sunird / shiro_exp
shiro_rememberme 反序列化漏洞 利用EXP
☆30Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for shiro_exp
- Apache Solr远程代码执行漏洞(CVE-2019-0193) Exploit☆63Updated 4 years ago
- 可以直接反弹shell☆47Updated last year
- 过各waf注入上传等☆26Updated 6 years ago
- 简单的分离免杀demo☆41Updated 3 years ago
- 通过burp代理流量寻找shiro站点☆61Updated 4 years ago
- sqlmap分块传输代理☆51Updated 5 years ago
- CVE-2020-2551 POC to use in Internet☆21Updated 4 years ago
- Web ExternalC2 Demo☆50Updated 4 years ago
- 学习过程中做的一些小工具做个记录☆28Updated last year
- ☆42Updated 4 years ago
- 资产扫描工具☆46Updated 4 years ago
- CVE-2020-10199、CVE-2020-10204、CVE-2020-11444☆35Updated 4 years ago
- 此脚本用于测试 Rdies 未授权访问,在没权限写ssh私钥和定时任务又不知道web绝对路径的情况下,进行WEB目录探测☆73Updated 5 years ago
- ☆41Updated 4 years ago
- 禅道8.2 - 9.2.1前台Getshell☆79Updated 5 years ago
- autoType enable☆36Updated 5 years ago
- java web 压缩文件 安全 漏洞☆20Updated 4 years ago
- CNVD-C-2019-48814 Weblogic wls9_async_response 反序列化利用工具☆38Updated 5 years ago
- The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.☆20Updated 6 years ago
- flash 劫持轮子,CSRF,劫持,跳转,swf 有需求可以提issues ,src挖掘,劫持response☆86Updated 5 years ago
- 一个为PentestBox添加搜索工具名称功能的py脚本☆13Updated 4 years ago
- webuploader-v-0.1.15未授权-任意文件上传☆51Updated 5 years ago
- 利用递归,通过匹配网页源码里的子域内容收集所有的子域信息,可收集四级五级等多级子域名。☆33Updated 6 years ago