├── .gitignore ├── LICENSE ├── NOTICE ├── README.md ├── attack-payload ├── sql │ └── bypass.txt └── xss │ ├── metadata │ ├── events.txt │ ├── protocols.txt │ ├── tags.txt │ └── tags_noexec.txt │ └── payloads.txt ├── directory ├── backdoor │ └── jboss.txt ├── editor.txt ├── files │ ├── asp.txt │ ├── aspx.txt │ ├── big_dict.txt │ ├── dic.txt │ ├── fck.txt │ ├── jsp.txt │ ├── mdb.txt │ ├── php.txt │ └── webserver │ │ ├── Apache.fuzz.txt │ │ ├── ApacheTomcat.fuzz.txt │ │ ├── Frontpage.fuzz.txt │ │ ├── HTTP_POST_Microsoft.fuzz.txt │ │ ├── IIS.fuzz.txt │ │ ├── JBoss.fuzz.txt │ │ ├── JavaServlets_Common.fuzz.txt │ │ ├── OracleAppServer.fuzz.txt │ │ ├── Weblogic.fuzz.txt │ │ └── Websphere.fuzz.txt ├── readme.md └── vuls │ └── fck.txt ├── dns ├── alexaTopRcommonSubdomains.txt ├── subdomain_large.txt ├── subdomain_small.txt └── toplevel.txt ├── else ├── apps.yaml ├── ascii.txt ├── googlehacking.md ├── php_sensitive_word.md ├── ports.txt ├── ports.yaml ├── readme.md ├── useragent_large.txt └── useragent_normal.txt ├── exploit ├── cms_dedecms_install_variable_coverage.py ├── cms_discuz_6_x7_x_cookie_rce.py ├── cms_discuz_7_2_sortid_sql_injection.py ├── cms_discuz_7_x_grouppermission_sql_injection.py ├── cms_discuz_attachment_download.py ├── cms_discuz_backupfile_bruteforce.py ├── cms_discuz_csrf_database_export.py ├── cms_discuz_uccenter2_0_sql_injection.py ├── cms_discuzx_2_forum_attachment_sql_injection.py ├── cms_discuzx_3_2_authority_bypass.py ├── cms_douphp_backup_bruteforce.py ├── cms_joomla_3_4_session_object_injection.py ├── cms_qibo_blog_pre_sql_injection.py ├── cms_qibo_blog_rce.py ├── cms_qibo_blog_table_album_update_sql_injection.py ├── cms_qibo_blog_type_sql_injection.py ├── cms_qibo_fenlei_1_0_rce.py ├── cms_qibo_label_cache_rce.py ├── cms_qibo_splitword_php_backdoor.py ├── else │ ├── S2-033_PoC.py.py │ ├── S2-037_CmdToolExP.py │ └── pocsuite_joomla_3_4_session_object_injection.py ├── exp_tmp.py ├── exploit.db ├── glassfish_directory_traversal.py ├── jboss_3_4_5_6_console_unauthorized_access.py ├── middleware_imagemagick_rce.py └── readme.md ├── pen.py ├── pentest-tool-data ├── app_fingerprint.yaml ├── cms_fingerprint.yaml ├── java_webconsole.yaml ├── mail_servers.yaml ├── port_mapping.yaml ├── search_engine.yaml ├── subdomain_small.txt ├── toplevel.txt ├── uri_brute.yaml └── user-agents.yaml ├── pentest-tool ├── MANIFEST.in ├── pentest │ ├── __init__.py │ ├── libs │ │ ├── __init__.py │ │ ├── cms.py │ │ ├── coder.py │ │ ├── commons.py │ │ ├── dnsparse.py │ │ ├── exploit.py │ │ ├── orm.py │ │ ├── password.py │ │ ├── payload.py │ │ ├── searchengine.py │ │ ├── service.py │ │ ├── subnet.py │ │ └── uribrute.py │ ├── mail.py │ ├── penfuncs.py │ └── wordlist.py ├── requirements.txt └── setup.py ├── user-password ├── password │ ├── password.db │ ├── password_foreign_1000.txt │ ├── password_top_1000.txt │ ├── password_top_10000.txt │ ├── password_top_3000.txt │ └── user_defines.txt └── user │ ├── my.txt │ ├── top500_user.txt │ └── top500姓名组合.txt └── webshell ├── asp asp.net ├── Antak-powershell.aspx ├── WebAdmin2.x.aspx ├── aspminishell.txt ├── aspxspy2014_asp_c.aspx ├── aspxspy_asp_c.aspx ├── cmdexec_asp_c.aspx ├── dEvilzShell.aspx ├── keywords.txt ├── readme.md ├── suffix.txt ├── 一句话.aspx ├── 凝聚科技大马.aspx ├── 文件上传.aspx ├── 某大马.aspx └── 梦幻剑客大马.aspx ├── java ├── Caidao.java ├── brower.jsp ├── cmd.jsp ├── jfolder.jsp ├── jspWebshel1.2.jsp ├── jspspy.jsp ├── oneserv.war ├── oneword.war ├── pwnshell.jsp ├── readme.md ├── shellframe │ └── WEB-INF │ │ └── web.xml ├── suffix.txt ├── upfile_small.jsp ├── 岁月联盟.jsp ├── 幻影旅团大马.jsp ├── 文件上传.jsp └── 菜刀一句话.jsp └── php ├── MetalSoft.php ├── Mexican.php ├── PoisonShell.php ├── cihshell.php ├── iTSecTeam.php ├── keywords.txt ├── readme.md ├── suffix.txt ├── tef.php ├── 一句话.md ├── 免杀php大马.php └── 在线exp专用免杀版.php /.gitignore: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/.gitignore -------------------------------------------------------------------------------- /LICENSE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/LICENSE -------------------------------------------------------------------------------- /NOTICE: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/NOTICE -------------------------------------------------------------------------------- /README.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/README.md -------------------------------------------------------------------------------- /attack-payload/sql/bypass.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/attack-payload/sql/bypass.txt -------------------------------------------------------------------------------- /attack-payload/xss/metadata/events.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/attack-payload/xss/metadata/events.txt -------------------------------------------------------------------------------- /attack-payload/xss/metadata/protocols.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/attack-payload/xss/metadata/protocols.txt -------------------------------------------------------------------------------- /attack-payload/xss/metadata/tags.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/attack-payload/xss/metadata/tags.txt -------------------------------------------------------------------------------- /attack-payload/xss/metadata/tags_noexec.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/attack-payload/xss/metadata/tags_noexec.txt -------------------------------------------------------------------------------- /attack-payload/xss/payloads.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/attack-payload/xss/payloads.txt -------------------------------------------------------------------------------- /directory/backdoor/jboss.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/backdoor/jboss.txt -------------------------------------------------------------------------------- /directory/editor.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/editor.txt -------------------------------------------------------------------------------- /directory/files/asp.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/asp.txt -------------------------------------------------------------------------------- /directory/files/aspx.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/aspx.txt -------------------------------------------------------------------------------- /directory/files/big_dict.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/big_dict.txt -------------------------------------------------------------------------------- /directory/files/dic.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/dic.txt -------------------------------------------------------------------------------- /directory/files/fck.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/fck.txt -------------------------------------------------------------------------------- /directory/files/jsp.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/jsp.txt -------------------------------------------------------------------------------- /directory/files/mdb.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/mdb.txt -------------------------------------------------------------------------------- /directory/files/php.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/php.txt -------------------------------------------------------------------------------- /directory/files/webserver/Apache.fuzz.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/webserver/Apache.fuzz.txt -------------------------------------------------------------------------------- /directory/files/webserver/ApacheTomcat.fuzz.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/webserver/ApacheTomcat.fuzz.txt -------------------------------------------------------------------------------- /directory/files/webserver/Frontpage.fuzz.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/webserver/Frontpage.fuzz.txt -------------------------------------------------------------------------------- /directory/files/webserver/HTTP_POST_Microsoft.fuzz.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/webserver/HTTP_POST_Microsoft.fuzz.txt -------------------------------------------------------------------------------- /directory/files/webserver/IIS.fuzz.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/webserver/IIS.fuzz.txt -------------------------------------------------------------------------------- /directory/files/webserver/JBoss.fuzz.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/webserver/JBoss.fuzz.txt -------------------------------------------------------------------------------- /directory/files/webserver/JavaServlets_Common.fuzz.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/webserver/JavaServlets_Common.fuzz.txt -------------------------------------------------------------------------------- /directory/files/webserver/OracleAppServer.fuzz.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/webserver/OracleAppServer.fuzz.txt -------------------------------------------------------------------------------- /directory/files/webserver/Weblogic.fuzz.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/webserver/Weblogic.fuzz.txt -------------------------------------------------------------------------------- /directory/files/webserver/Websphere.fuzz.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/files/webserver/Websphere.fuzz.txt -------------------------------------------------------------------------------- /directory/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/readme.md -------------------------------------------------------------------------------- /directory/vuls/fck.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/directory/vuls/fck.txt -------------------------------------------------------------------------------- /dns/alexaTopRcommonSubdomains.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/dns/alexaTopRcommonSubdomains.txt -------------------------------------------------------------------------------- /dns/subdomain_large.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/dns/subdomain_large.txt -------------------------------------------------------------------------------- /dns/subdomain_small.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/dns/subdomain_small.txt -------------------------------------------------------------------------------- /dns/toplevel.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/dns/toplevel.txt -------------------------------------------------------------------------------- /else/apps.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/else/apps.yaml -------------------------------------------------------------------------------- /else/ascii.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/else/ascii.txt -------------------------------------------------------------------------------- /else/googlehacking.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/else/googlehacking.md -------------------------------------------------------------------------------- /else/php_sensitive_word.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/else/php_sensitive_word.md -------------------------------------------------------------------------------- /else/ports.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/else/ports.txt -------------------------------------------------------------------------------- /else/ports.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/else/ports.yaml -------------------------------------------------------------------------------- /else/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/else/readme.md -------------------------------------------------------------------------------- /else/useragent_large.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/else/useragent_large.txt -------------------------------------------------------------------------------- /else/useragent_normal.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/else/useragent_normal.txt -------------------------------------------------------------------------------- /exploit/cms_dedecms_install_variable_coverage.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_dedecms_install_variable_coverage.py -------------------------------------------------------------------------------- /exploit/cms_discuz_6_x7_x_cookie_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_discuz_6_x7_x_cookie_rce.py -------------------------------------------------------------------------------- /exploit/cms_discuz_7_2_sortid_sql_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_discuz_7_2_sortid_sql_injection.py -------------------------------------------------------------------------------- /exploit/cms_discuz_7_x_grouppermission_sql_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_discuz_7_x_grouppermission_sql_injection.py -------------------------------------------------------------------------------- /exploit/cms_discuz_attachment_download.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_discuz_attachment_download.py -------------------------------------------------------------------------------- /exploit/cms_discuz_backupfile_bruteforce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_discuz_backupfile_bruteforce.py -------------------------------------------------------------------------------- /exploit/cms_discuz_csrf_database_export.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_discuz_csrf_database_export.py -------------------------------------------------------------------------------- /exploit/cms_discuz_uccenter2_0_sql_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_discuz_uccenter2_0_sql_injection.py -------------------------------------------------------------------------------- /exploit/cms_discuzx_2_forum_attachment_sql_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_discuzx_2_forum_attachment_sql_injection.py -------------------------------------------------------------------------------- /exploit/cms_discuzx_3_2_authority_bypass.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_discuzx_3_2_authority_bypass.py -------------------------------------------------------------------------------- /exploit/cms_douphp_backup_bruteforce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_douphp_backup_bruteforce.py -------------------------------------------------------------------------------- /exploit/cms_joomla_3_4_session_object_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_joomla_3_4_session_object_injection.py -------------------------------------------------------------------------------- /exploit/cms_qibo_blog_pre_sql_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_qibo_blog_pre_sql_injection.py -------------------------------------------------------------------------------- /exploit/cms_qibo_blog_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_qibo_blog_rce.py -------------------------------------------------------------------------------- /exploit/cms_qibo_blog_table_album_update_sql_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_qibo_blog_table_album_update_sql_injection.py -------------------------------------------------------------------------------- /exploit/cms_qibo_blog_type_sql_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_qibo_blog_type_sql_injection.py -------------------------------------------------------------------------------- /exploit/cms_qibo_fenlei_1_0_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_qibo_fenlei_1_0_rce.py -------------------------------------------------------------------------------- /exploit/cms_qibo_label_cache_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_qibo_label_cache_rce.py -------------------------------------------------------------------------------- /exploit/cms_qibo_splitword_php_backdoor.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/cms_qibo_splitword_php_backdoor.py -------------------------------------------------------------------------------- /exploit/else/S2-033_PoC.py.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/else/S2-033_PoC.py.py -------------------------------------------------------------------------------- /exploit/else/S2-037_CmdToolExP.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/else/S2-037_CmdToolExP.py -------------------------------------------------------------------------------- /exploit/else/pocsuite_joomla_3_4_session_object_injection.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/else/pocsuite_joomla_3_4_session_object_injection.py -------------------------------------------------------------------------------- /exploit/exp_tmp.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/exp_tmp.py -------------------------------------------------------------------------------- /exploit/exploit.db: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/exploit.db -------------------------------------------------------------------------------- /exploit/glassfish_directory_traversal.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/glassfish_directory_traversal.py -------------------------------------------------------------------------------- /exploit/jboss_3_4_5_6_console_unauthorized_access.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/jboss_3_4_5_6_console_unauthorized_access.py -------------------------------------------------------------------------------- /exploit/middleware_imagemagick_rce.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/middleware_imagemagick_rce.py -------------------------------------------------------------------------------- /exploit/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/exploit/readme.md -------------------------------------------------------------------------------- /pen.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pen.py -------------------------------------------------------------------------------- /pentest-tool-data/app_fingerprint.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool-data/app_fingerprint.yaml -------------------------------------------------------------------------------- /pentest-tool-data/cms_fingerprint.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool-data/cms_fingerprint.yaml -------------------------------------------------------------------------------- /pentest-tool-data/java_webconsole.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool-data/java_webconsole.yaml -------------------------------------------------------------------------------- /pentest-tool-data/mail_servers.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool-data/mail_servers.yaml -------------------------------------------------------------------------------- /pentest-tool-data/port_mapping.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool-data/port_mapping.yaml -------------------------------------------------------------------------------- /pentest-tool-data/search_engine.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool-data/search_engine.yaml -------------------------------------------------------------------------------- /pentest-tool-data/subdomain_small.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool-data/subdomain_small.txt -------------------------------------------------------------------------------- /pentest-tool-data/toplevel.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool-data/toplevel.txt -------------------------------------------------------------------------------- /pentest-tool-data/uri_brute.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool-data/uri_brute.yaml -------------------------------------------------------------------------------- /pentest-tool-data/user-agents.yaml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool-data/user-agents.yaml -------------------------------------------------------------------------------- /pentest-tool/MANIFEST.in: -------------------------------------------------------------------------------- 1 | -------------------------------------------------------------------------------- /pentest-tool/pentest/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/__init__.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/__init__.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/__init__.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/cms.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/cms.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/coder.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/coder.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/commons.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/commons.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/dnsparse.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/dnsparse.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/exploit.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/exploit.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/orm.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/orm.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/password.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/password.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/payload.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/payload.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/searchengine.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/searchengine.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/service.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/service.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/subnet.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/subnet.py -------------------------------------------------------------------------------- /pentest-tool/pentest/libs/uribrute.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/libs/uribrute.py -------------------------------------------------------------------------------- /pentest-tool/pentest/mail.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/mail.py -------------------------------------------------------------------------------- /pentest-tool/pentest/penfuncs.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/penfuncs.py -------------------------------------------------------------------------------- /pentest-tool/pentest/wordlist.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/pentest/wordlist.py -------------------------------------------------------------------------------- /pentest-tool/requirements.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/requirements.txt -------------------------------------------------------------------------------- /pentest-tool/setup.py: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/pentest-tool/setup.py -------------------------------------------------------------------------------- /user-password/password/password.db: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/user-password/password/password.db -------------------------------------------------------------------------------- /user-password/password/password_foreign_1000.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/user-password/password/password_foreign_1000.txt -------------------------------------------------------------------------------- /user-password/password/password_top_1000.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/user-password/password/password_top_1000.txt -------------------------------------------------------------------------------- /user-password/password/password_top_10000.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/user-password/password/password_top_10000.txt -------------------------------------------------------------------------------- /user-password/password/password_top_3000.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/user-password/password/password_top_3000.txt -------------------------------------------------------------------------------- /user-password/password/user_defines.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/user-password/password/user_defines.txt -------------------------------------------------------------------------------- /user-password/user/my.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/user-password/user/my.txt -------------------------------------------------------------------------------- /user-password/user/top500_user.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/user-password/user/top500_user.txt -------------------------------------------------------------------------------- /user-password/user/top500姓名组合.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/user-password/user/top500姓名组合.txt -------------------------------------------------------------------------------- /webshell/asp asp.net/Antak-powershell.aspx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/Antak-powershell.aspx -------------------------------------------------------------------------------- /webshell/asp asp.net/WebAdmin2.x.aspx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/WebAdmin2.x.aspx -------------------------------------------------------------------------------- /webshell/asp asp.net/aspminishell.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/aspminishell.txt -------------------------------------------------------------------------------- /webshell/asp asp.net/aspxspy2014_asp_c.aspx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/aspxspy2014_asp_c.aspx -------------------------------------------------------------------------------- /webshell/asp asp.net/aspxspy_asp_c.aspx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/aspxspy_asp_c.aspx -------------------------------------------------------------------------------- /webshell/asp asp.net/cmdexec_asp_c.aspx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/cmdexec_asp_c.aspx -------------------------------------------------------------------------------- /webshell/asp asp.net/dEvilzShell.aspx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/dEvilzShell.aspx -------------------------------------------------------------------------------- /webshell/asp asp.net/keywords.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/keywords.txt -------------------------------------------------------------------------------- /webshell/asp asp.net/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/readme.md -------------------------------------------------------------------------------- /webshell/asp asp.net/suffix.txt: -------------------------------------------------------------------------------- 1 | asp 2 | aspx 3 | asa 4 | cer 5 | cdx -------------------------------------------------------------------------------- /webshell/asp asp.net/一句话.aspx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/一句话.aspx -------------------------------------------------------------------------------- /webshell/asp asp.net/凝聚科技大马.aspx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/凝聚科技大马.aspx -------------------------------------------------------------------------------- /webshell/asp asp.net/文件上传.aspx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/文件上传.aspx -------------------------------------------------------------------------------- /webshell/asp asp.net/某大马.aspx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/某大马.aspx -------------------------------------------------------------------------------- /webshell/asp asp.net/梦幻剑客大马.aspx: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/asp asp.net/梦幻剑客大马.aspx -------------------------------------------------------------------------------- /webshell/java/Caidao.java: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/Caidao.java -------------------------------------------------------------------------------- /webshell/java/brower.jsp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/brower.jsp -------------------------------------------------------------------------------- /webshell/java/cmd.jsp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/cmd.jsp -------------------------------------------------------------------------------- /webshell/java/jfolder.jsp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/jfolder.jsp -------------------------------------------------------------------------------- /webshell/java/jspWebshel1.2.jsp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/jspWebshel1.2.jsp -------------------------------------------------------------------------------- /webshell/java/jspspy.jsp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/jspspy.jsp -------------------------------------------------------------------------------- /webshell/java/oneserv.war: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/oneserv.war -------------------------------------------------------------------------------- /webshell/java/oneword.war: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/oneword.war -------------------------------------------------------------------------------- /webshell/java/pwnshell.jsp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/pwnshell.jsp -------------------------------------------------------------------------------- /webshell/java/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/readme.md -------------------------------------------------------------------------------- /webshell/java/shellframe/WEB-INF/web.xml: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/shellframe/WEB-INF/web.xml -------------------------------------------------------------------------------- /webshell/java/suffix.txt: -------------------------------------------------------------------------------- 1 | jsp 2 | jspx 3 | war 4 | jar -------------------------------------------------------------------------------- /webshell/java/upfile_small.jsp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/upfile_small.jsp -------------------------------------------------------------------------------- /webshell/java/岁月联盟.jsp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/岁月联盟.jsp -------------------------------------------------------------------------------- /webshell/java/幻影旅团大马.jsp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/幻影旅团大马.jsp -------------------------------------------------------------------------------- /webshell/java/文件上传.jsp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/文件上传.jsp -------------------------------------------------------------------------------- /webshell/java/菜刀一句话.jsp: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/java/菜刀一句话.jsp -------------------------------------------------------------------------------- /webshell/php/MetalSoft.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/MetalSoft.php -------------------------------------------------------------------------------- /webshell/php/Mexican.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/Mexican.php -------------------------------------------------------------------------------- /webshell/php/PoisonShell.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/PoisonShell.php -------------------------------------------------------------------------------- /webshell/php/cihshell.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/cihshell.php -------------------------------------------------------------------------------- /webshell/php/iTSecTeam.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/iTSecTeam.php -------------------------------------------------------------------------------- /webshell/php/keywords.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/keywords.txt -------------------------------------------------------------------------------- /webshell/php/readme.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/readme.md -------------------------------------------------------------------------------- /webshell/php/suffix.txt: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/suffix.txt -------------------------------------------------------------------------------- /webshell/php/tef.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/tef.php -------------------------------------------------------------------------------- /webshell/php/一句话.md: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/一句话.md -------------------------------------------------------------------------------- /webshell/php/免杀php大马.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/免杀php大马.php -------------------------------------------------------------------------------- /webshell/php/在线exp专用免杀版.php: -------------------------------------------------------------------------------- https://raw.githubusercontent.com/alpha1e0/pentestdb/HEAD/webshell/php/在线exp专用免杀版.php --------------------------------------------------------------------------------