Lotus6/JavaGadgetGenerator external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

Lotus6/JavaGadgetGenerator

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Lotus6/JavaGadgetGenerator)

Close

Lotus6 / JavaGadgetGeneratorView on GitHubMore

• External links
• Readme badge

JavaGadgetGenerator 工具，支持 ysoserial，Hessian，字节码，Expr/SSTI，Shiro，JDBC 等 Gadget 生成，封装，混淆，出网延迟探测，内存马注入等...

☆560Apr 3, 2026Updated this week

Alternatives and similar repositories for JavaGadgetGenerator

Users that are interested in JavaGadgetGenerator are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• ReaJason / MemShellParty

  View on GitHub
  一款专注于 Java 主流 Web 中间件的内存马快速生成工具，致力于简化安全研究人员和红队成员的工作流程，提升攻防效率
  ☆1,401Mar 30, 2026Updated last week
• Lotus6 / ConfluenceMemshell

  View on GitHub
  Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎 内存马注入
  ☆557Feb 1, 2024Updated 2 years ago
• X1r0z / JNDIMap

  View on GitHub
  A powerful JNDI injection exploitation framework that supports RMI, LDAP and LDAPS protocols, including various bypass methods for high-v…
  ☆573Feb 4, 2026Updated 2 months ago
• DeEpinGh0st / MDUT-Extend-Release

  View on GitHub
  MDUT-Extend(扩展版本)
  ☆907Mar 27, 2026Updated last week
• ekkoo-z / Z-Godzilla_ekp

  View on GitHub
  哥斯拉webshell管理工具二次开发规避流量检测设备
  ☆1,059Dec 2, 2025Updated 4 months ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• pen4uin / java-memshell-generator

  View on GitHub
  一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
  ☆2,177Aug 21, 2025Updated 7 months ago
• pen4uin / java-echo-generator

  View on GitHub
  一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
  ☆462Jan 12, 2025Updated last year
• K-7H7l / Jeecg_Tools

  View on GitHub
  本工具为jeecg框架漏洞利用工具非jeecg-boot！
  ☆183Aug 13, 2024Updated last year
• wh1t3zer / SpringBootVul-GUI

  View on GitHub
  一个半自动化springboot打点工具，内置目前springboot所有漏洞
  ☆779Sep 30, 2025Updated 6 months ago
• vulhub / java-chains

  View on GitHub
  Java Vulnerability Exploitation Platform
  ☆2,027Updated this week
• 7wkajk / Frchannel

  View on GitHub
  帆软bi反序列化漏洞利用工具
  ☆418Jan 25, 2025Updated last year
• suizhibo / MemShellGene

  View on GitHub
  一款Java内存马生成、测试工具，搭配@ax1sX的MemShell食用。
  ☆263Feb 15, 2026Updated last month
• Whoopsunix / JavaRce

  View on GitHub
  Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
  ☆546Mar 6, 2025Updated last year
• lemono0 / FastJsonParty

  View on GitHub
  FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本)，主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用
  ☆1,195Jul 12, 2024Updated last year
• NordVPN Special Discount Offer • Ad
  Save on top-rated NordVPN 1 or 2-year plans with secure browsing, privacy protection, and support for for all major platforms.
• Zjackky / CodeScan

  View on GitHub
  一款轻量级匹配Sink点的代码审计扫描器，为了帮助红队过程中快速代码审计的小工具
  ☆409Oct 6, 2024Updated last year
• TheBeastofwar / JenkinsExploit-GUI

  View on GitHub
  一款Jenkins的综合漏洞利用工具
  ☆464Mar 20, 2024Updated 2 years ago
• KimJun1010 / inspector

  View on GitHub
  IDEA代码审计辅助插件（深信服深蓝实验室天威战队强力驱动）
  ☆583Mar 10, 2025Updated last year
• sma11new / Pyke-Shiro

  View on GitHub
  复杂请求下的Shiro反序列化利用工具
  ☆422Mar 12, 2024Updated 2 years ago
• xiaogang000 / XG_NTAI

  View on GitHub
  用于Webshell木马免杀、流量加密传输，多多支持star
  ☆1,041Jun 27, 2025Updated 9 months ago
• BambiZombie / FrchannelPlus

  View on GitHub
  帆软bi反序列化漏洞利用工具
  ☆192Mar 23, 2024Updated 2 years ago
• Phelaine / SinkFinder

  View on GitHub
  闭源系统半自动漏洞挖掘工具，针对 jar/war/zip 进行静态代码分析，输出从source到sink的可达路径。LLM将验证路径可达性，并根据上下文给出该路径可信分数
  ☆509Jan 12, 2026Updated 2 months ago
• Chanzi-keji / chanzi

  View on GitHub
  "chanzi" is a simple and user-friendly JAVA SAST tool that utilizes taint analysis technology, includes built-in common vulnerability ru…
  ☆484Feb 1, 2026Updated 2 months ago
• Hutt0n0 / ActiveMqRCE

  View on GitHub
  用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用 内存马注入
  ☆288Nov 20, 2023Updated 2 years ago
• Wordpress hosting with auto-scaling on Cloudways • Ad
  Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
• wgpsec / lc

  View on GitHub
  LC（List Cloud）是一个多云攻击面资产梳理工具
  ☆639Oct 6, 2024Updated last year
• bmth666 / Yongyou-Unserialize-plus

  View on GitHub
  用友的一些反序列化链子以及1day，二开了狼组的YongYouNcTool，改了一下逻辑以及poc
  ☆125Oct 12, 2024Updated last year
• wa1ki0g / NoAuth

  View on GitHub
  java-web 自动化鉴权绕过
  ☆380Apr 3, 2025Updated last year
• c0olw / NacosRce

  View on GitHub
  Nacos JRaft Hessian 反序列化 RCE 加载字节码 注入内存马 不出网利用
  ☆848Jul 7, 2023Updated 2 years ago
• wafinfo / DecryptTools

  View on GitHub
  DecryptTools-综合解密
  ☆1,315Mar 2, 2025Updated last year
• veo / vagent

  View on GitHub
  多功能 java agent 内存马
  ☆517Oct 8, 2023Updated 2 years ago
• RuoJi6 / xxl-job-FLM

  View on GitHub
  xxl-job内存马
  ☆229Jan 26, 2025Updated last year
• Schira4396 / VcenterKiller

  View on GitHub
  一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
  ☆1,473Apr 25, 2024Updated last year
• Bl0omZ / JNDIEXP

  View on GitHub
  JNDI在java高版本的利用工具,FUZZ利用链
  ☆599Oct 8, 2022Updated 3 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• 0xchang / DockerApiRCE

  View on GitHub
  DockerApiRCE
  ☆236Oct 22, 2024Updated last year
• co01cat / SqlmapXPlus

  View on GitHub
  sqlmap Xplus 基于 sqlmap，对经典的数据库注入漏洞利用工具进行二开！
  ☆712Jan 21, 2025Updated last year
• MInggongK / jeecg-

  View on GitHub
  jeecg综合漏洞利用工具
  ☆433Aug 30, 2024Updated last year
• cseroad / Exp-Tools

  View on GitHub
  一款集成高危漏洞exp的实用性工具
  ☆1,297Nov 6, 2024Updated last year
• SpringKill-team / CodeAuditAssistant

  View on GitHub
  🔍 CodeAuditAssistant - JetBrains Code Audit Plugin (Beta) ⚡ Deep Call-Chain Tracking | 🚀 Method/Class Search | 🔥 Prebuilt Vuln Sink…
  ☆784Mar 14, 2026Updated 3 weeks ago
• yulate / jdbc-tricks

  View on GitHub
  《深入JDBC安全：特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…
  ☆575Feb 7, 2026Updated 2 months ago
• wjlin0 / riverPass

  View on GitHub
  riverPass 是一个用Go编写的瑞数WAF绕过工具。它利用了WebSocket协议，将请求发送的自身浏览器中，从而绕过了瑞数WAF的检测。
  ☆234Oct 18, 2024Updated last year