zongdeiqianxing / log4j2-scan
使用浏览器爬虫获取网站全链接扫描log4j2漏洞 / Use a browser crawler to get the full link of the website and scan the log4j2 vulnerability
☆13Updated 2 years ago
Related projects: ⓘ
- burp插件:python版,token防重放绕过☆19Updated 3 years ago
- gophish批量操作,适用于大批量钓鱼演练☆29Updated 3 years ago
- 批量无损检测CVE-2022-22965☆36Updated 2 years ago
- ☆24Updated this week
- 对接JNDIMonitor的Burp Suite被动扫描插件☆23Updated 2 years ago
- 自动化资产收集,端口扫描,指纹识别,蜜罐识别,漏洞检测 轻量级神器☆32Updated 3 years ago
- CVE-2021-43798 Grafana 任意文件读取漏洞 POC+参数☆14Updated 2 years ago
- 根据多个不同地区进行聚合查询以获取更多 fofa 数据☆29Updated last year
- ☆10Updated this week
- 若依后台定时任务一键利用☆17Updated 2 years ago
- Exploit_Scripts☆23Updated 3 years ago
- 详见公众号☆39Updated last year
- 一个超级缝合怪的图形化渗透工具☆37Updated 3 years ago
- 规则组合子域名字典生成☆27Updated 4 years ago
- tomcat 图形化弱口令爆破 也可以作为401认证爆破☆13Updated 3 years ago
- ☆26Updated this week
- ☆23Updated 3 years ago
- 从github爬取路径然后生成字典用来爆破,针对利用开源github搭建的网站的路径提取☆26Updated 2 years ago
- 泛微OA_V9全版本前台任意文件上传漏洞☆29Updated 2 years ago
- Burp suite 插件 实现参数溢出、垃圾数据、字典笛卡尔积☆27Updated 2 years ago
- ☆37Updated this week
- ☆20Updated this week
- 漏洞复现与poc收集,CVE-2021-21975,cve-2021-22005,CVE-2021-26295,VMware vCenter任意文件读取☆15Updated 2 years ago
- CVE-2022-22947 memshell☆19Updated 2 years ago
- 泰阿鉴道资产漏洞扫描自动化平台,主打常规安服流程自动化,功能资产端口服务发现,资产爬虫漏洞被动扫描,目录爆破, 弱口令扫描和WEB资产首页截图用于快速定点目标,扫描结果按单位名称结构化输出。☆22Updated 2 years ago
- ☆31Updated 3 years ago
- 致远OA通过发送特殊请求获取管理员cookie,再通过文件上传接口上传webshell压缩文件,最后发送解压请求获取webshell☆10Updated 3 years ago
- CVE-2021-22205 检测脚本,支持getshell和命令执行☆12Updated 2 years ago
- CVE-2022-24990信息泄露+RCE 一条龙☆39Updated 2 years ago
- shiro反序列化利用综合利用,包含(回显执行命令/注入内存马)原版中NoCC的问题 https://github.com/j1anFen/shiro_attack☆11Updated 2 years ago
- 基于JavaFx编写的C/S图形化界面漏洞验证工具集。☆24Updated 2 years ago