w181496 / FuckFastcgi
[Tool] Forge PHP FastCGI protocol to RCE with strict disable_functions
☆60Updated 5 years ago
Related projects: ⓘ
- ☆79Updated 3 years ago
- Java After-Deserialization Attack☆77Updated 3 years ago
- 知识星球《漏洞百出》最新 20条 Topic☆114Updated 2 years ago
- To solve some readflag situation in ctfs☆33Updated 3 years ago
- django 漏洞:CVE-2020-7471 Potential SQL injection via StringAgg(delimiter) 的漏洞环境和 POC☆104Updated 4 years ago
- ☆44Updated 6 years ago
- PaddingZip is a tool that you can craft a zip file that contains the padding characters between the file content.☆62Updated 2 years ago
- Writeup and environment for XCTF2021Final-Dubbo☆45Updated 3 years ago
- ☆39Updated 6 years ago
- redis ssrf gopher generater & redis ssrf to rce by master-slave-sync☆79Updated 3 years ago
- MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload☆12Updated 4 years ago
- Dockerfile for hitcon☆53Updated 5 years ago
- My Real World CTF challenges☆115Updated 5 years ago
- kibana < 6.6.0 未授权远程代码命令执行 (Need Timelion And Canvas),CVE-2019-7609☆90Updated 4 years ago
- ☆111Updated 4 years ago
- WMCTF2020-WriteUp☆34Updated 4 years ago
- ☆58Updated 4 years ago
- bypass JEP290 RaspHook code☆63Updated 3 years ago
- CTF学习交流群473831530。第四期入群题之WEB1-docker环境。☆16Updated 5 years ago
- A modified reGeorg for One-line PHP Shell.☆86Updated 5 years ago
- ☆88Updated this week
- Rusty Joomla RCE Exploit☆70Updated last year
- Unicode fuzzer for various purposes☆43Updated 2 years ago
- GitLab 11.4.7 SSRF配合redis远程执行代码☆123Updated 5 years ago
- 一个抓取phpinfo重要信息的小工具☆30Updated 5 years ago
- ☆72Updated 2 years ago
- GreHack 2021 CodeQL for Java workshop☆74Updated 2 years ago
- https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet☆48Updated 3 years ago
- PHP 扩展, 用于 PHP-FPM、FastCGI、LD_PRELOAD等模式下突破 disabled_functions☆104Updated 3 years ago