9.6. 漏洞利用

• SQLMap

9.6.2. 非结构化数据库注入

• NoSQLMap

9.6.3. 数据库漏洞利用

9.6.4. XSS

• XSS Reciver
• XSStrike
• tracy

9.6.5. SSRF

• SSRFmap
• Gopherus

9.6.6. 模版注入

9.6.7. 命令注入

• LFISuite

9.6.9. struts

9.6.10. CMS

• Drupal enumeration & exploitation tool
• TPscan 一键ThinkPHP漏洞检测

9.6.11. DNS相关漏洞

• dnsAutoRebinding
• Subdomain TakeOver
• JudasDNS Nameserver DNS poisoning

9.6.12. DNS数据提取

• DNSExfiltrator
• dns exfiltration by coryschwartz

9.6.13. DNS 隧道

• iodine

9.6.14. XXE

• XXER

• JRE8u20 RCE Gadget
• gadgetinspector A byte code analyzer for finding deserialization gadget chains in Java applications

9.6.16. 端口Hack

• Oracle Database Attacking Tool
• nmap nse scripts

9.6.17. JWT

9.6.18. 无线

9.6.19. 中间人攻击

• MITMf
• injectify
• Responder is a LLMNR, NBT-NS and MDNS poisoner, with built-in HTTP/SMB/MSSQL/FTP/LDAP rogue authentication server supporting NTLMv1/NTLMv2/LMv2, Extended Security NTLMSSP and Basic HTTP authentication.

9.6.20. DHCP

9.6.21. DDoS