xiaoqiuxx / CodeScan_public
一款轻量级匹配Sink点的代码审计扫描器,为了帮助红队过程中快速代码审计的小工具
☆19Updated 5 months ago
Alternatives and similar repositories for CodeScan_public:
Users that are interested in CodeScan_public are comparing it to the libraries listed below
- 经过优化的渗透测试Payload字典、Fuzz Payload字典。Penetration testing Payload dictionary, Fuzzy Payload dictionary☆35Updated 8 months ago
- Java 代码审计-存在风险的函数汇总。方便我们日常代码审计过程中快速定位漏洞点,配合静态代码分析工具做到事半功倍。Java code audit - summary of risky functions. It is convenient for us to quickl…☆29Updated 8 months ago
- 基于 Json 、自定义Go脚本的多协程验证扫描器,用于快速验证目标是否存在该漏洞或深层次利用。☆39Updated 4 months ago
- ARL 2.6.2-docker国内环境快速部署☆12Updated 6 months ago
- burpsuite插件-被动无感识别指纹-主动poc扫描☆26Updated 6 months ago
- 一个java代码审计辅助工具☆28Updated 2 years ago
- 一款支持检测host头攻击的burp suite插件☆51Updated last year
- burp被动插件扫反射xss☆14Updated last year
- 工控设备信息识别工具箱☆55Updated last year
- 一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service☆31Updated 6 months ago
- FofaMap云查询版是基于C/S架构打造的Fofa数据采集器,仅需配置好一个服务端,即可实现多个客户端同时在线查询,其客户端支持FofaMap国庆版全部功能。☆38Updated 2 years ago
- Java安全学习历程☆40Updated last year
- 监测cnvd漏洞信息☆23Updated last year
- Start4burp is a burpsuit plugin☆19Updated 6 months ago
- ☆35Updated 2 years ago
- Google 、Baidu、Bing、Github Hack tools☆16Updated 3 years ago
- 以蓝队为核心针对红队web指纹识别☆15Updated last year
- ☆16Updated 2 years ago
- jsp版sqlilab 1-21关☆20Updated 2 years ago
- 云函数扫描器☆58Updated last year
- ☆13Updated 2 weeks ago
- 若依后台定时任务一键利用☆51Updated 2 years ago
- 一个简单的批量反编译jar包的小脚本☆35Updated 3 years ago
- linux权限维持脚本☆36Updated 3 weeks ago
- 手动收集各大SRC平台主域名,通过程序自动处理以格式化存入数据库中,便于配合其它信息搜集工具进一步测试。☆41Updated 3 months ago
- 一款好用的信息收集工具,支持域名、IP查询、ICP、注册资金查询,支持公众号查询☆20Updated 11 months ago
- ☆31Updated last month
- ☆19Updated 3 months ago
- 《漏洞全解》该项目不提供任何的POC与EXP,仅仅分享各种机缘巧合下所产生的漏洞的分析。☆23Updated last year
- 《ASPX安全-只有ASPX安全才能拯救.NET》Only ASPX Security Can Save The NET.☆33Updated 2 years ago