Alternatives and similar repositories for YApi-Exploit

Users that are interested in YApi-Exploit are comparing it to the libraries listed below

• Firebasky / GoRmi
  该项目是通过go语言实现防止rmi利用被反置的问题。
  ☆44Updated 3 years ago
• XTeam-Wing / gitlab-version
  detect gitlab detail version
  ☆55Updated last year
• SummerSec / BlogPapers
  <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…
  ☆54Updated this week
• knightswd / NoPacScan
  NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script
  ☆88Updated 3 years ago
• ic3s3137 / sssthief
  窃取当前用户的ssh，sudo密码
  ☆69Updated 2 years ago
• 0linlin0 / Java
  java
  ☆54Updated 2 years ago
• She11Way / eval2term
  连接eval一句话webshell，获得可交互的虚拟终端
  ☆97Updated 3 years ago
• w4iting4 / FindIcmpP
  解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具
  ☆31Updated 3 years ago
• Esonhugh / yapi-rce-webshell
  Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小
  ☆66Updated last year
• turn1tup / JvmRaspBypass
  ☆16Updated 3 years ago
• Ciyfly / sucker
  对任意http网站添加指定漏洞 目前实现部分漏洞的追加 支持本身http服务 支持反向代理追加
  ☆28Updated 3 years ago
• zyylhn / redis_rce
  Redis primary/secondary replication RCE
  ☆43Updated 3 years ago
• Y4tacker / CobaltStrike4.7ServerDocker
  docker运行cs4.7server端
  ☆39Updated 3 years ago
• yumusb / Yapi_Rce
  Yapi RCE漏洞批量验证与伪交互SHELL
  ☆42Updated 4 years ago
• woodpecker-appstore / EchoToFileConverter
  Windows & linux Echo to file command converter
  ☆25Updated 4 years ago
• emo-crab / shiro-exploit
  apache-shiro-exploit
  ☆31Updated 2 years ago
• emo-crab / ysoserial-rs
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆69Updated 2 years ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆54Updated 2 years ago
• bitterzzZZ / CVE-2021-43297-POC
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Updated 3 years ago
• lishang520 / CVE-2022-24990
  CVE-2022-24990信息泄露+RCE 一条龙
  ☆39Updated 3 years ago
• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆48Updated 3 years ago
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆70Updated last month
• achuna33 / FuckMemshell
  内存马持久化
  ☆59Updated 3 years ago
• ffadd / JNDIKit
  JNDI/LDAP注入利用工具，对命令进行两种编码，支持多种绕过高版本JDK的方式（参考大佬代码造的轮子）
  ☆44Updated 3 years ago
• tangxiaofeng7 / JavaLearning
  Learning JAVA for Security
  ☆31Updated 3 years ago
• zha0gongz1 / Pentest_MindMap
  个人翻译/总结渗透测试思维导图
  ☆29Updated 3 years ago
• wuppp / releaseBehinderShell
  卸载冰蝎内存马
  ☆68Updated 4 years ago
• r00tSe7en / ShadowlessFeet
  无影脚 - 命令行下的日志文件处理工具
  ☆52Updated 3 years ago
• ssrsec / SpringBootEnvDecrypt
  SpringBoot获取被星号脱敏的密码的明文
  ☆58Updated 3 years ago
• jas502n / GitlabVer
  gitlab version index
  ☆64Updated 4 years ago