Mechoy/jarVuln

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/Mechoy/jarVuln)

Mechoy / jarVuln

一些jar包相关的漏洞

☆26

Alternatives and similar repositories for jarVuln

Users that are interested in jarVuln are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

XinCaoZ / RouteVulScanPlus
View on GitHub
基于RouteVulScan插件的小更新，添加了路由过滤功能和修复一些小bug
☆14Sep 9, 2024Updated last year
Arcueld / RPC-schtasks
View on GitHub
通过RPC创建计划任务
☆32May 18, 2025Updated last year
prepar-z / inspectorz
View on GitHub
Java 代码审计 idea 插件
☆26Mar 8, 2025Updated last year
feiweiliang / PomEye
View on GitHub
一款根据pom.xml获取引用的第三方组件的版本号并识别组件漏洞的工具
☆23May 17, 2023Updated 3 years ago
GHSmaster / JavaSecurity
View on GitHub
Java代码审计学习笔记
☆13Dec 20, 2024Updated last year
Simple, predictable pricing with DigitalOcean hosting • Ad
Always know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
Lotus6 / JavaGadgetGenerator
View on GitHub
JavaGadgetGenerator 工具，支持 ysoserial，Hessian，字节码，Expr/SSTI，Shiro，JDBC 等 Gadget 生成，封装，混淆，出网延迟探测，内存马注入等...
☆570Apr 3, 2026Updated 2 months ago
cwkiller / JDBC-PROXY-Bypass
View on GitHub
利用代理驱动绕过JDBC Attack检测
☆145Jun 15, 2025Updated last year
bmth666 / Yongyou-Unserialize-plus
View on GitHub
用友的一些反序列化链子以及1day，二开了狼组的YongYouNcTool，改了一下逻辑以及poc
☆131Oct 12, 2024Updated last year
Veraxy00 / SecVulList-Veraxy00
View on GitHub
发布一些我发现的漏洞以及利用脚本。
☆15Jun 29, 2023Updated 2 years ago
ReaJason / MemShellParty
View on GitHub
一款专注于 Java 主流 Web 中间件的内存马快速生成工具，致力于简化安全研究人员和红队成员的工作流程，提升攻防效率
☆1,501May 30, 2026Updated 2 weeks ago
bcvgh / Kingdee_erp_MemShell
View on GitHub
金蝶星空云反序列化漏洞内存马
☆53Mar 27, 2024Updated 2 years ago
Niiiiko / Finev10Memshell
View on GitHub
针对finereportv10反序列化接口/webroot/decision/remote/design/channel进行无回显检测并提供Godzilla memshell注入功能（部分环境缺少依赖无法成功）
☆23Oct 17, 2023Updated 2 years ago
4ra1n / java-swing-gui-stater
View on GitHub
java-swing-gui-stater | Java Swing GUI Maven 项目模板 | 简单的教程
☆63Oct 30, 2024Updated last year
ReaJason / No-One
View on GitHub
No One（无名）：Next Generation Polyglot Website Manager
☆83May 30, 2026Updated 2 weeks ago
Proton VPN Special Offer - Get 70% off • Ad
Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
Arcueld / Afrp
View on GitHub
☆16Jul 3, 2024Updated last year
mosajjal / dnsconn
View on GitHub
DNS Tunneling as net.Conn
☆16Dec 22, 2024Updated last year
qi4L / sRDI-rs
View on GitHub
Rust 重构的 sRDI
☆18Sep 9, 2024Updated last year
Chave0v0 / API-Highlighter
View on GitHub
API Highlighter 是一个用于 BurpSuite 的插件，主要用于 web 应用迭代安全测试时高亮指定的新增接口，该插件最初用 Python 编写，现重构为 Java 版本。
☆43Feb 19, 2025Updated last year
yulate / jdbc-tricks
View on GitHub
《深入JDBC安全：特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…
☆590Feb 7, 2026Updated 4 months ago
Boogipop / Netty-WebFlux-Memshell
View on GitHub
Netty/WebFlux 内存马
☆26Nov 19, 2023Updated 2 years ago
bcvgh / deserialization_payload_generator
View on GitHub
一个简易的woodpecker反序列化插件
☆45Jun 7, 2024Updated 2 years ago
unam4 / yso-mysqlpipe
View on GitHub
y4er的ysoserial修改版，加入mysql不出网pipe文件生成
☆26Mar 8, 2026Updated 3 months ago
minhangxiaohui / JavaAgentMemshell
View on GitHub
JavaAgent内存马实现、检测、修复demo
☆11Dec 7, 2022Updated 3 years ago
End-to-end encrypted email - Proton Mail • Ad
Special offer: 40% Off Yearly / 80% Off First Month. All Proton services are open source and independently audited for security.
onedays12 / Convert2Shellcode
View on GitHub
can convert EXE/DLL into position-independent shellcode
☆43Feb 1, 2026Updated 4 months ago
Bbdolt / SeeMore
View on GitHub
漏洞挖掘小工具，用于发现页面中的隐藏可点击元素
☆86Jun 4, 2025Updated last year
Ar3h / utf8-overlong-agent
View on GitHub
使用 agent 实现反序列化 utf8 overlong
☆86Apr 24, 2024Updated 2 years ago
R4gd0ll / ruoyi-4.8.0-RCE
View on GitHub
若依4.8.0后台RCE
☆27May 21, 2025Updated last year
su18 / JavaMethodExtractor
View on GitHub
Extract entire function source code based on giving line number using Javaparser
☆21Jul 15, 2025Updated 11 months ago
10cks / fofaEX
View on GitHub
FOFA EX 是一款基于fofa api（也可导入鹰图、夸克文件）实现的红队综合利用工具，可基于模板把工具作为插件进行集成，自动化进行资产探测，目前提供的插件功能如下：探活、 nuclei 模板扫描、IP反查域名、域名反查 ICP 备案、dismap 指纹扫描
☆239Jul 24, 2024Updated last year
xsshim / GzWebsocket
View on GitHub
哥斯拉webshell管理工具的插件，用于连接websocket型webshell
☆183Apr 17, 2024Updated 2 years ago
Symph0nia / Coda
View on GitHub
入侵痕迹清理/Cleaning up traces of intrusion
☆250Nov 6, 2024Updated last year
xjsafe / MimikatzBypass
View on GitHub
新免杀方向 Mimikatz（猕猴桃）免杀 360，火绒，电脑管家，WindowsDefinder，详细使用教程请参考博客：https://www.vpss.cc/381.html
☆26Mar 4, 2024Updated 2 years ago
AI Agents on DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
trickster0 / PrimitiveInjection
View on GitHub
PrimitiveInjection by using Read, Write and Allocation Primitives.
☆56Jun 21, 2025Updated 11 months ago
qncosfh / xxl_job_executor_exploit
View on GitHub
xxl_job_executor_默认Access_Token_不出网综合利用
☆40Oct 20, 2025Updated 7 months ago
howmp / wget
View on GitHub
可能是windows最小的wget (862字节)
☆70Dec 13, 2024Updated last year
RuoJi6 / xxl-job-FLM
View on GitHub
xxl-job内存马
☆233Jan 26, 2025Updated last year
wjlab / Darksteel
View on GitHub
域内自动化信息搜集利用工具
☆468Oct 24, 2023Updated 2 years ago
1ucky7 / MySQL_Fake_Server_for_woodpecker_yso
View on GitHub
MySQL_Fake_Server-啄木鸟yso适配版
☆45Sep 20, 2024Updated last year
twowb / znlinux
View on GitHub
一个神一般的linux全架构全漏洞提权程序
☆46May 5, 2025Updated last year