☆94May 14, 2025Updated 9 months ago
Alternatives and similar repositories for JNDI-injector
Users that are interested in JNDI-injector are comparing it to the libraries listed below
Sorting:
- 这是一个基于先知社区知识构建的向量知识库☆276Mar 31, 2025Updated 11 months ago
- 无需文件落地Agent内存马生成器☆249May 30, 2024Updated last year
- 本工具的定位是快速生成Java安全相关的Payload,如内存马、反序列化链、JNDI url、Fastjson等,动态生成相关Payload,并附带相应的文档。☆93Feb 25, 2025Updated last year
- JavaGadgetGenerator 工具,支持 ysoserial,Hessian,字节码,Expr/SSTI,Shiro,JDBC 等 Gadget 生成,封装,混淆,出网延迟探测,内存马注入等...☆548Dec 7, 2025Updated 3 months ago
- ssrf_proxy☆13Jun 9, 2023Updated 2 years ago
- 【两万字原创】零基础学fastjson漏洞(提高篇),公众号:追梦信安☆211Dec 7, 2023Updated 2 years ago
- 一个基于 Vineflower 引擎的多线程 Java 批量反编译工具,支持快速处理大量的 class 文件和 JAR 文件。☆58Apr 28, 2025Updated 10 months ago
- Java漏洞分析汇合☆142Dec 14, 2021Updated 4 years ago
- Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 基于 ANTLR 实现语法分析和完整的 XRAY YAML 规则实现 | 简单…☆182Jul 10, 2025Updated 7 months ago
- ☆26Dec 13, 2024Updated last year
- 右键检测图片是否存在Exif漏洞☆31Mar 27, 2023Updated 2 years ago
- 适用于某EHR&HRM的加解密工具,可直接用于sqlmap☆25Jan 14, 2024Updated 2 years ago
- 某软最新公开gadgegt,新加入不出网利用。☆89Sep 6, 2024Updated last year
- c3p0 new gadget☆28Apr 1, 2025Updated 11 months ago
- YongYou U8C deserialization file upload exploit tool targeting IPFxxFileService and IFileTrans services☆28Sep 28, 2025Updated 5 months ago
- 禅道研发项目管理系统`misc-captcha-user`认证绕过后台命令注入漏洞☆108Apr 24, 2023Updated 2 years ago
- nuclei模版生成插件☆108Dec 19, 2023Updated 2 years ago
- CVE-2022-1388 F5 BIG-IP iControl REST RCE☆37May 9, 2022Updated 3 years ago
- 哥斯拉webshell管理工具的插件,用于连接websocket型webshell☆176Apr 17, 2024Updated last year
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆171Aug 9, 2023Updated 2 years ago
- Java web路由内存分析工具☆438May 22, 2025Updated 9 months ago
- 自学时写的适合Java安全小白用来学习Java反序列化漏洞的文章和Demo。(随懒狗的学习进度持续更新🐶)。Some articles and demos written during self-study which are suitable for Java Secu…☆11Dec 22, 2021Updated 4 years ago
- A Go library for generating Java deserialization payloads.☆155Sep 9, 2024Updated last year
- CVE-2022-22947注入哥斯拉内存马☆28Jun 21, 2023Updated 2 years ago
- 一款用于辅助渗透测试工程师日常渗透测试的Burp被动漏扫插件☆241Nov 25, 2022Updated 3 years ago
- Java Js Engine Payloads All in one☆289Aug 21, 2023Updated 2 years ago
- A powerful JNDI injection exploitation framework that supports RMI, LDAP and LDAPS protocols, including various bypass methods for high-v…☆571Feb 4, 2026Updated last month
- 利用代理驱动绕过JDBC Attack检测☆143Jun 15, 2025Updated 8 months ago
- 用友的一些反序列化链子以及1day,二开了狼组的YongYouNcTool,改了一下逻辑以及poc☆123Oct 12, 2024Updated last year
- 泛微OA_V9全版本前台任意文件上传漏洞☆29Apr 26, 2022Updated 3 years ago
- A Java Route Collection Tool☆102Aug 1, 2024Updated last year
- asp.net内存马检测工具☆283Aug 22, 2023Updated 2 years ago
- Java内存马注入工具☆252Apr 8, 2023Updated 2 years ago
- java-web 自动化鉴权绕过☆377Apr 3, 2025Updated 11 months ago
- 不那么一样的 Java Agent 内存马☆289Nov 27, 2023Updated 2 years ago
- 基于BurpShiroPassiveScan修改增加了Xray回显链生成☆56Sep 6, 2022Updated 3 years ago
- 用友漏洞综合利用工具☆263Nov 9, 2024Updated last year
- 哥斯拉nacos后渗透插件 maketoken adduser☆150Jul 7, 2023Updated 2 years ago
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆544Mar 6, 2025Updated last year