Multi-language web CGI interfaces exploits.
☆399Aug 22, 2022Updated 3 years ago
Alternatives and similar repositories for webcgi-exploits
Users that are interested in webcgi-exploits are comparing it to the libraries listed below
Sorting:
- 一个各种方式突破Disable_functions达到命令执行的shell☆1,198Oct 17, 2023Updated 2 years ago
- PHP Runtime Vulnerability Detection☆480May 25, 2019Updated 6 years ago
- a simple tool to detect potential security threat in php code☆316Sep 9, 2024Updated last year
- 这是一个实验性的PHP扩展,加载这个扩展后,每次请求将可以执行一段自己的PHP代码。☆198Oct 22, 2018Updated 7 years ago
- A PHP7 extension that can hook most functions/classes and parts of opcodes☆242Sep 17, 2021Updated 4 years ago
- Java RMI enumeration and attack tool.☆745Sep 28, 2017Updated 8 years ago
- My CTF Challenges☆216Jan 4, 2026Updated 2 months ago
- java内存对象搜索辅助工具☆823Sep 23, 2022Updated 3 years ago
- JRE8u20_RCE_Gadget☆255Jul 1, 2016Updated 9 years ago
- Java RCE 回显测试代码☆1,015Oct 15, 2020Updated 5 years ago
- 总结了20+.Net反序列化文章,持续更新☆749Apr 3, 2024Updated last year
- ☆835Jun 7, 2022Updated 3 years ago
- dynamic crawler for web vulnerability scanner☆252Updated this week
- 利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码☆712May 10, 2021Updated 4 years ago
- MySQL fake server for read files of connected clients☆606Jul 23, 2017Updated 8 years ago
- attackRmi☆258Oct 14, 2020Updated 5 years ago
- Pwn stuff.☆1,804May 31, 2022Updated 3 years ago
- Rogue MySql Server☆473Sep 15, 2013Updated 12 years ago
- 护网杯2018 easy_laravel Docker环境☆81Oct 14, 2018Updated 7 years ago
- 针对ctf线下赛流量抓取(php)、真实环境流量抓取分析的工具☆741Jun 2, 2023Updated 2 years ago
- MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize☆1,362Nov 18, 2021Updated 4 years ago
- Web Security Technology & Vulnerability Analysis Whitepapers☆549Jan 1, 2019Updated 7 years ago
- Flask 内存马☆314Mar 26, 2021Updated 4 years ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆484Dec 9, 2020Updated 5 years ago
- CVE-2018-8021 Proof-Of-Concept and Exploit☆106Dec 3, 2018Updated 7 years ago
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆3,324Apr 18, 2023Updated 2 years ago
- Java-Web-Security - Sichere Webanwendungen mit Java entwickeln☆221Updated this week
- a project aim to collect CTF web practices .☆679Feb 15, 2023Updated 3 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,405Jan 18, 2022Updated 4 years ago
- A collection of pentest and development tips☆1,126May 26, 2022Updated 3 years ago
- A blind XXE injection callback handler. Uses HTTP and FTP to extract information. Originally written in Ruby by ONsec-Lab.☆518Jul 29, 2020Updated 5 years ago
- Code-Breaking Puzzles☆292Apr 6, 2025Updated 11 months ago
- ☆119Mar 21, 2020Updated 6 years ago
- Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!☆298Jun 10, 2019Updated 6 years ago
- CVE-2019-2725 命令回显☆436May 8, 2023Updated 2 years ago
- Apache Solr Injection Research�☆580Jan 28, 2020Updated 6 years ago
- bypass disable_functions via LD_PRELOA (no need /usr/sbin/sendmail)☆1,169Aug 7, 2021Updated 4 years ago
- ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6☆217Aug 17, 2017Updated 8 years ago
- KunLun-M是一个完全开源的静态白盒扫描工具,支持PHP、JavaScript的语义扫描,基础安全、组件安全扫��描,Chrome Ext\Solidity的基础扫描。☆2,379Jan 16, 2026Updated 2 months ago