whirlwind110 / tphackLinks
Thinkphp3/5 Log文件泄漏利用工具
☆60Updated 7 years ago
Alternatives and similar repositories for tphack
Users that are interested in tphack are comparing it to the libraries listed below
Sorting:
- 此脚本用于测试 Rdies 未授权访问,在没权限写ssh私钥和定时任务又不知道web绝对路径的情况下,进行WEB目录探测☆73Updated 6 years ago
- 禅道8.2 - 9.2.1前台Getshell☆78Updated 5 years ago
- 通过burp代理流量寻找shiro站点☆60Updated 5 years ago
- AntSword is a cross-platform website management toolkit.☆48Updated 5 years ago
- webuploader-v-0.1.15未授权-任意文件上传☆52Updated 6 years ago
- Shiro RememberMe 1.2.4 反序列化 漏洞☆55Updated 5 years ago
- 集成快速端口扫描服务识别和暴力破解☆45Updated 6 years ago
- ☆41Updated 5 years ago
- 绕过杀毒软件添加用户☆95Updated 5 years ago
- WebLogic EJBTaglibDescriptor XXE漏洞(CVE-2019-2888)☆59Updated 5 years ago
- ☆61Updated 4 years ago
- 提供Weblogic批量模糊指纹识别☆60Updated 6 years ago
- bypassD盾、安全狗、云锁☆107Updated 4 years ago
- xxl-job RESTful API RCE☆72Updated 4 years ago
- ☆25Updated 5 years ago
- 通达OA RCE漏洞☆79Updated 5 years ago
- fastjson 1.2.68 版本 autotype bypass☆141Updated 3 years ago
- 📧Coremail邮件系统组织通讯录导出脚本☆158Updated 3 years ago
- 泛微OA e-cology rce批量检测工具☆33Updated 5 years ago
- Reference:https://www.w2n1ck.com/article/44/☆155Updated 5 years ago
- 利用长亭xray高级版的回显Gadget重写的一个shiro反序列化利用工具。☆123Updated 5 years ago
- Cobalt Strike系列☆17Updated 6 years ago
- 🐸fingerprint detect framework 批量深度指纹识别框架☆120Updated 2 years ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in redis with password.用于生成附带密码认证的gopher内容,用于SSRF等利用。☆118Updated 6 years ago
- ☆38Updated 4 years ago
- CommonsBeanutils1,CommonsCollectionsK1☆58Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆102Updated 5 years ago
- 用于WebLogic poc及exp测试的基础脚本,后续将集成各版本poc库☆94Updated 4 years ago
- 攻防对抗研究文档合集(不断更新中)☆79Updated 6 years ago
- Redis RCE 的几种方法☆90Updated last year