whwlsfb / Log4j2ScanLinks
Log4j2 RCE Passive Scanner plugin for BurpSuite
☆819Updated 2 years ago
Alternatives and similar repositories for Log4j2Scan
Users that are interested in Log4j2Scan are comparing it to the libraries listed below
Sorting:
- APIKit:Discovery, Scan and Audit APIs Toolkit All In One.☆2,143Updated last year
- OpenSource Poc && Vulnerable-Target Storage Box.☆684Updated 2 years ago
- Fiora:漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行,也可作为burp插件使用。☆1,247Updated last month
- Vulnerabilities of Goby supported with exploitation.☆733Updated last month
- weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力:CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…☆2,051Updated last year
- Subdomain enumeration tool, asynchronous dns packets, use pcap to scan 1600,000 subdomains in 1 second☆1,083Updated last month
- 一款基于BurpSuite的被动式shiro检测插件☆1,760Updated 2 years ago
- JNDI注入测试工具(A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,etc)☆2,735Updated 2 years ago
- Bypass firewall for traffic forwarding using webshell☆1,418Updated 3 years ago
- Everything for pentest. | 用于渗透测试的 payload 和 bypass 字典.☆1,047Updated 2 years ago
- Intranet penetration tools☆873Updated 3 years ago
- 记录自己编写、修改的部分工具☆1,451Updated 4 years ago
- A burp extension that add some useful function to Context Menu 添加一些右键菜单让burp用起来更顺畅☆1,795Updated 3 weeks ago
- 高危漏洞精准检测与深度利用框架☆1,435Updated 2 years ago
- SpringCore0day from https://share.vx-underground.org/ & some additional links☆394Updated 3 years ago
- Kunyu, more efficient corporate asset collection☆1,045Updated 6 months ago
- A helpful Java Deserialization exploit framework.☆1,224Updated 5 months ago
- Alibaba-Nacos-Unauthorized/ApacheDruid-RCE_CVE-2021-25646/MS-Exchange-SSRF-CVE-2021-26885/Oracle-WebLogic-CVE-2021-2109_RCE/RG-CNVD-2021-…☆1,081Updated 2 years ago
- 构建优化高效的渗透 fuzz 字典合集☆1,814Updated last month
- Remote Code Injection In Log4j☆469Updated 3 years ago
- Attack surface mapping☆1,477Updated last year
- domain_hunter的高级版本,SRC挖洞、HW打点之必备!自动化资产收集;快速Title获取;外部工具联动;等等☆2,082Updated 2 weeks ago
- Redis(<=5.0.5) RCE☆1,078Updated last year
- 服务端配置错误情况下用于伪造ip地址进行测试的Burp Suite插件☆1,586Updated 2 years ago
- shiro 反序列 命令执行辅助检测工具☆1,511Updated last year
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,395Updated 3 years ago
- 一个简单的Fastjson反序列化检测burp插件☆937Updated 4 years ago
- Web漏洞扫描工具XRAY的GUI启动器☆1,303Updated 2 years ago
- FOFAX是一个基于fofa.info的API命令行查询工具☆790Updated last year
- A Swagger API Exploit☆1,308Updated last year