log4j2_burp_scan
自用脚本log4j2 被动 burp rce扫描工具 get post cookie 全参数识别,在ceye.io api速率限制下,最大线程扫描每一个参数,记录过滤已检测地址,重复地址
token替换为你自己的http://ceye.io/ token 和域名地址
不要忘了设置这个
套用https://github.com/SkewwG/BurpExtender/ SQL注入检测插件
You might also like...
Application security tools for CI/CD pipeline
Application security tools for CI/CD pipeline
A simple tool to audit Linux system libraries to find public security vulnerabilities
A simple tool to audit Linux system libraries to find public security vulnerabilities
Fb token and cookie making tools
Fb token and cookie making tools
An interactive python script that enables root access on the T-Mobile (Wingtech) TMOHS1
An interactive python script that enables root access on the T-Mobile (Wingtech) TMOHS1
A Cryptographied Password Manager, a tool for storing Passwords in a Secure way
A Cryptographied Password Manager, a tool for storing Passwords in a Secure way
Open detection and scanning tool for discovering and fuzzing for Log4J RCE CVE-2021-44228 vulnerability
Open detection and scanning tool for discovering and fuzzing for Log4J RCE CVE-2021-44228 vulnerability
Black Mamba: a Command and Control (C2) that works with multiple connections at same time
Black Mamba: a Command and Control (C2) that works with multiple connections at same time
log4j-tools: CVE-2021-44228 poses a serious threat to a wide range of Java-based applications
log4j-tools: CVE-2021-44228 poses a serious threat to a wide range of Java-based applications