OneSourceCat/XxlJob-Hessian-RCE

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/OneSourceCat/XxlJob-Hessian-RCE)

OneSourceCat / XxlJob-Hessian-RCE

XxlJob<=2.1.2配置不当情况下反序列化RCE

☆120

Alternatives and similar repositories for XxlJob-Hessian-RCE

Users that are interested in XxlJob-Hessian-RCE are comparing it to the libraries listed below

Sorting:

Wileysec / nacos_derby_rce
View on GitHub
Nacos Derby命令执行漏洞利用脚本
☆150Apr 7, 2025Updated 11 months ago
Drun1baby / FineReportExploit
View on GitHub
帆软报表漏洞检测工具
☆114Jun 10, 2025Updated 9 months ago
BambiZombie / FrchannelPlus
View on GitHub
帆软bi反序列化漏洞利用工具
☆190Mar 23, 2024Updated last year
Hutt0n0 / ActiveMqRCE
View on GitHub
用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用内存马注入
☆288Nov 20, 2023Updated 2 years ago
qi4L / QVD-2023-13065
View on GitHub
Nacos JRaft Hessian 反序列化 RCE EXP
☆65Jun 13, 2023Updated 2 years ago
ahisec / geoserver-
View on GitHub
geoserver CVE-2024-36401漏洞利用工具
☆41Jul 24, 2024Updated last year
netuseradministrator / Geoserver_gui_exp
View on GitHub
Geoserver综合利用工具
☆113Jan 7, 2026Updated 2 months ago
Conan924 / NacosExploit
View on GitHub
NacosExploit 命令执行内存马等利用
☆215Jul 18, 2024Updated last year
jas502n / xxl-job
View on GitHub
xxl-job RESTful API RCE
☆74Jul 1, 2021Updated 4 years ago
yuxianzi / FrchannelPlus
View on GitHub
帆软bi反序列化漏洞利用工具
☆56Jun 4, 2024Updated last year
suizhibo / MemShellGene
View on GitHub
一款Java内存马生成、测试工具，搭配@ax1sX的MemShell食用。
☆262Feb 15, 2026Updated last month
exp1orer / JNDI-Inject-Exploit
View on GitHub
解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
☆770Jan 26, 2022Updated 4 years ago
r00t4dm / aLIEz
View on GitHub
☆197Sep 26, 2024Updated last year
7wkajk / Frchannel
View on GitHub
帆软bi反序列化漏洞利用工具
☆416Jan 25, 2025Updated last year
luelueking / RuoYi-v4.7.8-RCE-POC
View on GitHub
☆250Feb 25, 2024Updated 2 years ago
a1phaboy / nacosleak
View on GitHub
一键获取nacos中的配置文件信息和绘制密码本
☆121Jun 28, 2024Updated last year
Bl0omZ / JNDIEXP
View on GitHub
JNDI在java高版本的利用工具,FUZZ利用链
☆597Oct 8, 2022Updated 3 years ago
keven1z / weblogic_memshell
View on GitHub
适用于weblogic和Tomcat的无文件的内存马(memshell)
☆270Mar 4, 2022Updated 4 years ago
amaz1ngday / fastjson-exp
View on GitHub
fastjson利用，支持tomcat、spring回显，哥斯拉内存马；回显利用链为dhcp、ibatis、c3p0。
☆327Mar 15, 2022Updated 4 years ago
bcvgh / daydayExp-pocs
View on GitHub
daydayExp的漏洞POC仓库，慢慢更新...
☆371Nov 4, 2024Updated last year
bcvgh / Kingdee_erp_MemShell
View on GitHub
金蝶星空云反序列化漏洞内存马
☆52Mar 27, 2024Updated last year
Adminxe / FileHunter
View on GitHub
钓鱼上线后渗透工具
☆131Feb 19, 2023Updated 3 years ago
geekmc / FindShell
View on GitHub
内存马查杀工具，尤其针对Agent型，原理是dump出JVM当前的class并进行字节码分析，并加入自动修复的功能
☆179May 10, 2023Updated 2 years ago
tarihub / blackjump
View on GitHub
JumpServer 堡垒机未授权综合漏洞利用, Exploit for CVE-2023-42442 / CVE-2023-42820 / RCE 2021
☆273Jun 6, 2025Updated 9 months ago
ad-calcium / CVE-2023-22515
View on GitHub
Confluence未授权添加管理员用户(CVE-2023-22515)漏洞利用工具
☆111Oct 16, 2023Updated 2 years ago
0xf4n9x / CDGXStreamDeserRCE
View on GitHub
亿赛通电子文档安全管理系统XStream反序列化漏洞任意文件上传利用
☆120Aug 9, 2024Updated last year
zhaoyumi / WeaverExploit_All
View on GitHub
泛微最近的漏洞利用工具（PS：2023）
☆481Dec 14, 2023Updated 2 years ago
passer-W / shc_bypass
View on GitHub
内存加载shellcode绕过waf
☆209Jul 25, 2022Updated 3 years ago
lightr3d / CVE-2024-21006_jar
View on GitHub
CVE-2024-21006 exp
☆17Jul 29, 2024Updated last year
kyo-w / router-router
View on GitHub
Java web路由内存分析工具
☆438May 22, 2025Updated 9 months ago
l3yx / jdwp-codeifier
View on GitHub
基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本（动态执行Java/Js代码并获得回显）
☆321Dec 22, 2024Updated last year
hkxueqi / YonyouNc-UNSERIALIZE-scan
View on GitHub
Yonyou-UNSERIALIZE,用友NC 反序列化检查工具,批量检测用友NC 反序列化
☆50Jul 21, 2023Updated 2 years ago
GrassWorkshop / wxapkg_infosearch
View on GitHub
一款微信小程序源码包信息收集工具，根据已有项目改编
☆24Feb 11, 2025Updated last year
Firebasky / ScanShiro
View on GitHub
一个批量扫描shiro漏洞的工具,支持AES/CMG
☆79Jan 18, 2023Updated 3 years ago
novysodope / fupo_for_yonyou
View on GitHub
用友漏洞检测，持续更新漏洞检测模块
☆479Jul 21, 2025Updated 7 months ago
pen4uin / java-echo-generator
View on GitHub
一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
☆461Jan 12, 2025Updated last year
0neAtSec / SharpDomainInfo
View on GitHub
根据攻防以及域信息收集经验dump快而有用的域信息
☆103Aug 15, 2023Updated 2 years ago
pap1rman / postnacos
View on GitHub
哥斯拉nacos后渗透插件 maketoken adduser
☆150Jul 7, 2023Updated 2 years ago
Afant1 / JavaSearchTools
View on GitHub
☆61Sep 21, 2020Updated 5 years ago