayonet修改版，重新优化了数据库及web及扫描程序,加入多节点
☆625Dec 8, 2022Updated 3 years ago
z1un / TongdaOA-exp
View on GitHub
TongdaOA 11.7 ~11.8 通达OA，任意用户登录+后台getshell
☆86Jul 16, 2021Updated 4 years ago
fupinglee / ShiroScan
View on GitHub
Shiro RememberMe 1.2.4 反序列化漏洞图形化检测工具(Shiro-550)
☆886Dec 16, 2022Updated 3 years ago
Daybr4ak / C2ReverseProxy
View on GitHub
一款可以在不出网的环境下进行反向代理及cs上线的工具
☆492Apr 26, 2023Updated 3 years ago
timwhitez / Cobalt-Strike-Aggressor-Scripts
View on GitHub
Cobalt Strike Aggressor 插件包
☆672Aug 31, 2021Updated 4 years ago
SkyBlueEternal / thinkphp-RCE-POC-Collection
View on GitHub
thinkphp v5.x 远程代码执行漏洞-POC集合
☆1,186Jan 15, 2019Updated 7 years ago
Bare Metal GPUs on DigitalOcean Gradient AI • Ad
Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
FunnyWolf / pystinger
View on GitHub
Bypass firewall for traffic forwarding using webshell
☆1,430Sep 29, 2021Updated 4 years ago
c0ny1 / passive-scan-client
View on GitHub
Burp被动扫描流量转发插件
☆1,462Jun 17, 2024Updated last year
uknowsec / frpModify
View on GitHub
修改frp支持域前置与配置文件自删除
☆398Dec 31, 2020Updated 5 years ago
uknowsec / SharpSQLTools
View on GitHub
SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。
☆967Aug 5, 2021Updated 4 years ago
Ares-X / shiro-exploit
View on GitHub
Shiro反序列化利用工具，支持新版本(AES-GCM)Shiro的key爆破，配合ysoserial，生成回显Payload
☆892May 28, 2021Updated 4 years ago
al0ne / Nmap_Bypass_IDS
View on GitHub
Nmap&Zmap特征识别，绕过IDS探测
☆329Aug 1, 2019Updated 6 years ago
xinyu2428 / TDOA_RCE
View on GitHub
通达OA综合利用工具
☆518Mar 17, 2021Updated 5 years ago
Ch1ngg / JCE
View on GitHub
JCE - JSP/JPSX CodeEncode - 用于 Webshell 逃避静态查杀的辅助脚本
☆260Oct 29, 2021Updated 4 years ago
ShiHuang-ESec / EHole
View on GitHub
EHole(棱洞)-红队重点攻击系统指纹探测工具
☆470Jan 27, 2021Updated 5 years ago
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
broken5 / WebAliveScan
View on GitHub
对目标域名进行快速的存活扫描、简单的指纹识别、目录扫描
☆914Dec 8, 2022Updated 3 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,018May 21, 2024Updated 2 years ago
r35tart / RedisWriteFile
View on GitHub
通过 Redis 主从写出无损文件
☆719May 25, 2020Updated 5 years ago
Y4er / WebLogic-Shiro-shell
View on GitHub
WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞，一键注册蚁剑filter内存shell
☆534Aug 25, 2020Updated 5 years ago
DeEpinGh0st / Erebus
View on GitHub
CobaltStrike后渗透测试插件
☆1,567Oct 28, 2021Updated 4 years ago
fofapro / Hosts_scan
View on GitHub
这是一个用于IP和域名碰撞匹配访问的小工具，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。
☆1,193Apr 30, 2019Updated 7 years ago
NS-Sp4ce / MoAn_Honey_Pot_Urls
View on GitHub
X安蜜罐用的一些存在JSonp劫持的API
☆92May 28, 2021Updated 4 years ago
jiangsir404 / POC-S
View on GitHub
POC-T强化版本 POC-S , 用于红蓝对抗中快速验证Web应用漏洞，对功能进行强化以及脚本进行分类添加，自带dnslog等, 平台补充来自vulhub靶机及其他开源项目的高可用POC
☆357Mar 12, 2020Updated 6 years ago
c0ny1 / FastjsonExploit
View on GitHub
Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
☆1,395Dec 16, 2022Updated 3 years ago
Deploy to Railway using AI coding agents - Free Credits Offer • Ad
Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
Tycx2ry / SweetPotato_CS
View on GitHub
修改的SweetPotato，使之可以用于CobaltStrike v4.0
☆246Apr 30, 2020Updated 6 years ago
rabbitmask / SB-Actuator
View on GitHub
Spring Boot Actuator未授权访问【XXE、RCE】单/多目标检测
☆521May 21, 2020Updated 6 years ago
hayasec / 360SafeBrowsergetpass
View on GitHub
这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具，用于节省红队工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
☆636Apr 4, 2021Updated 5 years ago
LandGrey / webshell-detect-bypass
View on GitHub
绕过专业工具检测的Webshell研究文章和免杀的Webshell
☆1,732Nov 15, 2020Updated 5 years ago
Heart-Sky / ListRDPConnections
View on GitHub
C# 读取本机对外RDP连接记录和其他主机对该主机的连接记录，从而在内网渗透中获取更多可通内网网段信息以及定位运维管理人员主机
☆432Jan 28, 2021Updated 5 years ago
ggg4566 / SQLEXP
View on GitHub
SQL 注入利用工具，存在waf的情况下自定义编写tamper脚本 dump数据
☆288Aug 13, 2020Updated 5 years ago
Hzllaga / BT_Panel_Privilege_Escalation
View on GitHub
宝塔面板Windows版提权方法
☆325Jan 26, 2021Updated 5 years ago