Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、CVE-2020-1938、CVE-2020-2551、CVE-2020-2555、CVE-2020-2883、CVE-2019-17558、CVE-2019-6340

Stars: ✭ 3,056 (+12633.33%)

Mutual labels: exp

Ladon

大型内网渗透扫描器&Cobalt Strike，Ladon8.9内置120个模块，包含信息收集/存活主机/端口扫描/服务识别/密码爆破/漏洞检测/漏洞利用。漏洞检测含MS17010/SMBGhost/Weblogic/ActiveMQ/Tomcat/Struts2，密码口令爆破(Mysql/Oracle/MSSQL)/FTP/SSH(Linux)/VNC/Windows(IPC/WMI/SMB/Netbios/LDAP/SmbHash/WmiHash/Winrm),远程执行命令(smbexec/wmiexe/psexec/atexec/sshexec/webshell),降权提权Runas、GetSystem，Poc/Exploit,支持Cobalt Strike 3.X-4.0

Stars: ✭ 2,911 (+12029.17%)

Mutual labels: exp

MS17010EXP

Ladon Moudle MS17010 Exploit for PowerShell

Stars: ✭ 40 (+66.67%)

Mutual labels: exp

SpringBootExploit

项目是根据LandGrey/SpringBootVulExploit清单编写，目的hvv期间快速利用漏洞、降低漏洞利用门槛。

Stars: ✭ 1,060 (+4316.67%)

Mutual labels: exp

tongda-kite

通达综合利用脚本项目地址：tongda-kite

通达常见的exp

个人编写的exp,仅供学习和研究使用,请勿使用文中的技术源码用于非法用途,任何人造成的任何负面影响,与本人无关

用法：

python tongda-kite.py

1 = [探测目标URL的通达版本信息]
2 = [测试目标通达是否存在空登录以及获取Cookie(全版本)]
3 = [测试通达11.3任意文件包含漏洞]
4 = [测试通达11.3任意文件上传+配合11.3包含上传的文件getshell]
5 = [测试通达V11.x-V11.5任意用户登录获取cookie]
6 = [测试通达11.5以下的后台文件上传getshell 需要cookie]
7 = [测试通达11.6任意文件删除+getshell 有风险]
8 = [测试通达11.7有效的任意用户登录以及监控]
9 = [测试通达11.8后台文件上传getshell]
10 = [测试通达11.9后台SQL时间盲注]
11 = [单个URL批量测试1-2-3-4-5]
12 = [old - 通达upload.php注入]
13 = [old - 通达get_file.php任意文件读取]

create by ffffffff0x

Note that the project description data, including the texts, logos, images, and/or trademarks, for each open source project belongs to its rightful owner. If you wish to add or remove any projects, please contact us at [email protected].

Cheap and reliable Node.js hosting starts at $3/month, and $1/month static HTML hosting

kitezzzGrim / tongda-exp

Programming Languages

Labels

Projects that are alternatives of or similar to tongda-exp

tongda-kite