zer0yu / BugBounty
web fuzzing && bug hunter
☆60Updated 3 years ago
Alternatives and similar repositories for BugBounty:
Users that are interested in BugBounty are comparing it to the libraries listed below
- ☆4Updated 4 years ago
- SpringBoot_Actuator_RCE☆96Updated 4 years ago
- My collection of various of JSP Webshell.☆34Updated 2 years ago
- 解答开发关于安全漏洞的常见问题☆41Updated 5 years ago
- common methods that used by my burp extension projects☆51Updated last year
- XSTREAM<=1.4.17漏洞复现(CVE-2021-39141、CVE-2021-39144、CVE-2021-39150)☆61Updated 3 years ago
- 子域名监控式漏扫☆42Updated 4 years ago
- burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz☆63Updated 6 years ago
- 一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。☆50Updated 3 years ago
- gitlab version index☆62Updated 3 years ago
- ☆69Updated 4 years ago
- WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar☆80Updated 4 years ago
- ☆49Updated 4 years ago
- F5 BIG-IP RCE CVE-2020-5902 automatic check tool☆62Updated 4 years ago
- Log4j2 RCE Passive Scanner plugin for BurpSuite☆35Updated 3 years ago
- Java RMI反序列化漏洞插件☆47Updated 3 years ago
- 根据多个不同地区进行聚合查询以获取更多 fofa 数据☆28Updated last year
- 通过hosts碰撞发现目标内部系统,扩大攻击面。☆46Updated 3 years ago
- ☆23Updated 4 years ago
- mvn clean package -DskipTests☆46Updated 2 years ago
- 通过Whois信息发现更多与目标有关联的域名,扩大攻击面☆14Updated 3 years ago
- CVE-2020-36179~82 Jackson-databind SSRF&RCE☆80Updated 4 years ago
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go☆113Updated 2 years ago
- burp-http请求转发至其他模块的插件☆76Updated 4 years ago
- xxe oob receive file via web and ftp server☆97Updated 5 years ago
- IMAP Bruteforce Script☆29Updated 5 years ago
- Exploit_Scripts☆24Updated 3 years ago
- CodeQL 寻找 JNDI利用 Lookup接口☆163Updated 3 years ago
- 2020年~2021年 网站CMS、中间件、框架系统漏洞集合☆36Updated 4 years ago
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆50Updated 3 years ago