Alternatives and similar repositories for YApi-Exploit

Users that are interested in YApi-Exploit are comparing it to the libraries listed below

• Firebasky / GoRmi
  该项目是通过go语言实现防止rmi利用被反置的问题。
  ☆44Updated 3 years ago
• SummerSec / BlogPapers
  <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…
  ☆54Updated last week
• knightswd / NoPacScan
  NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script
  ☆89Updated 3 years ago
• She11Way / eval2term
  连接eval一句话webshell，获得可交互的虚拟终端
  ☆97Updated 3 years ago
• XTeam-Wing / gitlab-version
  detect gitlab detail version
  ☆55Updated last year
• 0xrumble / BytecodeScreen
  ☆50Updated 3 years ago
• ic3s3137 / sssthief
  窃取当前用户的ssh，sudo密码
  ☆69Updated 2 years ago
• kitezzzGrim / tongda-exp
  python编写的多个通达常见漏洞exp
  ☆38Updated 4 years ago
• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆48Updated 3 years ago
• BrucessKING / CVE-2021-36749
  Apache Druid 任意文件读取
  ☆33Updated 4 years ago
• Esonhugh / yapi-rce-webshell
  Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小
  ☆66Updated last year
• turn1tup / JvmRaspBypass
  ☆15Updated 3 years ago
• zyylhn / redis_rce
  Redis primary/secondary replication RCE
  ☆43Updated 3 years ago
• lz520520 / probelistener
  ☆33Updated 3 years ago
• Al1ex / MysqlHoneypot
  MysqlHoneypot
  ☆23Updated 3 years ago
• w4iting4 / FindIcmpP
  解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具
  ☆31Updated 3 years ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆54Updated 2 years ago
• bitterzzZZ / CVE-2021-43297-POC
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Updated 3 years ago
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆69Updated last week
• flowerwind / AutoGenerateXalanPayload
  cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具，可根据不同的Jdk生成出其所对应的xslt文件
  ☆90Updated 2 years ago
• SummerSec / LookupInterface
  CodeQL 寻找 JNDI利用 Lookup接口
  ☆163Updated 3 years ago
• lishang520 / CVE-2022-24990
  CVE-2022-24990信息泄露+RCE 一条龙
  ☆39Updated 3 years ago
• emo-crab / ysoserial-rs
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆69Updated 2 years ago
• 0linlin0 / Java
  java
  ☆54Updated 2 years ago
• sf197 / MemoryShellHunter
  Java Agent memory horse scanner combined with Call Graph modus
  ☆64Updated 2 years ago
• emo-crab / shiro-exploit
  apache-shiro-exploit
  ☆31Updated 2 years ago
• AbelChe / macos-all
  macos all, 关于macos的实用内容 不仅是macos...还有各种常用的渗透、命令行技巧
  ☆71Updated last year
• ssrsec / SpringBootEnvDecrypt
  SpringBoot获取被星号脱敏的密码的明文
  ☆58Updated 3 years ago
• Ciyfly / sucker
  对任意http网站添加指定漏洞 目前实现部分漏洞的追加 支持本身http服务 支持反向代理追加
  ☆28Updated 3 years ago
• ffadd / JNDIKit
  JNDI/LDAP注入利用工具，对命令进行两种编码，支持多种绕过高版本JDK的方式（参考大佬代码造的轮子）
  ☆44Updated 3 years ago