xk11z/unauthorized

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/xk11z/unauthorized)

xk11z / unauthorized

常见的未授权漏洞检测

☆271

Alternatives and similar repositories for unauthorized

Users that are interested in unauthorized are comparing it to the libraries listed below

Sorting:

xk11z / unauthorized_com
View on GitHub
未授权检测的命令行版，支持批量检测
☆155Apr 5, 2025Updated 11 months ago
pureqh / Hyacinth
View on GitHub
一款java漏洞集合工具
☆1,088Jan 13, 2026Updated last month
novysodope / ST2Scanner
View on GitHub
Struts2漏洞扫描 Burp插件
☆132Mar 21, 2023Updated 2 years ago
cseroad / Exp-Tools
View on GitHub
一款集成高危漏洞exp的实用性工具
☆1,294Nov 6, 2024Updated last year
savior-only / Spring_All_Reachable
View on GitHub
Spring漏洞综合利用工具
☆675Jul 5, 2023Updated 2 years ago
LittleBear4 / OA-EXPTOOL
View on GitHub
OA综合利用工具，集合将近20款OA漏洞批量扫描
☆1,340Oct 28, 2023Updated 2 years ago
Tsojan / TsojanScan
View on GitHub
An integrated BurpSuite vulnerability detection plug-in.
☆1,457Jan 29, 2026Updated last month
White-hua / Apt_t00ls
View on GitHub
高危漏洞利用工具
☆1,825Feb 12, 2025Updated last year
LittleBear4 / Find-SomeThing
View on GitHub
红队批量脆弱点搜集工具
☆337Jun 6, 2023Updated 2 years ago
Suq3rm4n / java-impacket-gui
View on GitHub
java-impacket-gui
☆145Sep 8, 2023Updated 2 years ago
13exp / SpringBoot-Scan-GUI
View on GitHub
☆619Nov 27, 2023Updated 2 years ago
bit4woo / Fiora
View on GitHub
Fiora：漏洞PoC框架Nuclei的图形版。快捷搜索PoC、一键运行Nuclei。即可作为独立程序运行，也可作为burp插件使用。
☆1,275Jul 2, 2025Updated 8 months ago
kkbo8005 / dicttools
View on GitHub
密码字典生成工具，加微信进群及时接收更新信息
☆284Apr 21, 2024Updated last year
tpt11fb / AttackTomcat
View on GitHub
Tomcat常见漏洞GUI利用工具。CVE-2017-12615 PUT文件上传漏洞、tomcat-pass-getshell 弱认证部署war包、弱口令爆破、CVE-2020-1938 Tomcat AJP文件读取/包含
☆250Nov 15, 2022Updated 3 years ago
F6JO / RouteVulScan
View on GitHub
Burpsuite - Route Vulnerable Scanning 递归式被动检测脆弱路径的burp插件
☆1,314Jun 29, 2024Updated last year
dark-kingA / superSearchPlus
View on GitHub
superSearchPlus是聚合型信息收集插件，支持综合查询，资产测绘查询，信息收集敏感信息提取 js资源扫描目录扫描 vue组件扫描整合了目前常见的资产测绘平台专为白帽子提供快速侦测目标。
☆1,435Dec 16, 2024Updated last year
kN6jq / gatherBurp
View on GitHub
一款强大的 burp 安全测试插件，集成多种安全测试功能，支持自动化扫描和手动测试。
☆656Sep 26, 2025Updated 5 months ago
zangcc / Aazhen-RexHa
View on GitHub
自研JavaFX图形化漏洞扫描工具，支持扫描的漏洞分别是： ThinkPHP-2.x-RCE， ThinkPHP-5.0.23-RCE， ThinkPHP5.0.x-5.0.23通杀RCE， ThinkPHP5-SQL注入&敏感信息泄露， ThinkPHP 3.x 日志泄露…
☆473May 9, 2025Updated 9 months ago
KimJun1010 / WeblogicTool
View on GitHub
WeblogicTool，GUI漏洞利用工具，支持漏洞检测、命令执行、内存马注入、密码解密等（深信服深蓝实验室天威战队强力驱动）
☆1,773Nov 1, 2023Updated 2 years ago
yuyan-sec / RedisEXP
View on GitHub
Redis 漏洞利用工具
☆938Jan 26, 2025Updated last year
altEr1125 / ShiroAttack2
View on GitHub
一款针对Shiro550漏洞进行快速漏洞利用工具。对 @SummerSec 大佬的项目https://github.com/SummerSec/ShiroAttack2 进行了一些改进。
☆250May 29, 2023Updated 2 years ago
z2p / sweetPotato
View on GitHub
基于burpsuite的资产分析工具
☆474Apr 29, 2023Updated 2 years ago
wudijun / Catcher
View on GitHub
Catcher(捕手) 重点系统指纹漏洞验证工具，适用于外网打点，资产梳理漏洞检查。
☆317Feb 18, 2025Updated last year
lemonlove7 / EHole_magic
View on GitHub
EHole(棱洞)魔改。可对路径进行指纹识别；支持识别出来的重点资产进行漏洞检测(支持从hunter和fofa中提取资产)支持对ftp服务识别及爆破
☆948Mar 6, 2024Updated last year
errors11 / TomcatVuln
View on GitHub
Tomcat漏洞利用工具
☆313Nov 29, 2024Updated last year
novysodope / fupo_for_yonyou
View on GitHub
用友漏洞检测，持续更新漏洞检测模块
☆479Jul 21, 2025Updated 7 months ago
xk11z / dirxk
View on GitHub
一款集成了多种老牌工具字典的轻量级目录扫描器，包括御剑后台扫描字典，test404网站备份，web破壳扫描器，御剑1.5扫描字典，御剑专业版字典，wwwscan字典，dirscan字典，dirsafe字典，swebscan
☆131May 7, 2023Updated 2 years ago
ttstormxx / jjjjjjjjjjjjjs
View on GitHub
爬网站JS文件，自动fuzz api接口，指定api接口（针对前后端分离项目，可指定后端接口地址），回显api响应
☆756Jul 20, 2023Updated 2 years ago
4ra1n / super-xray
View on GitHub
Web漏洞扫描工具XRAY的GUI启动器
☆1,326May 19, 2023Updated 2 years ago
wh1t3zer / SpringBootVul-GUI
View on GitHub
一个半自动化springboot打点工具，内置目前springboot所有漏洞
☆775Sep 30, 2025Updated 5 months ago
Acmesec / Sylas
View on GitHub
新一代子域名主/被动收集工具 - Subdomain automatic/passive collection tool
☆498Oct 9, 2022Updated 3 years ago
VMsec / ihoneyBakFileScan_Modify
View on GitHub
批量网站备份文件扫描器，增加文件规则，优化内存占用
☆503Nov 8, 2023Updated 2 years ago
W01fh4cker / Serein
View on GitHub
【懒人神器】一款图形化、批量采集url、批量对采集的url进行各种nday检测的工具。可用于src挖掘、cnvd挖掘、0day利用、打造自己的武器库等场景。可以批量利用Actively Exploited Atlassian Confluence 0Day CVE-2022…
☆1,237Feb 26, 2023Updated 3 years ago
abc123info / Struts2VulsScanTools
View on GitHub
1、点击“检测漏洞”，会自动检测该URL是否存在S2-001、S2-005、S2-009、S2-013、S2-016、S2-019、S2-020/021、S2-032、S2-037、DevMode、S2-045/046、S2-052、S2-048、S2-053、S2-057…
☆953Nov 3, 2025Updated 4 months ago
x364e3ab6 / DudeSuite
View on GitHub
DudeSuite Web Security Tools
☆1,300Jan 26, 2026Updated last month
Ghr07h / Heimdallr
View on GitHub
一款完全被动监听的谷歌插件，用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗
☆1,647Jan 19, 2023Updated 3 years ago
0x727 / BypassPro
View on GitHub
对Auth/Waf 自动化bypass的burpsuite插件
☆1,089Updated this week
Funsiooo / chunsou
View on GitHub
Chunsou（春蒐），Python3编写的多线程Web指纹识别工具,适用于安全测试人员前期的资产识别、风险收敛以及企业互联网资产风险摸查。
☆387Dec 16, 2025Updated 2 months ago
R4gd0ll / I-Wanna-Get-All
View on GitHub
综合漏洞后渗透利用工具
☆1,666Dec 11, 2025Updated 2 months ago