Alternatives and similar repositories for Ghostcat-CNVD-2020-10487

Users that are interested in Ghostcat-CNVD-2020-10487 are comparing it to the libraries listed below

• YDHCUI / CNVD-2020-10487-Tomcat-Ajp-lfi

  View on GitHub
  Tomcat-Ajp协议文件读取漏洞
  ☆795Mar 3, 2020Updated 5 years ago
• hypn0s / AJPy

  View on GitHub
  ☆476Sep 6, 2023Updated 2 years ago
• zcgonvh / CVE-2020-0688

  View on GitHub
  Exploit and detect tools for CVE-2020-0688
  ☆356Mar 21, 2020Updated 5 years ago
• Y4er / CVE-2020-2551

  View on GitHub
  Weblogic IIOP CVE-2020-2551
  ☆340Apr 7, 2020Updated 5 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• n0b0dyCN / redis-rogue-server

  View on GitHub
  Redis(<=5.0.5) RCE
  ☆1,136Sep 24, 2023Updated 2 years ago
• LandGrey / ClassHound

  View on GitHub
  利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
  ☆711May 10, 2021Updated 4 years ago
• ropnop / kerbrute

  View on GitHub
  A tool to perform Kerberos pre-auth bruteforcing
  ☆3,246Aug 20, 2024Updated last year
• tarunkant / Gopherus

  View on GitHub
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆3,296Apr 18, 2023Updated 2 years ago
• quentinhardy / odat

  View on GitHub
  ODAT: Oracle Database Attacking Tool
  ☆1,740Jul 27, 2024Updated last year
• mbechler / marshalsec

  View on GitHub
  ☆3,659Jan 9, 2025Updated last year
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,010May 21, 2024Updated last year
• danigargu / CVE-2020-0796

  View on GitHub
  CVE-2020-0796 - Windows SMBv3 LPE exploit #SMBGhost
  ☆1,348Dec 7, 2020Updated 5 years ago
• gloxec / CrossC2

  View on GitHub
  generate CobaltStrike's cross-platform payload
  ☆2,540Nov 20, 2023Updated 2 years ago
• cube0x0 / noPac

  View on GitHub
  CVE-2021-42287/CVE-2021-42278 Scanner & Exploiter.
  ☆1,397Dec 16, 2021Updated 4 years ago
• CCob / SweetPotato

  View on GitHub
  Local Service to SYSTEM privilege escalation from Windows 7 to Windows 10 / Server 2019
  ☆1,808Sep 4, 2024Updated last year
• cube0x0 / CVE-2021-1675

  View on GitHub
  C# and Impacket implementation of PrintNightmare CVE-2021-1675/CVE-2021-34527
  ☆1,962Jul 20, 2021Updated 4 years ago
• antonioCoco / RoguePotato

  View on GitHub
  Another Windows Local Privilege Escalation from Service Account to System
  ☆1,149Jan 9, 2021Updated 5 years ago
• L-codes / Neo-reGeorg

  View on GitHub
  Neo-reGeorg is a project that seeks to aggressively refactor reGeorg
  ☆3,309Jan 4, 2026Updated last month
• frohoff / ysoserial

  View on GitHub
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆8,741Dec 4, 2025Updated 2 months ago
• GhostPack / Rubeus

  View on GitHub
  Trying to tame the three-headed dog.
  ☆4,883Nov 14, 2025Updated 3 months ago
• chompie1337 / SMBGhost_RCE_PoC

  View on GitHub
  ☆1,376Jul 2, 2020Updated 5 years ago
• ohpe / juicy-potato

  View on GitHub
  A sugared version of RottenPotatoNG, with a bit of juice, i.e. another Local Privilege Escalation tool, from a Windows Service Accounts t…
  ☆2,729Dec 18, 2021Updated 4 years ago
• uknowsec / SharpSQLTools

  View on GitHub
  SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。
  ☆965Aug 5, 2021Updated 4 years ago
• pwntester / ysoserial.net

  View on GitHub
  Deserialization payload generator for a variety of .NET formatters
  ☆3,672Dec 23, 2024Updated last year
• jas502n / CVE-2020-14882

  View on GitHub
  CVE-2020–14882、CVE-2020–14883
  ☆290Nov 16, 2020Updated 5 years ago
• SafeGroceryStore / MDUT

  View on GitHub
  MDUT - Multiple Database Utilization Tools
  ☆2,189Sep 22, 2023Updated 2 years ago
• amaz1ngday / fastjson-exp

  View on GitHub
  fastjson利用，支持tomcat、spring回显，哥斯拉内存马；回显利用链为dhcp、ibatis、c3p0。
  ☆324Mar 15, 2022Updated 3 years ago
• DeEpinGh0st / Erebus

  View on GitHub
  CobaltStrike后渗透测试插件
  ☆1,554Oct 28, 2021Updated 4 years ago
• Ridter / noPac

  View on GitHub
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆973Jan 29, 2023Updated 3 years ago
• c0ny1 / FastjsonExploit

  View on GitHub
  Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
  ☆1,388Dec 16, 2022Updated 3 years ago
• Ridter / redis-rce

  View on GitHub
  Redis 4.x/5.x RCE
  ☆975Nov 30, 2021Updated 4 years ago
• dirkjanm / BloodHound.py

  View on GitHub
  A Python based ingestor for BloodHound
  ☆2,335Oct 24, 2025Updated 3 months ago
• fnmsd / MySQL_Fake_Server

  View on GitHub
  MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
  ☆1,359Nov 18, 2021Updated 4 years ago
• wyzxxz / aksk_tool

  View on GitHub
  AK资源管理工具，阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret，利用AK获取资源信息和操作资源，ECS/CVM/E2/UHOST/ECI/BCC执行命令，OSS/COS/S3/BOS…
  ☆778Feb 13, 2025Updated last year
• zhzyker / exphub

  View on GitHub
  Exphub[漏洞利用脚本库] 包括Webloigc、Struts2、Tomcat、Nexus、Solr、Jboss、Drupal的漏洞利用脚本，最新添加CVE-2020-14882、CVE-2020-11444、CVE-2020-10204、CVE-2020-10199、…
  ☆4,274Apr 4, 2021Updated 4 years ago
• gquere / pwn_jenkins

  View on GitHub
  Notes about attacking Jenkins servers
  ☆2,090Jul 10, 2024Updated last year
• ambionics / phpggc

  View on GitHub
  PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
  ☆3,736Sep 29, 2025Updated 4 months ago
• uknowsec / SweetPotato

  View on GitHub
  Modifying SweetPotato to support load shellcode and webshell
  ☆788Jun 2, 2021Updated 4 years ago