zhutougg / Awesome-Intranet_pentest_tool
☆79Updated 4 years ago
Related projects ⓘ
Alternatives and complementary repositories for Awesome-Intranet_pentest_tool
- ☆62Updated 4 years ago
- Shiro RCE (Padding Oracle Attack)☆142Updated 4 years ago
- ☆58Updated 4 years ago
- Shiro_721 exp 纯手工实现Padding Oracle整个过程☆68Updated 4 years ago
- exploit Apache Flink Web Dashboard unauth rce on right way by python2 scripts☆88Updated 4 years ago
- django 漏洞:CVE-2020-7471 Potential SQL injection via StringAgg(delimiter) 的漏洞环境和 POC☆104Updated 4 years ago
- ☆142Updated 6 years ago
- MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload☆13Updated 4 years ago
- 存放一些自己写过的漏洞利用脚本☆49Updated 5 years ago
- WebLogic EJBTaglibDescriptor XXE漏洞(CVE-2019-2888)☆58Updated 5 years ago
- Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()☆79Updated 4 years ago
- fastjson-1.2.47☆65Updated 5 years ago
- 开启WeblogicScanV3.*系列,采用Server部署,支持远程Weblogic漏洞扫描☆55Updated 4 years ago
- SpringBoot_Actuator_RCE☆96Updated 4 years ago
- ☆58Updated 4 years ago
- Shell say no to NIDS☆71Updated 5 years ago
- bypass JEP290 RaspHook code☆62Updated 4 years ago
- Java Exp FrameWork☆104Updated 3 years ago
- webshell-bypass☆73Updated 4 years ago
- Weblogic CVE-2019-2725 CVE-2019-2729 Getshell 命令执行☆68Updated 5 years ago
- A collection of script tools for pentesting☆63Updated 5 years ago
- A BurpSuite extension written by Python,used to find API interface in JS file.☆114Updated last year
- Remote Command Execution Over Spark☆96Updated 6 years ago
- CVE-2020-36179~82 Jackson-databind SSRF&RCE☆81Updated 3 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆100Updated 4 years ago
- kibana < 6.6.0 未授权远程代码命令执行 (Need Timelion And Canvas),CVE-2019-7609☆90Updated 5 years ago