admin/0day
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity
246 Commits 3 Branches 0 Tags
Go to file
Clone
Open with VS Code Open with VSCodium Open with Intellij IDEA
Download ZIP Download TAR.GZ Download BUNDLE
helloexp d47697dd44 优化目录
2022-03-01 10:29:38 +08:00
.github/ISSUE_TEMPLATE
add 安全产品漏洞
2022-01-20 14:43:11 +08:00
00-CVE_EXP
优化目录
2022-03-01 10:29:38 +08:00
01-通达OA
添加通达OA 漏洞利用exp
2022-01-13 15:48:49 +08:00
02-ActiveMQ
add active MQ exp
2022-01-13 17:36:08 +08:00
03-Apache & Tomcat
优化目录
2022-03-01 09:54:09 +08:00
04-Django
add Django exp
2022-01-13 17:41:43 +08:00
05-Docker
add Docker exp
2022-01-13 17:42:46 +08:00
06-Hadoop/Hadoop未授权访问
adjust name rules
2022-02-25 15:33:09 +08:00
07-Jenkins
add Jenkins
2022-01-13 17:44:34 +08:00
08-Mongo DB/Mongo DB未授权访问
adjust name rules
2022-02-25 15:33:09 +08:00
09-宝塔
add 禅道exp
2022-01-13 17:47:33 +08:00
10-禅道/禅道 11.6 sql注入漏洞
adjust name rules
2022-02-25 15:33:09 +08:00
11-齐治堡垒机/齐治堡垒机 任意用户登录漏洞
adjust name rules
2022-02-25 15:33:09 +08:00
12-用友
update 用友nc exp
2022-01-13 18:00:45 +08:00
13-致远oa
add 致远oa exp
2022-01-13 17:51:45 +08:00
14-F5/BIG-IP未授权
add F5 exp
2022-01-13 17:57:57 +08:00
15-chrome
add chrome exp
2022-01-13 17:58:32 +08:00
16-泛微OA
add 泛微OA exp
2022-01-13 17:59:57 +08:00
17-钉钉
dingtalk rce
2022-02-17 13:36:34 +08:00
18-向日葵远程命令执行
新增批量扫描工具
2022-02-21 10:34:04 +08:00
19-华为路由器/DG8045 Router 1.0
add 华为路由器敏感信息泄露
2022-02-21 18:10:23 +08:00
97-Windows提权
add windows 提权
2022-02-24 17:57:42 +08:00
98-Linux提权
add Linux 提权
2022-02-24 17:58:40 +08:00
99-安全产品漏洞
add 安全产品漏洞
2022-01-20 14:43:11 +08:00
CMS
adjust CMS dir structure
2022-02-28 11:45:43 +08:00
ImageMagick/Ghostscript_9.23
ImageMagick Ghostscript RCE
2018-08-23 10:25:11 +08:00
JbossAS/JbossAS_v5.x_v6.x_CVE-2017-12149
Update README.md
2017-11-27 16:57:53 +08:00
Laravel/PHP Laravel 8.70.1--XSS 漏洞
add PHP Laravel 8.70.1 跨站脚本攻击(XSS)
2022-02-28 10:55:19 +08:00
shiro
优化readme
2022-03-01 09:44:16 +08:00
struts2
Update README.md
2017-11-24 19:08:26 +08:00
svn_file_disclosure
Update README.md
2017-11-24 19:07:03 +08:00
Thinkphp
update thinkphp exp
2022-01-13 17:46:34 +08:00
WebLogic
add weblogic CVE-2020-14882 RCE 漏洞
2022-03-01 10:27:04 +08:00
.gitignore
add 安全产品漏洞
2022-01-20 14:43:11 +08:00
LICENSE
add 安全产品漏洞
2022-01-20 14:43:11 +08:00
README.md
update README.md
2022-02-25 17:44:33 +08:00

README.md

0day

GitHub forks GitHub stars GitHub issues

各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将不断更新

优秀项目列表

  1. Fastjson RCE https://github.com/dbgee/fastjson-rce
  2. Log4j RCE https://github.com/dbgee/log4j2_rce
  3. redis RCE https://github.com/Ridter/redis-rce
  4. Thinkphp RCE https://github.com/helloexp/0day
  5. Windows RCE https://github.com/smgorelik/Windows-RCE-exploits
  6. shiro 发序列化 https://github.com/helloexp/0day/tree/master/shiro
  7. VPS2SUSE https://github.com/U2FsdGVkX1/vps2suse

为什么发起这个项目?

  1. 几个月前我参加了一场AWD攻防比赛发现提前收集POC 对比赛很有好处,而且在收集这些 payload 的过程中,也能学到许多东西.
  2. 后续的HW、CTF、或日常的渗透等活动可以快速定位、利用漏洞.

问题反馈

在使用中有任何问题,欢迎反馈给我,可以直接发起 PR或issue.

优秀项目收录

如果需要在本项目中展示自己的github 项目,请在README.md 添加项目地址然后提交PR即可open pull request

Description
各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新
exploit
Readme GPL-3.0 390 MiB
Languages
C 58.5%
HTML 6.7%
Shell 6.7%
C# 5.5%
Java 5.1%
Other 17.2%