Alternatives and similar repositories for ShiroVulnEnv

Users that are interested in ShiroVulnEnv are comparing it to the libraries listed below

• KpLi0rn / ysoserial
  在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆68Updated 4 years ago
• 8ypass / weblogicExploit
  weblogic历史漏洞利用工具
  ☆91Updated 3 years ago
• Lotus6 / FileMonitor
  Java命令行文件监控小工具(代码审计)
  ☆103Updated 3 years ago
• ce-automne / FastjsonPatrol
  一款探测fastjson漏洞的BurpSuite插件
  ☆61Updated 3 years ago
• coffeehb / Spring4Shell
  一个Spring4Shell 被动式检测的Burp插件
  ☆94Updated 3 years ago
• rabbitmask / DruidCrack
  Druid 密文解密工具
  ☆136Updated 4 years ago
• cckuailong / YarnRpcRCE
  ☆82Updated 3 years ago
• Bin4xin / bigger-than-bigger
  Expolit Lists. 相关集合💥💥💥 ;) 用友NC反序列化/ CTF/ Java Deserialization/Shiro Vulns/ CNVD or CVE Vulns/ Log4j2/ Hikvision-decrypter...✨✨✨
  ☆68Updated 2 weeks ago
• bigsizeme / Log4j-check
  log4J burp被扫插件、CVE-2021-44228、支持dnclog.cn和burp内置DNS、可配合JNDIExploit生成payload
  ☆70Updated 3 years ago
• R17a-17 / JavaVulnSummary
  Java漏洞分析汇合
  ☆142Updated 3 years ago
• woodpecker-appstore / springboot-vuldb
  ☆70Updated 4 years ago
• passer-W / snakeyaml-memshell
  springboot跨线程注入内存马
  ☆122Updated 3 years ago
• GuoKerS / Charset_encoding-Burp
  利用字符集编码绕过waf的burpsuite插件
  ☆124Updated 4 years ago
• zhutougg / LandrayDES
  蓝凌OA的前后台密码的加解密工具
  ☆95Updated 4 years ago
• r00tuser111 / SerializationDumper-Shiro
  基于SerializationDumper的Shiro Cookie序列化数据解密小工具
  ☆53Updated 5 years ago
• Wrin9 / weaverOA_sql_RCE
  泛微OA_V9全版本的SQL远程代码执行漏洞
  ☆157Updated 3 years ago
• mrknow001 / xxl-job-rce
  xxl-job未授权命令执行
  ☆112Updated 3 years ago
• Un1kTeam / Un1kFiles
  适用于burpsuite渗透工具的多类型恶意文件代码、漏洞测试payload、脚本代码快速获取复制的在线辅助插件。
  ☆65Updated 3 years ago
• OneSourceCat / XxlJob-Hessian-RCE
  XxlJob<=2.1.2配置不当情况下反序列化RCE
  ☆111Updated 4 years ago
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆67Updated 2 years ago
• tangxiaofeng7 / Spring-Cloud-Function-Spel
  Spring Cloud Function Spel命令执行漏洞
  ☆38Updated 3 years ago
• webraybtl / ysoserialbtl
  基于ysoserial扩展命令执行结果回显，生成冰蝎内存马
  ☆91Updated 2 years ago
• Firebasky / ScanShiro
  一个批量扫描shiro漏洞的工具,支持AES/CMG
  ☆79Updated 2 years ago
• SecNN / SpringFramework_CVE-2022-22965_RCE
  SpringFramework 远程代码执行漏洞CVE-2022-22965
  ☆74Updated 3 years ago
• safe6Sec / ThinkPHPLogScan
  tp日志泄露扫描工具
  ☆86Updated 3 months ago
• achuna33 / MYJNDIExploit
  自己的JNDI 利用工具，添加一些人性化功能
  ☆131Updated 3 years ago
• xiaopan233 / GenerateNoHard
  本工具的定位是快速生成Java安全相关的Payload，如内存马、反序列化链、JNDI url、Fastjson等，动态生成相关Payload，并附带相应的文档。
  ☆93Updated 8 months ago
• turn1tup / JspEncounter
  ☆122Updated 2 years ago
• Lonely-night / fastjsonVul
  fastjson 80 远程代码执行漏洞复现
  ☆197Updated 3 years ago
• hosch3n / FastjsonVulns
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆91Updated 3 years ago