Alternatives and similar repositories for YApi-Exploit

Users that are interested in YApi-Exploit are comparing it to the libraries listed below

• knightswd / NoPacScan
  NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script
  ☆88Updated 3 years ago
• XTeam-Wing / gitlab-version
  detect gitlab detail version
  ☆55Updated last year
• She11Way / eval2term
  连接eval一句话webshell，获得可交互的虚拟终端
  ☆97Updated 3 years ago
• turn1tup / JvmRaspBypass
  ☆17Updated 3 years ago
• Esonhugh / yapi-rce-webshell
  Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小
  ☆66Updated last year
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆54Updated 2 years ago
• Firebasky / GoRmi
  该项目是通过go语言实现防止rmi利用被反置的问题。
  ☆44Updated 3 years ago
• SummerSec / BlogPapers
  <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…
  ☆54Updated this week
• zyylhn / redis_rce
  Redis primary/secondary replication RCE
  ☆43Updated 3 years ago
• bitterzzZZ / CVE-2021-43297-POC
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Updated 3 years ago
• woodpecker-appstore / EchoToFileConverter
  Windows & linux Echo to file command converter
  ☆25Updated 4 years ago
• emo-crab / ysoserial-rs
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆69Updated 2 years ago
• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆49Updated 3 years ago
• ic3s3137 / sssthief
  窃取当前用户的ssh，sudo密码
  ☆69Updated 2 years ago
• Ciyfly / sucker
  对任意http网站添加指定漏洞 目前实现部分漏洞的追加 支持本身http服务 支持反向代理追加
  ☆28Updated 3 years ago
• 0linlin0 / Java
  java
  ☆54Updated 2 years ago
• ffadd / JNDIKit
  JNDI/LDAP注入利用工具，对命令进行两种编码，支持多种绕过高版本JDK的方式（参考大佬代码造的轮子）
  ☆44Updated 4 years ago
• 0xrumble / BytecodeScreen
  ☆50Updated 3 years ago
• emo-crab / shiro-exploit
  apache-shiro-exploit
  ☆31Updated 2 years ago
• yumusb / Yapi_Rce
  Yapi RCE漏洞批量验证与伪交互SHELL
  ☆42Updated 4 years ago
• TonyD0g / JSPHunter
  基于污点分析和模拟栈帧技术的JSP Webshell检测
  ☆48Updated 2 months ago
• pupil857 / Solr-Exploit
  CNVD-2023-27598
  ☆18Updated 2 years ago
• sf197 / MemoryShellHunter
  Java Agent memory horse scanner combined with Call Graph modus
  ☆65Updated 3 years ago
• AlphabugX / nopen
  NOPEN Tool 又名“morerats” 莫雷斯特，是方程式工具包里的工具。
  ☆46Updated 3 years ago
• SummerSec / LookupInterface
  CodeQL 寻找 JNDI利用 Lookup接口
  ☆164Updated 3 years ago
• ax1sX / SpringSecurity
  A list for Spring Security
  ☆125Updated last year
• ShangRui-hash / bucket-takeover-lab
  子域名接管的几种变体靶场
  ☆23Updated last year
• whami-root / SSLShell
  ☆24Updated 11 months ago
• xiecat / wsm
  webshell manager libraries | 网站管理工具
  ☆148Updated 3 years ago
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆72Updated last month