1 个仓库
Toolkits used to automate the upload and installation of web shells for persistent remote access.
Distinct from Web Shell Executions: Distinct from Web Shell Executions: focuses on the delivery and establishment mechanism (deployment) rather than the execution of commands through the shell.
Explore 1 awesome GitHub repository matching development tools & productivity · Deployment Frameworks. Refine with filters or upvote what's useful.
Exphub 是一个 CVE 利用脚本库和企业软件漏洞套件,旨在验证和利用 WebLogic、Struts2、Tomcat 和 JBoss 等服务器环境中的已知安全漏洞。它作为一个远程代码执行工具包和 Web Shell 部署框架,用于触发未经授权的命令执行并在远程系统上建立持久访问。 该项目包含用于内网侦察的专用工具,特别是利用服务端请求伪造(SSRF)来扫描开放端口和服务。它还提供了绕过访问控制以及执行未经授权的文件读取和上传的机制。 该套件涵盖了广泛的功能领域,包括漏洞评估、渗透测试以及执行概念验证(PoC)脚本以确认安全漏洞的存在。
Provides a framework for uploading and establishing persistent web-based backdoors on remote compromised systems.