volcanohatred / webshell-bypass

Related projects ⓘ

Alternatives and complementary repositories for webshell-bypass

• Jumbo-WJB / burp_find_shiro
  通过burp代理流量寻找shiro站点
  ☆61Updated 4 years ago
• 0x141 / ShiroRce-Burp
  ☆42Updated 4 years ago
• r35tart / RedisDirScan
  此脚本用于测试 Rdies 未授权访问，在没权限写ssh私钥和定时任务又不知道web绝对路径的情况下，进行WEB目录探测
  ☆73Updated 5 years ago
• r00tuser111 / ActuatorExploitTools
  一款用于攻击spring boot actuator的集成环境，目前集成三种攻击方式，支持1.x、2.x
  ☆85Updated 3 years ago
• donot-wong / dnslog
  weblog/dnslog平台 Docker容器化部署
  ☆37Updated 2 years ago
• jas502n / SHIRO-550
  Shiro RememberMe 1.2.4 反序列化 漏洞
  ☆52Updated 5 years ago
• is101101 / sqlmap_chunked_proxy
  sqlmap分块传输代理
  ☆51Updated 5 years ago
• iSafeBlue / fastjson-autotype-bypass-demo
  fastjson 1.2.68 版本 autotype bypass
  ☆140Updated 2 years ago
• jas502n / xxl-job
  xxl-job RESTful API RCE
  ☆72Updated 3 years ago
• 1135 / Kong_exploit
  ☆41Updated 4 years ago
• jas502n / SHIRO-721
  RememberMe Padding Oracle Vulnerability RCE
  ☆71Updated 5 years ago
• guimaizi / testing_wave
  ☆58Updated 4 years ago
• 1c3z / fileleak
  又一款敏感文件泄漏检测工具
  ☆106Updated 5 years ago
• jas502n / zentao-getshell
  禅道8.2 - 9.2.1前台Getshell
  ☆79Updated 5 years ago
• NS-Sp4ce / MoAn_Honey_Pot_Urls
  X安蜜罐用的一些存在JSonp劫持的API
  ☆93Updated 3 years ago
• whirlwind110 / tphack
  Thinkphp3/5 Log文件泄漏利用工具
  ☆60Updated 6 years ago
• jkgh006 / assetscan
  资产扫描工具
  ☆46Updated 4 years ago
• jas502n / Shiro_Xray
  CommonsBeanutils1,CommonsCollectionsK1
  ☆58Updated 4 years ago
• TheKingOfDuck / Copy2Java
  一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。
  ☆50Updated 2 years ago
• sry309 / jniwebshell
  ☆41Updated 5 years ago
• uknowsec / BurpSuite-Extender-fastjson
  Reference：https://www.w2n1ck.com/article/44/
  ☆152Updated 4 years ago
• iSafeBlue / redis-rce
  Redis RCE 的几种方法
  ☆90Updated 5 months ago
• truongnctrieu / CThun
  集成快速端口扫描服务识别和暴力破解
  ☆45Updated 5 years ago
• tobechenghuai / Shiro_721_Padding_Oracle_RCE
  Shiro_721 exp 纯手工实现Padding Oracle整个过程
  ☆68Updated 5 years ago