whwlsfb / Log4j2Scan

Related projects: ⓘ

• feihong-cs / JNDIExploit
  ☆924Updated this week
• API-Security / APIKit
  APIKit：Discovery, Scan and Audit APIs Toolkit All In One.
  ☆1,860Updated 5 months ago
• 0xn0ne / weblogicScanner
  weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…
  ☆1,982Updated 9 months ago
• fuzz-security / SuperWordlist
  ☆1,305Updated this week
• welk1n / JNDI-Injection-Exploit
  JNDI注入测试工具（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc）
  ☆2,559Updated last year
• L-codes / Neo-reGeorg
  Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
  ☆2,840Updated last week
• gobysec / GobyVuls
  Vulnerabilities of Goby supported with exploitation.
  ☆700Updated last month
• gloxec / CrossC2
  generate CobaltStrike's cross-platform payload
  ☆2,240Updated 9 months ago
• zhzyker / dismap
  Asset discovery and identification tools 快速识别 Web 指纹信息，定位资产类型。辅助红队快速定位目标资产信息，辅助蓝队发现疑似脆弱点
  ☆1,993Updated 7 months ago
• cckuailong / reapoc
  OpenSource Poc && Vulnerable-Target Storage Box.
  ☆671Updated last year
• tangxiaofeng7 / BurpLog4j2Scan
  Burpsuite extension for log4j2rce
  ☆28Updated 2 years ago
• ffffffff0x / AboutSecurity
  Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.
  ☆961Updated last year
• veracode-research / rogue-jndi
  A malicious LDAP server for JNDI injection attacks
  ☆995Updated 11 months ago
• FunnyWolf / pystinger
  Bypass firewall for traffic forwarding using webshell 一款使用webshell进行流量转发的出网工具
  ☆1,363Updated 2 years ago
• n0b0dyCN / redis-rogue-server
  Redis(<=5.0.5) RCE
  ☆986Updated 11 months ago
• boy-hack / ksubdomain
  Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second
  ☆858Updated 2 weeks ago
• pmiaowu / BurpShiroPassiveScan
  一款基于BurpSuite的被动式shiro检测插件
  ☆1,655Updated last year
• bit4woo / Fiora
  Fiora：漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行，也可作为burp插件使用。
  ☆1,133Updated 3 months ago
• gobysec / Goby
  Attack surface mapping
  ☆1,389Updated 6 months ago
• jas502n / Log4j2-CVE-2021-44228
  Remote Code Injection In Log4j
  ☆456Updated 2 years ago
• bit4woo / knife
  A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅
  ☆1,588Updated last month
• craig / SpringCore0day
  SpringCore0day from https://share.vx-underground.org/ & some additional links
  ☆393Updated 2 years ago
• mai-lang-chai / Middleware-Vulnerability-detection
  ☆1,900Updated this week
• evilc0deooo / PentesterSpecialDict
  构建并优化高效的渗透测试字典集合，以提升网络安全从业人员的测试效率和效果。
  ☆1,537Updated last month
• rtcatc / Packer-Fuzzer
  Packer Fuzzer is a fast and efficient scanner for security detection of websites constructed by javascript module bundler such as Webpack…
  ☆2,798Updated 3 months ago
• Al1ex / Pentest-tools
  Intranet penetration tools
  ☆866Updated 2 years ago
• 1n7erface / PocList
  Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-…
  ☆1,080Updated last year
• wikiZ / RedGuard
  RedGuard is a C2 front flow control tool,Can avoid Blue Teams,AVs,EDRs check.
  ☆1,357Updated 3 weeks ago
• projectdiscovery / nuclei-burp-plugin
  Nuclei plugin for BurpSuite
  ☆1,171Updated last week
• sting8k / BurpSuite_403Bypasser
  Burpsuite Extension to bypass 403 restricted directory
  ☆1,540Updated last year