ThinkPHP vulnerability exploitation tool

stay Github Search for useful security tools on , To enrich the arsenal , It's a great pleasure .

When you see ThinkPHP Tips for grinding a sword in ten years , Then the tools shared here today can come in handy , One click detection ThinkPHP Full version vulnerability .

01、TPscan

Onekey ThinkPHP Vulnerability detection , be based on Python3, Command line detection , Integrated 14 A common ThinkPHP Framework vulnerability detection plug-in .

github Project address ：

https://github.com/Lucifer1993/TPscan

function py, Enter the specified destination address , The vulnerability detected is prompted as follows ：

02、Aazhen-V3.1

Support ThinkPHP 2.x RCE,Thinkphp5 5.0.22/5.1.29RCE,ThinkPHP5 5.0.23RCE and ThinkPHP5 SQL Vulnerability detection of injection vulnerabilities and sensitive information disclosure vulnerabilities , And the function of command execution . Loophole POC Basically applicable ThinkPHP Full version vulnerability .

github Project address ：

https://github.com/zangcc/Aazhen-v3.1

Input url Link to achieve one click detection , Examples of vulnerability detection are as follows ：

03、ThinkPHPGUI

Thinkphp(GUI) Exploit tools , Support each version TP Vulnerability detection , Command execution ,getshell, Support batch detection of multiple version vulnerabilities , The overall detection effect is still in line with expectations .

github Project address ：

https://github.com/Lotus6/ThinkphpGUI

Input url Or import target site , Examples of vulnerability detection are as follows ：