Multi-language web CGI interfaces exploits.
☆399Aug 22, 2022Updated 3 years ago
Alternatives and similar repositories for webcgi-exploits
Users that are interested in webcgi-exploits are comparing it to the libraries listed below
Sorting:
- 一个各种方式突破Disable_functions达到命令执行的shell☆1,198Oct 17, 2023Updated 2 years ago
- PHP Runtime Vulnerability Detection☆480May 25, 2019Updated 6 years ago
- a simple tool to detect potential security threat in php code☆316Sep 9, 2024Updated last year
- 这是一个实验性的PHP扩展,加载这个扩展后,每次请求将可以执行一段自己的PHP代码。☆198Oct 22, 2018Updated 7 years ago
- JRE8u20_RCE_Gadget☆255Jul 1, 2016Updated 9 years ago
- java内存对象搜索辅助工具☆823Sep 23, 2022Updated 3 years ago
- My CTF Challenges☆216Jan 4, 2026Updated last month
- 总结了20+.Net反序列化文章,持续更新☆748Apr 3, 2024Updated last year
- Java RCE 回显测试代码☆1,016Oct 15, 2020Updated 5 years ago
- A PHP7 extension that can hook most functions/classes and parts of opcodes☆242Sep 17, 2021Updated 4 years ago
- Java RMI enumeration and attack tool.☆745Sep 28, 2017Updated 8 years ago
- Web Security Technology & Vulnerability Analysis Whitepapers☆549Jan 1, 2019Updated 7 years ago
- MySQL fake server for read files of connected clients☆605Jul 23, 2017Updated 8 years ago
- ☆835Jun 7, 2022Updated 3 years ago
- dynamic crawler for web vulnerability scanner☆252Mar 4, 2020Updated 5 years ago
- Pwn stuff.☆1,805May 31, 2022Updated 3 years ago
- 利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码☆711May 10, 2021Updated 4 years ago
- Java-Web-Security - Sichere Webanwendungen mit Java entwickeln☆220Feb 19, 2026Updated last week
- 针对ctf线下赛流量抓取(php)、真实环 境流量抓取分析的工具☆742Jun 2, 2023Updated 2 years ago
- Rogue MySql Server☆473Sep 15, 2013Updated 12 years ago
- a project aim to collect CTF web practices .☆678Feb 15, 2023Updated 3 years ago
- attackRmi☆258Oct 14, 2020Updated 5 years ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆484Dec 9, 2020Updated 5 years ago
- CVE-2018-8021 Proof-Of-Concept and Exploit☆106Dec 3, 2018Updated 7 years ago
- Flask 内存马☆313Mar 26, 2021Updated 4 years ago
- MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize☆1,360Nov 18, 2021Updated 4 years ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆3,302Apr 18, 2023Updated 2 years ago
- ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6☆217Aug 17, 2017Updated 8 years ago
- Apache Solr Injection Research☆579Jan 28, 2020Updated 6 years ago
- CVE-2019-2725 命令回显☆436May 8, 2023Updated 2 years ago
- Php Codz Hacking☆669Sep 5, 2015Updated 10 years ago
- PoC for CVE-2018-15133 (Laravel unserialize vulnerability)☆260Mar 10, 2024Updated last year
- Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!☆297Jun 10, 2019Updated 6 years ago
- ☆119Mar 21, 2020Updated 5 years ago
- There is no pre-auth RCE in Jenkins since May 2017, but this is the one!☆607May 17, 2019Updated 6 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- Service Worker 安全探索☆74Nov 5, 2018Updated 7 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆518Jul 29, 2020Updated 5 years ago
- A collection of pentest and development tips☆1,125May 26, 2022Updated 3 years ago