Block or Report
Block or report keloke
Contact GitHub support about this user’s behavior. Learn more about reporting abuse.
Report abuse-
Dubbo-deserialization Public
Forked from L0kiii/Dubbo-deserialization[CVE-2020-1948] Apache Dubbo Provider default deserialization cause RCE
Java UpdatedAug 7, 2020 -
exphub Public
Forked from zhzyker/exphubExphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,优先更新高危且易利用的漏洞利用脚本,最新添加CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、C…
Python UpdatedJun 28, 2020 -
learnjavabug Public
Forked from threedr3am/learnjavabugJava安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。
Java MIT License UpdatedJun 3, 2020 -
Safety-Project-Collection Public
Forked from Bypass007/Safety-Project-Collection收集一些比较优秀的开源安全项目,以帮助甲方安全从业人员构建企业安全能力。
UpdatedJul 25, 2019 -
K8tools Public
Forked from k8gege/K8toolsK8工具合集(内网渗透/提权工具/远程溢出/漏洞利用/扫描工具/密码破解/免杀工具/Exploit/APT/0day/Shellcode/Payload/priviledge/BypassUAC/OverFlow/WebShell/PenTest) Web GetShell Exploit(Struts2/Zimbra/Weblogic/Tomcat/Apache/Jboss/DotNetN…
PowerShell UpdatedJun 9, 2019 -
commons-validator Public
Forked from apache/commons-validatorApache Commons Validator
Java Apache License 2.0 UpdatedMay 1, 2019 -
-
kunpeng Public
Forked from opensec-cn/kunpengkunpeng是一个Golang编写的开源POC检测框架,以动态链接库的形式提供各种语言调用,通过此项目可快速开发漏洞扫描类的系统,比攻击者快一步发现风险漏洞。
Go Apache License 2.0 UpdatedMar 7, 2019 -
xunfeng Public
Forked from ysrc/xunfeng巡风是一款适用于企业内网的漏洞快速应急,巡航扫描系统。
Python GNU General Public License v3.0 UpdatedMar 6, 2019 -
-
struts-scan Public
Forked from Lucifer1993/struts-scanPython2编写的struts2漏洞全版本检测和利用工具
Python UpdatedDec 31, 2018 -
hack-requests Public
Forked from boy-hack/hack-requestsThe hack-requests is an HTTP network library for hackers
Python MIT License UpdatedDec 26, 2018 -
w9scan Public
Forked from w-digital-scanner/w9scanPlug-in type web vulnerability scanner
Python GNU General Public License v2.0 UpdatedNov 16, 2018 -
-
w8fuckcdn Public
Forked from boy-hack/w8fuckcdnGet website IP address by scanning the entire net 通过扫描全网绕过CDN获取网站IP地址
Python UpdatedAug 24, 2018 -
w11scan Public
Forked from w-digital-scanner/w11scan分布式WEB指纹识别平台 Distributed WEB fingerprint identification platform
CSS GNU General Public License v3.0 UpdatedAug 23, 2018 -
-
j2ee-scan Public
Forked from PortSwigger/j2ee-scanJ2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tests on J2EE applications.
Java GNU General Public License v2.0 UpdatedOct 2, 2017 -
httprecon-nse Public
Forked from scipag/httprecon-nseAdvanced web server fingerprinting for Nmap
Lua GNU General Public License v3.0 UpdatedSep 29, 2017 -
HackRequests Public
Forked from brianwrf/HackRequestsIt is a dedicated requests lib that supports cookie, headers, get/post, etc. And it also supports rendering the response (e.g. Javascript, CSS, etc.) of GET requests by using PhantomJs enginee.
Python UpdatedSep 12, 2017 -
-
-
LFIboomCTF Public
Forked from SewellDinG/LFIboomCTF本地文件包含漏洞&&PHP利用协议&&实践源码
HTML UpdatedApr 26, 2017 -
BugRequest Public
Forked from BugScanTeam/BugRequestSniffer vulnerabilities in http request (chrome extension)
JavaScript GNU General Public License v3.0 UpdatedFeb 17, 2017 -
python_web_Vulnerable_tools Public
Forked from sml2h3/python_web_Vulnerable_toolspython版的Web漏洞批量扫描器,exp插件模块已抽象化,可实现不修改主体python程序的前提下,加入新的exp模块
Python UpdatedDec 23, 2016 -
CTFCrackTools Public
Forked from 0Chencc/CTFCrackTools一款旨在帮助CTFer在CTF中发挥作用的工具
Java UpdatedNov 27, 2016 -
Some-PoC-oR-ExP_fromCoffeehb Public
Forked from zzleo/Some-PoC-oR-ExP_fromCoffeehbPython UpdatedAug 29, 2016 -
BruteXSS Public
Forked from shawarkhanethicalhacker-zz/BruteXSSBruteXSS - Cross-Site Scripting Bruteforcer
Python GNU General Public License v3.0 UpdatedJul 15, 2016 -
SecLists Public
Forked from danielmiessler/SecListsSecLists is the security tester's companion. It is a collection of multiple types of lists used during security assessments. List types include usernames, passwords, URLs, sensitive data grep strin…
PHP UpdatedJun 29, 2016 -