9.6.8. PHP
- Chankro Herramienta para evadir disable_functions y open_basedir
9.6.11. CMS
- Joomla Vulnerability Scanner
- Drupal enumeration & exploitation tool
- WordPress Vulnerability Scanner
- TPscan 一键ThinkPHP漏洞检测
- dedecmscan 织梦全版本漏洞扫描
9.6.12. Java框架
- ShiroScan Shiro<=1.2.4反序列化检测工具
- fastjson rce tool fastjson命令执行利用工具
9.6.13. DNS相关漏洞
- dnsAutoRebinding
- AngelSword
- Subdomain TakeOver
- mpDNS
- JudasDNS Nameserver DNS poisoning
- singularity A DNS rebinding attack framework by NGC Group
9.6.18. 反序列化
- ysoserial
- JRE8u20 RCE Gadget
- Java Serialization Dumper
- marshalsec Java Unmarshaller Security - Turning your data into code execution
- gadgetinspector A byte code analyzer for finding deserialization gadget chains in Java applications
9.6.19. JNDI
- Rogue JNDI A malicious LDAP server for JNDI injection attacks
9.6.23. 中间人攻击
- mitmproxy
- MITMf
- ssh mitm
- injectify
- Responder Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.
- toxy Hackable HTTP proxy for resiliency testing and simulated network conditions
9.6.26. Shellcode
- go shellcode A repository of Windows Shellcode runners and supporting utilities