uknowsec / SharpSQLDump
内网渗透中快速获取数据库所有库名,表名,列名。具体判断后再去翻数据,节省时间。适用于mysql,mssql。
☆195Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for SharpSQLDump
- reGeorg的特殊版本,适用于老版本weblogic。☆153Updated 4 years ago
- 本项目是一篇NTLM中高级进阶进阶文章,后续我也会在Github和Gitbook对此文进行持续性的更新NTLM以及常见的协议中高级进阶并计划开源部分协议调试工具,望各位issue勘误。☆112Updated 4 years ago
- 用于WebLogic poc及exp测试的基础脚本,后续将集成各版本poc库☆94Updated 4 years ago
- .NET后渗透下的权限维持,附下载DLL☆200Updated 6 years ago
- ☆290Updated 4 years ago
- 修改的SweetPotato,使之可以用于CobaltStrike v4.0☆239Updated 4 years ago
- 利用长亭xray高级版的回显Gadget重写的一个shiro反序列化利用工具。☆123Updated 4 years ago
- ☆155Updated 4 years ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in redis with password.用于生成附带密码认证的gopher内容,用于SSRF等利用。☆110Updated 5 years ago
- SpringBoot_Actuator_RCE☆96Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆100Updated 4 years ago
- 🐸fingerprint detect framework 批量深度指纹识别框架☆119Updated last year
- GUI Exploit Tool For RedTeam☆7Updated 3 years ago
- DSO-Lab 漏洞研究成果整理☆83Updated 2 years ago
- .net 命令执行的webshell☆98Updated 3 years ago
- Weblogic Vuln POC EXP cve-2020-2551 cve-2020-2555 cve-2020-2883 ,。。。☆90Updated 2 years ago
- Shiro RCE (Padding Oracle Attack)☆142Updated 4 years ago
- 收集目标主机信息,包括最近打开文件,系统环境变量和回收站文件等等☆113Updated 5 years ago
- Redis RCE 的几种方法☆90Updated 5 months ago
- AntSword is a cross-platform website management toolkit.☆48Updated 4 years ago
- https://rcoil.me/2019/09/%E3%80%90%E7%BC%96%E7%A8%8B%E3%80%91SharpDecryptPwd/ 的示例代码☆49Updated 4 years ago
- SiteServer CMS 5.x远程模板下载Getshell漏洞☆68Updated 4 years ago
- Shiro_721 exp 纯手工实现Padding Oracle整个过程☆68Updated 4 years ago
- WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar☆79Updated 3 years ago
- A JSP backdoor that enables under Tomcat hiding arbitrary JSP files, in addition to their access logs.☆213Updated 5 years ago