wupco / PHP_INCLUDE_TO_SHELL_CHAR_DICT

Related projects ⓘ

Alternatives and complementary repositories for PHP_INCLUDE_TO_SHELL_CHAR_DICT

• Y4er / dotnet-deserialization
  dotnet 反序列化学习笔记
  ☆436Updated last year
• synacktiv / php_filter_chains_oracle_exploit
  A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.
  ☆227Updated 5 months ago
• ProbiusOfficial / bashFuck
  exec BashCommand with only ! # $ ' ( ) < \ { } just 10 charset used in Bypass or CTF
  ☆215Updated 3 months ago
• EddieIvan01 / pker
  Automatically converts Python source code to Pickle opcode
  ☆130Updated 4 years ago
• cckuailong / JNDI-Injection-Exploit-Plus
  80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…
  ☆716Updated 4 months ago
• glzjin / CTFd-Whale
  A plugin for CTFd which allow your users to deploy a standalone instance for challenges.
  ☆230Updated 7 months ago
• ev0A / ArbitraryFileReadList
  CTF中任意文件读取的fuzz列表 (Arbitrary file read fuzz list in CTF)
  ☆254Updated 2 years ago
• rmb122 / rogue_mysql_server
  A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.
  ☆699Updated last year
• LxxxSec / CTF-Java-Gadget
  CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段
  ☆203Updated 2 months ago
• CTF-Archives / ctf-docker-template
  Deployment template for docker target machine in ctf for CTFd and other platforms that support dynamic flags
  ☆254Updated 2 months ago
• ambionics / cnext-exploits
  Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()
  ☆418Updated last month
• Y4tacker / Web-Security
  A repository to record my usual studies
  ☆20Updated last year
• ProbiusOfficial / RCE-labs
  【Hello-CTF labs】一个想帮你收集所有RCE技巧的靶场。
  ☆175Updated 2 weeks ago
• baiyecha404 / CTFWEBchallenge
  Collections of CTF-WEB-challs mainly for review purpose.
  ☆32Updated last year
• LandGrey / spring-boot-upload-file-lead-to-rce-tricks
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆684Updated 3 years ago
• su18 / hack-fastjson-1.2.80
  ☆492Updated 2 years ago
• Marven11 / Fenjing
  专为CTF设计的Jinja2 SSTI全自动绕WAF脚本 | A Jinja2 SSTI cracker for bypassing WAF, designed for CTF
  ☆718Updated this week
• Al1ex / LinuxEelvation
  Linux Eelvation(持续更新)
  ☆392Updated 2 years ago
• SniperOJ / Attack-Defense-Challenges
  Challenges of CTF Attack with Defense mode
  ☆193Updated last year
• X1r0z / JNDIMap
  JNDI 注入利用工具, 支持 RMI, LDAP 和 LDAPS 协议, 包含多种高版本 JDK 绕过方式 | A JNDI injection exploit tool that supports RMI, LDAP and LDAPS protocols, inclu…
  ☆332Updated last month
• waderwu / javaDeserializeLabs
  javaDeserializeLabs
  ☆63Updated last year
• su18 / JDBC-Attack
  JDBC Connection URL Attack
  ☆390Updated 3 years ago
• Y4er / ysoserial
  ysoserial修改版，着重修改ysoserial.payloads.util.Gadgets.createTemplatesImpl使其可以通过引入自定义class的形式来执行命令、内存马、反序列化回显。
  ☆633Updated 10 months ago
• waderwu / extractor-java
  CodeQL extractor for java, which don't need to compile java source
  ☆322Updated last year
• ctfhub-team / ctfhub_base_image
  Index of CTFHub Base Images
  ☆82Updated 4 years ago
• feihong-cs / Java-Rce-Echo
  Java RCE 回显测试代码
  ☆995Updated 4 years ago
• Firebasky / CodeqlLearn
  记录学习codeql的过程
  ☆363Updated last year
• Dliv3 / redis-rogue-server
  Redis 4.x/5.x RCE
  ☆528Updated 3 years ago
• X3NNY / sstilabs
  A lab to help you learning SSTI
  ☆96Updated last year