9.6. 漏洞利用

9.6.1. 数据库注入

• SQLMap

• bbqsql

9.6.2. 非结构化数据库注入

• NoSQLAttack

• NoSQLMap

• Nosql Exploitation Framework

• MongoDB audit

9.6.3. 数据库漏洞利用

• mysql unsha1

9.6.4. XSS

• BeEF

• XSS Reciver

• DSXS

• XSStrike

• xsssniper

• tracy

9.6.5. SSRF

• SSRFmap

• SSRF Proxy

• Gopherus

• SSRF Testing

9.6.6. 模版注入

• tplmap

9.6.7. 命令注入

• commix

9.6.8. PHP

• Chankro Herramienta para evadir disable_functions y open_basedir

9.6.9. LFI

• LFISuite

• FDsploit

9.6.10. struts

• struts scan

9.6.11. CMS

• Joomla Vulnerability Scanner

• Drupal enumeration & exploitation tool

• Wordpress Vulnerability Scanner

• TPscan 一键ThinkPHP漏洞检测

• dedecmscan 织梦全版本漏洞扫描

9.6.12. DNS相关漏洞

• dnsAutoRebinding

• AngelSword

• Subdomain TakeOver

• mpDNS

• JudasDNS Nameserver DNS poisoning

• singularity A DNS rebinding attack framework by NGC Group

9.6.13. DNS数据提取

• dnsteal

• DNSExfiltrator

• dns exfiltration by krmaxwell

• dns exfiltration by coryschwartz

• requestbin for dns

9.6.14. DNS 隧道

• dnstunnel de

• iodine

• dnscat2

9.6.15. XXE

• XXEinjector

• XXER

9.6.16. 反序列化

• ysoserial

• JRE8u20 RCE Gadget

• Java Serialization Dumper

• marshalsec Java Unmarshaller Security - Turning your data into code execution

• gadgetinspector A byte code analyzer for finding deserialization gadget chains in Java applications

9.6.17. 端口Hack

• Oracle Database Attacking Tool

• nmap vulners

• nmap nse scripts

• Vulnerability Scanning with Nmap

9.6.18. JWT

• jwtcrack

9.6.19. 无线

• infernal twin

9.6.20. 中间人攻击

• mitmproxy

• MITMf

• ssh mitm

• injectify

• Responder Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

• toxy Hackable HTTP proxy for resiliency testing and simulated network conditions

9.6.21. DHCP

• DHCPwn

9.6.22. DDoS

• Saddam

9.6.23. Bad USB

• WiFiDuck Keystroke injection attack plattform