This repository provides a Proof of Concept (PoC) for testing various vulnerabilities in the Apache HTTP Server, including Filename Confusion…
一句话介绍工具: AutorizePro 是一款创新性的内置AI分析模块的专注于越权检测的 Burp 插件 (已有多个白帽反馈用工具嘎嘎挖到src洞, 每周末更新, 欢迎Star🌟以便持续跟踪项目最新版本功能) 工具背景 越权漏洞在黑盒测试、SRC挖掘中几乎是必测的一项,但手工逐个测试越权漏洞往往会耗费大量时间。 而自动化工具又因为接口的多样化,难以制定一个全面的检测逻辑而存在大量误报, 基于此产生了 AI辅助分析的检测工具 ➡️ AutorizePro !! ⬅️ 工具亮点 优化检测逻辑 &&…
The Modern, Blazing Fast Port Scanner. Find ports quickly (3 seconds at its fastest). Run scripts through our scripting engine…
SharpRedirect is a simple .NET Framework-based redirector from a specified local port to a destination host and port. Features Traffic…
Multi-step website vulnerability scanner designed to help pentesters and bug hunters identify potential vulnerabilities in web applications. We have a…
Package go-lsass is a tool built to dump the memory of the LSASS process remotely by uploading a local LSASS…
Welcome to atomicgen.io, a simple tool designed to create Atomic Red Team tests with ease. This platform provides a user-friendly…
This Python script emulates the websocket server side of RevC2 by sending the type you select and rendering the response.…
DLL Universal Patcher is a flexible and convenient code patcher that doesn't touch the files on disk. It can be…
A cheat sheet for pentesters and researchers about deserialization vulnerabilities in various Java (JVM) serialization libraries. Please, use #javadeser hash…