nibiwodong
nibiwodong
The defect may already be reported! Please search for the defect before creating one. ### Current Behavior: amqp-client use three licenses: MPL2.0 Apache 2.0 GPL2.0 https://github.com/rabbitmq/rabbitmq-java-client/blob/main/LICENSE  ### Steps to...
Hi, bro I use https://github.com/vulhub/vulhub/tree/master/struts2/s2-053 to check Struts2-RCE plugin, however can not be found. Is there something wrong for s2-053?
Why not detect (a+)+ ``` Welcome to Regexploit. Enter your regexes: (a+)+ No ReDoS found. ```
RiskAssessmentFramework Call SonarQube API, get the result and then display. Does the scan ability depends on SonarQube?
从hunter的架构看,比较容易接入更多的扫描器。 中通的另一个项目https://github.com/ztosec/secscan-authcheck,就是测越权的。 请问是否有计划把secscan-authcheck的能力赋给hunter的呢?
 如上图所示,在hunter管理后台创建一个任务,任务名称超出了20位。 在chrome插件进行任务同步,点击保存,提示任务名称长度不能超过20位。 这里存在对长度要求不一致的问题。
提个小建议,是否可以把扫描的URL列表展示出来,这样可以让测试人员再次审查URL,好处是: 1、对扫描的是否完整,直观呈现 2、人工审查URL,可能会发现其他漏洞 3、URL全集下载下来,可以输出到其他工具,进行扫描。
### Nuclei Version: ### Template file: https://github.com/projectdiscovery/nuclei-templates/blob/master/cves/2021/CVE-2021-22205.yaml This PoC detect application-xxx.cssfile,to indentify gitlab version. This may not a right way. https://github.com/0xa-saline/gitlab-version/blob/main/README.MD Like gitlab ce 13.10.1/13.10.2/13.10.3/13.10.4/13.10.5 viersion, the css file is...
``` def table_exists(message): if ('is not mapped' in message): return False else: return True ``` The method of checking table exists is check if 'is not mapped' string in response....