Redis 4.x/5.x RCE
☆572Dec 6, 2020Updated 5 years ago
Alternatives and similar repositories for redis-rogue-server
Users that are interested in redis-rogue-server are comparing it to the libraries listed below
Sorting:
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,011May 21, 2024Updated last year
- A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.☆755Dec 2, 2022Updated 3 years ago
- SharpSQLTools 和@Rcoil一起写的小工具,可上传下载文件,xp_cmdshell与sp_oacreate执行命令回显和clr�加载程序集执行相应操作。☆964Aug 5, 2021Updated 4 years ago
- MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize☆1,361Nov 18, 2021Updated 4 years ago
- Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)☆1,389Dec 16, 2022Updated 3 years ago
- MDUT - Multiple Database Utilization Tools☆2,191Sep 22, 2023Updated 2 years ago
- 通过 Redis 主从写出无损文件☆718May 25, 2020Updated 5 years ago
- (周瑜)Java - SpringBoot 持久化 WebShell(不仅仅是SpringBoot,适合任何符合JavaEE规范的服务)☆615Dec 29, 2021Updated 4 years ago
- Redis(<=5.0.5) RCE☆1,139Sep 24, 2023Updated 2 years ago
- Bypass firewall for traffic forwarding using webshell☆1,430Sep 29, 2021Updated 4 years ago
- Redis 4.x/5.x RCE☆975Nov 30, 2021Updated 4 years ago
- 一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webs…☆1,467Apr 25, 2024Updated last year
- Fastjson姿势技巧集合☆1,829Oct 20, 2023Updated 2 years ago
- CobaltStrike后渗透测试插件☆1,555Oct 28, 2021Updated 4 years ago
- Burp suite 分块传输辅助插件☆2,023Feb 23, 2022Updated 4 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- shiro反序列化漏洞综合利用,包含(回显执行命令/注入内存马)修复原版中NoCC的问题 https://github.com/j1anFen/shiro_attack☆2,386Apr 10, 2024Updated last year
- Java RCE 回显测试代码☆1,015Oct 15, 2020Updated 5 years ago
- Neo-reGeorg is a project that seeks to aggressively refactor reGeorg☆3,317Jan 4, 2026Updated 2 months ago
- sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆715Aug 3, 2021Updated 4 years ago
- 对密码已保存在 Windwos 系统上的部分程序进行解析,包括:Navicat,TeamViewer,FileZilla,WinSCP,Xmangager系列产品(Xshell,Xftp)。源码:https://github.com/RowTeam/SharpDecrypt…☆1,260Mar 16, 2022Updated 3 years ago
- 修改frp支持域前置与配置文件自删除☆397Dec 31, 2020Updated 5 years ago
- WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell☆535Aug 25, 2020Updated 5 years ago
- Shiro550/Shiro721 一键化利用工具,支持多种回显方式☆1,952Jun 4, 2021Updated 4 years ago
- A helpful Java Deserialization exploit framework.☆1,239Feb 17, 2025Updated last year
- 红队作战中�比较常遇到的一些重点系统漏洞整理。☆2,521Jul 17, 2021Updated 4 years ago
- 一款可以在不出网的环境下进行反向代理及cs上线的工具☆491Apr 26, 2023Updated 2 years ago
- netspy是一款快速探测内网可达网段工具(深信服深蓝实验室天威战队强力驱动)☆2,203Jul 25, 2023Updated 2 years ago
- 中国蚁剑后渗透框架☆939Jan 18, 2024Updated 2 years ago
- 利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码☆711May 10, 2021Updated 4 years ago
- 用于记录内网渗透(域渗透)学习 :-)☆1,236Nov 9, 2020Updated 5 years ago
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧��☆754Apr 14, 2021Updated 4 years ago
- 阿里云ECS、策略组辅助小工具☆881Mar 2, 2023Updated 3 years ago
- 增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持☆967Jun 16, 2024Updated last year
- 这是一个抓取浏览器密码的工具,后续会添加更多功能☆1,455May 21, 2022Updated 3 years ago
- A Bypass Anti-virus Software Lateral Movement Command Execution Tool☆1,464Jan 20, 2025Updated last year
- Shiro反序列化利用工具,支持新版本(AES-GCM)Shiro的key爆破,配合ysoserial,生成回显Payload☆896May 28, 2021Updated 4 years ago
- 纯 Java 实现的 MySQL Fake Server | 支持 GUI 版和命令行版 | 支持反序列化和文件读取的利用方式 | 支持常见的 GADGET 和自定义 GADGET 数据 | 根据目标环境自动生成匹配的 PAYLOAD | 支持 PGSQL 和 DERBY …☆824Sep 18, 2023Updated 2 years ago
- HeapDump敏感信息提取工具☆1,631Dec 15, 2025Updated 2 months ago