CHYbeta / Cmspoc
CMS渗透测试框架-A CMS Exploit Framework
Stars: ✭ 557
Programming Languages
python
139335 projects - #7 most used programming language
Projects that are alternatives of or similar to Cmspoc
Cmseek
CMS Detection and Exploitation suite - Scan WordPress, Joomla, Drupal and over 180 other CMSs
Stars: ✭ 1,296 (+132.68%)
Mutual labels: cms, drupal
Exphub
Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本,最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340
Stars: ✭ 3,056 (+448.65%)
Mutual labels: drupal, poc
Cve 2018 7600
💀Proof-of-Concept for CVE-2018-7600 Drupal SA-CORE-2018-002
Stars: ✭ 330 (-40.75%)
Mutual labels: drupal, poc
Cms
GleezCMS - A Light, Simple, Flexible Content Management System
Stars: ✭ 200 (-64.09%)
Mutual labels: cms, drupal
Thunder Distribution
A Drupal 8 based platform for professional publishers
Stars: ✭ 107 (-80.79%)
Mutual labels: cms, drupal
Penetration testing poc
渗透测试有关的POC、EXP、脚本、提权、小工具等---About penetration-testing python-script poc getshell csrf xss cms php-getshell domainmod-xss penetration-testing-poc csrf-webshell cobub-razor cve rce sql sql-poc poc-exp bypass oa-getshell cve-cms
Stars: ✭ 3,858 (+592.64%)
Mutual labels: cms, poc
Drupalgeddon2
Exploit for Drupal v7.x + v8.x (Drupalgeddon 2 / CVE-2018-7600 / SA-CORE-2018-002)
Stars: ✭ 464 (-16.7%)
Mutual labels: drupal, poc
Vulscan
vulscan 扫描系统:最新的poc&exp漏洞扫描,redis未授权、敏感文件、java反序列化、tomcat命令执行及各种未授权扫描等...
Stars: ✭ 486 (-12.75%)
Mutual labels: poc
V8 Archive
Directus Database API — Wraps Custom SQL Databases with a REST/GraphQL API
Stars: ✭ 486 (-12.75%)
Mutual labels: cms
Simpla
Open, modular, and serverless content management for a modern web
Stars: ✭ 534 (-4.13%)
Mutual labels: cms
Webiny Js
Enterprise open-source serverless CMS. Includes a headless CMS, page builder, form builder and file manager. Easy to customize and expand. Deploys to AWS.
Stars: ✭ 4,869 (+774.15%)
Mutual labels: cms
Purpleadmin Free Admin Template
Purple Admin is one of the most stylish Bootstrap admin dashboard you can get hands on. With its beautifully crafted captivating design and well-structured code.
Stars: ✭ 473 (-15.08%)
Mutual labels: cms
Tutor
The docker-based Open edX distribution designed for peace of mind
Stars: ✭ 470 (-15.62%)
Mutual labels: cms
Attention
项目正在重构中:cmsPoc 2.0
注意:2.0版本的poc库还未更新相应接口,无法调用。若需使用,建议先使用1.0版本。
cmsPoc 1.0
Requirements
- python2.7
- Works on Linux, Windows
Usage
usage: cmspoc.py [-h]
-t TYPE -s SCRIPT -u URL
optional arguments:
-h, --help show this help message and exit
-t TYPE, --type TYPE e.g.,phpcms
-s SCRIPT, --script SCRIPT
Select script
-u URL, --url URL Input a target url
参数说明:
- -t:指定cms的类型,比如 -t beecms
- -s:指定要载入的POC脚本,比如 -s v40_fileupload_getshell
- -u:指定目标cms,比如 -u http://vuln/index.php
Script
完整脚本列表请见:cmsPoc-Wiki:Scripts
For a complete script list,you can see here: cmsPoc-Wiki:Scripts
Examples
python cmspoc.py -u http://127.0.0.1/beecms/inex.php -t beecms -s v40_fileupload_getshell
Legal Disclaimer
本项目仅供教育和学习交流使用,请勿用于非法用途恶意攻击,否则后果作者概不负责。
This project is made for educational and ethical testing purposes only。It is the end user's responsibility to obey all applicable local, state and federal laws. Developers assume no liability and are not responsible for any misuse or damage caused by this program.
Note that the project description data, including the texts, logos, images, and/or trademarks,
for each open source project belongs to its rightful owner.
If you wish to add or remove any projects, please contact us at [email protected].