一款信息泄漏利用工具,适用于.git/.svn/.DS_Store泄漏和目录列出(dumpall Golang重构版)
☆21Apr 8, 2025Updated 10 months ago
Alternatives and similar repositories for DumpAll-Go
Users that are interested in DumpAll-Go are comparing it to the libraries listed below
Sorting:
- SVG, XML, GIF and PDF files that result in finding XSS reports on websites : The payloads are available for testing purpose only.☆15Apr 17, 2023Updated 2 years ago
- ☆12Nov 17, 2024Updated last year
- 一款linux 内网渗透辅助工具☆78Jan 31, 2024Updated 2 years ago
- Redis primary/secondary replication RCE☆44Apr 18, 2022Updated 3 years ago
- shiro反序列化利用综合利用,包含(回显执行命令/注入内存马)原版中NoCC的问题 https://github.com/j1anFen/shiro_attack☆12May 1, 2022Updated 3 years ago
- ☆34Mar 6, 2025Updated 11 months ago
- 红队快速扫描js文件检查工具☆65Feb 4, 2026Updated last month
- 云原生安全漏洞收集☆18Jul 9, 2025Updated 7 months ago
- php webshell bypass D盾、safedog、360、火绒等,仅支持php7☆18Aug 25, 2025Updated 6 months ago
- 禅道认证绕过后台命令执行Getshell☆13Jan 8, 2025Updated last year
- 域前置版本FRP☆16Nov 24, 2022Updated 3 years ago
- ☆15Aug 20, 2025Updated 6 months ago
- iSwordSDK (Provide Powerful Kernel API For Ring3 Applications)☆15Mar 25, 2022Updated 3 years ago
- SwaggerGan☆103Nov 18, 2025Updated 3 months ago
- SolarView Compact through 6.00 downloader.php commands injection (RCE) nuclei-templates☆14Jun 16, 2023Updated 2 years ago
- POC for CVE-2022-21907: HTTP Protocol Stack Remote Code Execution Vulnerability.☆17Jun 18, 2025Updated 8 months ago
- 2019年暨南大学CTF新生赛题目与源码☆14Jan 8, 2020Updated 6 years ago
- 自学时写的适合Java安全小白用来学习Java反序列化漏洞的文章和Demo。(随懒狗的学习进度持续更新🐶)。Some articles and demos written during self-study which are suitable for Java Secu…☆11Dec 22, 2021Updated 4 years ago
- 基于Xposed和Frida的隐私检测工具,Gui界面呈现检测结果☆42Jun 14, 2024Updated last year
- 基于tls加密通道的端口转发工具,绕过安全设备流量检测。☆18Aug 5, 2023Updated 2 years ago
- 渗透测试、攻防姿势笔记☆20Jun 13, 2025Updated 8 months ago
- This tool is intended to be used for on target enumeration to gather and exfiltrate information and then to upload tools such as netcat o…☆22Jan 6, 2026Updated last month
- 用Go编写的轻量文件监控器. 可以监控终端上指定文件夹内的变化, 阻止删除,修改,新增操作. 可以用于AWD比赛或者终端应急响应☆34Sep 28, 2025Updated 5 months ago
- VulnMain,一个优秀的漏洞全生命周期管理平台,实现项目级漏洞管理。☆56Aug 22, 2025Updated 6 months ago
- Proxifier批量添加代理服务器☆18Jun 8, 2023Updated 2 years ago
- 一个用友漏洞检测工具☆29May 15, 2024Updated last year
- API Highlighter 是一个用于 BurpSuite 的插件,主要用于 web 应用迭代安全测试时高亮指定的新增接口,该插件最初用 Python 编写,现重构为 Java 版本。☆42Feb 19, 2025Updated last year
- 这是一个用于Burp Suite的文件上传漏洞自动化fuzz测试插件。该插件提供了多种绕过技术,包括WAF绕过、内容类型绕过、文件扩展名绕过等。☆43Aug 6, 2025Updated 6 months ago
- 挖掘src常用脚本☆18Mar 3, 2019Updated 7 years ago
- 【Hello-CTF labs】新手向的ssrf靶场,从协议,场景,绕过等多个ssrf攻击的基础维度展开。☆55Mar 22, 2025Updated 11 months ago
- JNDI-Injection-Exploit-1.0-SNAPSHOT-all☆19Dec 19, 2021Updated 4 years ago
- 一款内网快速打点的辅助性扫描工具,方便红队人员在内网横向移动前期的信息搜集、漏洞探测利用环节的工作开展。其工具特性主要为支持一键化三个档位的便捷式信息与漏洞扫描或每个功能模块单独式扫描探测功能。☆88Dec 14, 2022Updated 3 years ago
- GoPhantom 是一个为红队演练和安全研究设计的下一代荷载加载器(Payload Loader)生成器。它利用 Go 语言的强大功能,将原始的 Shellcode 和一个诱饵文件打包成一个独立的、具有较强免杀(AV-Evasion)能力的 Windows 可执行文件。☆188Nov 30, 2025Updated 3 months ago
- 一款简单的qvm管理工具☆24Aug 5, 2023Updated 2 years ago
- 针对多个框架的高度自定义的内存马一键打入工具 | A highly customized memory shell one-click injection tool for multiple frameworks☆49Feb 6, 2024Updated 2 years ago
- 一个java代码审计辅助工具☆29Nov 2, 2022Updated 3 years ago
- ☆26Jan 7, 2024Updated 2 years ago
- 一款集成AI辅助分析功能的Windows日志安全分析工具☆55Feb 8, 2026Updated 3 weeks ago
- Redis 沙盒逃逸(CVE-2022-0543)POC&EXP☆25Jul 23, 2022Updated 3 years ago