A tool for detect&exploit vmware product log4j(cve-2021-44228) vulnerability.Support VMware HCX/vCenter/NSX/Horizon/vRealize Operations Manager
☆209Jan 24, 2022Updated 4 years ago
Alternatives and similar repositories for Vm4J
Users that are interested in Vm4J are comparing it to the libraries listed below
Sorting:
- 提取DC日志,快速获取域用户对应IP地址☆308Mar 21, 2022Updated 3 years ago
- vhost password decrypt☆262Oct 9, 2024Updated last year
- 一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webs…☆1,467Apr 25, 2024Updated last year
- Exchange 服务器安全性的辅助测试工具☆331Jul 21, 2023Updated 2 years ago
- Go实现部分Rubeus功能,可执行asktgt, asktgs, s4u, describe ticket, renew ticket, asreproast等☆142May 5, 2022Updated 3 years ago
- A tool to extract the IdP cert from vCenter backups and log in as Administrator☆527Sep 1, 2023Updated 2 years ago
- 域控安全one for all☆736Sep 9, 2024Updated last year
- RPC远程主机信息匿名扫描工具☆317Sep 30, 2022Updated 3 years ago
- 帆软/致远密码解密工具☆360Jul 29, 2021Updated 4 years ago
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆230Aug 8, 2023Updated 2 years ago
- Xshell全版本密码恢复工具☆928Jun 8, 2023Updated 2 years ago
- 一款可以在不出网的环境下进行反向代理及cs上线的工具☆491Apr 26, 2023Updated 2 years ago
- rmi打内存马工具,适用于目标用不了ldap的情况☆254Jul 12, 2023Updated 2 years ago
- 内存加载shellcode绕过waf☆209Jul 25, 2022Updated 3 years ago
- 改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能☆279Nov 28, 2023Updated 2 years ago
- Yet another SharpSphere☆227Aug 1, 2021Updated 4 years ago
- DBeaver数据库密码解密工具☆200Nov 29, 2023Updated 2 years ago
- ☆342Jun 7, 2022Updated 3 years ago
- Redis-Attack By Replication (通过主从复制攻击Redis)☆356Nov 25, 2022Updated 3 years ago
- CobaltStrike4.4 一键部署脚本 随机生成密码、key、端口号、证书等,解决cs4.x无法运行在Linux上报错问题 灰常银杏化设计☆286Mar 19, 2022Updated 3 years ago
- DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名 产品(fuzz.red),Alphalog与传统DNSLog不同,更快、更安全。☆456Aug 20, 2025Updated 6 months ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- 使用多种WinAPI进行权限维持的CobaltStrike脚本,包含API设置系统服务,设置计划任务,管理用户等。☆556Jan 18, 2022Updated 4 years ago
- SharpSQLTools 和@Rcoil一起写的小工具,可上传下载文件,xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。☆964Aug 5, 2021Updated 4 years ago
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆779Feb 13, 2025Updated last year
- 域内普通域用户权限查找域内所有计算机上登录的用户☆151Apr 20, 2023Updated 2 years ago
- 注入JVM进程 动态获取目标进程连接的数据库☆342Mar 6, 2022Updated 3 years ago
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入☆770Jan 26, 2022Updated 4 years ago
- 各种数据库的利用姿势☆1,033Jan 3, 2025Updated last year
- netspy是一款快速探测内网可达网段工具(深信服深蓝实验室天威战队强力驱动)☆2,203Jul 25, 2023Updated 2 years ago
- Confluence CVE 2021,2022,2023 利用工具,支持命令执行,哥斯拉,冰蝎 内存马注入☆554Feb 1, 2024Updated 2 years ago
- 域内自动化信息搜集利用工具☆468Oct 24, 2023Updated 2 years ago
- Nacos JRaft Hessian 反序列化 RCE 加载字节码 注入内存马 不出网利用☆848Jul 7, 2023Updated 2 years ago
- Java内存马注入工具☆252Apr 8, 2023Updated 2 years ago
- 备份文件扫描,并自动进行下载☆130Jul 26, 2023Updated 2 years ago
- 收集内存马打入方式☆506May 20, 2022Updated 3 years ago
- 利用oss实现http转发/cobalt strike上线☆371Nov 26, 2022Updated 3 years ago
- Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency☆1,050Oct 7, 2022Updated 3 years ago
- 修改frp支持域前置与配置文件自删除☆397Dec 31, 2020Updated 5 years ago