xsshim / VulnAnalysisLinks
《漏洞全解》该项目不提供任何的POC与EXP,仅仅分享各种机缘巧合下所产生的漏洞的分析。
☆24Updated last year
Alternatives and similar repositories for VulnAnalysis
Users that are interested in VulnAnalysis are comparing it to the libraries listed below
Sorting:
- 是一些比赛中的好题,加上自己出的一些。。。☆43Updated 3 years ago
- 冰蝎、哥斯拉 jsp webshell通信流量解密器☆146Updated 2 years ago
- ☆227Updated 2 months ago
- fastjson 80 远程代码执行漏洞复现☆198Updated 2 years ago
- 一款根据pom.xml获取引用的第三方组件的版本号并识别组件漏洞的工具☆23Updated 2 years ago
- A Java Route Collection Tool☆101Updated last year
- Spring Actuator端点的BurpSuite被动扫描插件。☆200Updated 2 years ago
- java 代码审计学习靶场☆116Updated last year
- 代码审计总结☆82Updated 3 years ago
- 获取 alibaba druid 一些 sessions , sql , urls☆281Updated 4 months ago
- Java代码审计案例☆23Updated 4 years ago
- shiro加fastjson环境☆134Updated 2 years ago
- burpsuite passive-scan-client 插件持续维护分支 v2024☆86Updated last week
- 所有碰到过的默认口令☆104Updated last year
- 业务逻辑安全漏洞复现靶场☆31Updated 3 years ago
- check hikvision/ys7 api☆72Updated 2 years ago
- ☆168Updated 3 years ago
- 一个js文件敏感信息搜集脚本,支持输入url和js文件,也支持批量敏感信息匹配。☆77Updated 2 years ago
- evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.☆94Updated 2 years ago
- 漏洞poc☆100Updated 3 weeks ago
- 一些常见字典☆171Updated 4 years ago
- 云环境利用框架(Cloud exploitation framework)主要用来方便红队人员在获得 AK 的后续工作。☆55Updated last year
- Java表达式语句生成器☆193Updated last year
- ☆90Updated last year
- JavaSec☆39Updated last year
- 基于dbcp的fastjson rce 回显☆195Updated 4 years ago
- Apache RocketMQ 远程代码执行 漏洞(CVE-2023-33246) Exploit☆109Updated 2 years ago
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆225Updated 2 years ago
- 毒液爬行器:专为捡洞而生的爬虫神器☆207Updated 5 months ago
- simpleIAST- 基于污点追踪的灰盒漏洞扫描工具。☆88Updated this week