Imanfeng/Apache-Solr-RCE

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Imanfeng/Apache-Solr-RCE)

Imanfeng / Apache-Solr-RCE

Apache Solr Exploits 🌟

☆347

Alternatives and similar repositories for Apache-Solr-RCE

Users that are interested in Apache-Solr-RCE are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

Y4er / WebLogic-Shiro-shell
View on GitHub
WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞，一键注册蚁剑filter内存shell
☆534Aug 25, 2020Updated 5 years ago
feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,015Oct 15, 2020Updated 5 years ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,405Jan 18, 2022Updated 4 years ago
LandGrey / spring-boot-upload-file-lead-to-rce-tricks
View on GitHub
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
☆754Apr 14, 2021Updated 5 years ago
bigsizeme / fastjson-check
View on GitHub
fastjson 被动扫描、不出网payload生成
☆368Nov 19, 2021Updated 4 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
keven1z / weblogic_memshell
View on GitHub
适用于weblogic和Tomcat的无文件的内存马(memshell)
☆271Mar 4, 2022Updated 4 years ago
dr0op / WeblogicScan
View on GitHub
增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618，CVE-2019-2729检测，Python3支持
☆965Jun 16, 2024Updated last year
sf197 / GetPwd
View on GitHub
用CSharp写的一款信息搜集工具，目前支持Navicat、TeamView、Xshell、SecureCRT产品的密码解密
☆251Aug 26, 2020Updated 5 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,020May 21, 2024Updated last year
Ivan1ee / NET-Deserialize
View on GitHub
总结了20+.Net反序列化文章，持续更新
☆749Apr 3, 2024Updated 2 years ago
b0bac / GetMail
View on GitHub
利用NTLM Hash读取Exchange邮件
☆443Mar 23, 2026Updated last month
A-D-Team / attackRmi
View on GitHub
☆232Jan 3, 2022Updated 4 years ago
c0ny1 / FastjsonExploit
View on GitHub
Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
☆1,393Dec 16, 2022Updated 3 years ago
uknowsec / SharpToolsAggressor
View on GitHub
内网渗透中常用的c#程序整合成cs脚本，直接内存加载。持续更新~
☆500Feb 13, 2020Updated 6 years ago
Managed Database hosting by DigitalOcean • Ad
PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
Ch1ngg / JCE
View on GitHub
JCE - JSP/JPSX CodeEncode - 用于 Webshell 逃避静态查杀的辅助脚本
☆259Oct 29, 2021Updated 4 years ago
fnmsd / MySQL_Fake_Server
View on GitHub
MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
☆1,367Nov 18, 2021Updated 4 years ago
waderwu / attackRmi
View on GitHub
attackRmi
☆258Oct 14, 2020Updated 5 years ago
threedr3am / tomcat-cluster-session-sync-exp
View on GitHub
tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包，可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
☆213May 19, 2020Updated 5 years ago
r35tart / RedisWriteFile
View on GitHub
通过 Redis 主从写出无损文件
☆718May 25, 2020Updated 5 years ago
feihong-cs / JspMaster-Deprecated
View on GitHub
一款基于webshell命令执行功能实现的GUI webshell管理工具，支持流量加密
☆220Jun 4, 2021Updated 4 years ago
feihong-cs / ShiroExploit-Deprecated
View on GitHub
Shiro550/Shiro721 一键化利用工具，支持多种回显方式
☆1,957Jun 4, 2021Updated 4 years ago
wyzxxz / shiro_rce_tool
View on GitHub
shiro 反序列命令执行辅助检测工具
☆1,574May 21, 2024Updated last year
lengjibo / RedTeamTools
View on GitHub
记录自己编写、修改的部分工具
☆1,464Oct 19, 2025Updated 6 months ago
Managed Database hosting by DigitalOcean • Ad
PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
Y4er / CVE-2020-2883
View on GitHub
Weblogic coherence.jar RCE
☆176May 10, 2020Updated 5 years ago
threedr3am / ZhouYu
View on GitHub
（周瑜）Java - SpringBoot 持久化 WebShell（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
☆615Dec 29, 2021Updated 4 years ago
iSafeBlue / fastjson-autotype-bypass-demo
View on GitHub
fastjson 1.2.68 版本 autotype bypass
☆142Jun 17, 2022Updated 3 years ago
hktalent / CVE-2020-2551
View on GitHub
how detect CVE-2020-2551 poc exploit python Weblogic RCE with IIOP
☆211Mar 5, 2023Updated 3 years ago
r0eXpeR / redteam_vul
View on GitHub
红队作战中比较常遇到的一些重点系统漏洞整理。
☆2,520Jul 17, 2021Updated 4 years ago
lufeirider / CVE-2019-2725
View on GitHub
CVE-2019-2725 命令回显
☆435May 8, 2023Updated 2 years ago
Rvn0xsy / PassDecode-jar
View on GitHub
帆软/致远密码解密工具
☆361Jul 29, 2021Updated 4 years ago
welk1n / JNDI-Injection-Bypass
View on GitHub
Some payloads of JNDI Injection in JDK 1.8.0_191+
☆485Dec 9, 2020Updated 5 years ago
dr0op / CrossNet-Beta
View on GitHub
红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。
☆367Jun 19, 2024Updated last year
Bare Metal GPUs on DigitalOcean Gradient AI • Ad
Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
QAX-A-Team / WeblogicEnvironment
View on GitHub
Weblogic环境搭建工具
☆797Apr 23, 2020Updated 6 years ago
A-D-Team / grafanaExp
View on GitHub
A exploit tool for Grafana Unauthorized arbitrary file reading vulnerability (CVE-2021-43798), it can burst plugins / extract secret_key …
☆269Oct 17, 2025Updated 6 months ago
Ridter / redis-rce
View on GitHub
Redis 4.x/5.x RCE
☆978Nov 30, 2021Updated 4 years ago
0xn0ne / weblogicScanner
View on GitHub
weblogic 漏洞扫描工具。目前包含对以下漏洞的检测能力：CVE-2014-4210、CVE-2016-0638、CVE-2016-3510、CVE-2017-3248、CVE-2017-3506、CVE-2017-10271、CVE-2018-2628、CVE-201…
☆2,071Nov 24, 2023Updated 2 years ago
broken5 / WebAliveScan
View on GitHub
对目标域名进行快速的存活扫描、简单的指纹识别、目录扫描
☆914Dec 8, 2022Updated 3 years ago
kyo-w / router-router
View on GitHub
Java web路由内存分析工具
☆439May 22, 2025Updated 11 months ago
Ershu1 / 2021_Hvv
View on GitHub
2021 hw
☆1,204Nov 14, 2023Updated 2 years ago