SPuerBRead/shovel external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

SPuerBRead/shovel

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/SPuerBRead/shovel)

Close

SPuerBRead / shovelView on GitHubMore

• External links
• Readme badge

Docker容器逃逸工具（Docker Escape Tools）

☆279Dec 15, 2022Updated 3 years ago

Alternatives and similar repositories for shovel

Users that are interested in shovel are comparing it to the libraries listed below

• 9bie / sshdHooker

  View on GitHub
  One-click injection into the SSHD process to record and send the password for ssh login
  ☆427Mar 12, 2024Updated last year
• Ridter / PySQLTools

  View on GitHub
  Mssql利用工具
  ☆276Aug 7, 2023Updated 2 years ago
• corener / JavaPassDump

  View on GitHub
  JavaPassDump
  ☆272Jan 7, 2022Updated 4 years ago
• wjlab / Darksteel

  View on GitHub
  域内自动化信息搜集利用工具
  ☆468Oct 24, 2023Updated 2 years ago
• Bl0omZ / JNDIEXP

  View on GitHub
  JNDI在java高版本的利用工具,FUZZ利用链
  ☆597Oct 8, 2022Updated 3 years ago
• Bywalks / K8s-Mind-Map

  View on GitHub
  K8S安全攻防思维导图 | Docker安全攻防思维导图
  ☆417Jun 22, 2022Updated 3 years ago
• novysodope / RMI_Inj_MemShell

  View on GitHub
  rmi打内存马工具，适用于目标用不了ldap的情况
  ☆254Jul 12, 2023Updated 2 years ago
• Schira4396 / VcenterKiller

  View on GitHub
  一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
  ☆1,467Apr 25, 2024Updated last year
• Rvn0xsy / PassDecode-jar

  View on GitHub
  帆软/致远密码解密工具
  ☆360Jul 29, 2021Updated 4 years ago
• exp1orer / JNDI-Inject-Exploit

  View on GitHub
  解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
  ☆770Jan 26, 2022Updated 4 years ago
• JDArmy / DCSec

  View on GitHub
  域控安全one for all
  ☆736Sep 9, 2024Updated last year
• f0ng / JavaFileDict

  View on GitHub
  Java应用的一些配置文件字典，来源于公开的字典与平时收集
  ☆321Feb 1, 2024Updated 2 years ago
• Heart-Sky / ListRDPConnections

  View on GitHub
  C# 读取本机对外RDP连接记录和其他主机对该主机的连接记录，从而在内网渗透中获取更多可通内网网段信息以及定位运维管理人员主机
  ☆431Jan 28, 2021Updated 5 years ago
• mabangde / SharpGetUserLoginIPRPC

  View on GitHub
  提取域控日志，支持远程提取
  ☆171Mar 17, 2025Updated 11 months ago
• a1phaboy / FastjsonScan

  View on GitHub
  Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
  ☆1,050Oct 7, 2022Updated 3 years ago
• lele8 / SharpUserIP

  View on GitHub
  获取服务器或域控登录日志
  ☆276Sep 8, 2023Updated 2 years ago
• UzJu / Cloud-Bucket-Leak-Detection-Tools

  View on GitHub
  六大云存储，泄露利用检测工具
  ☆1,243Mar 28, 2025Updated 11 months ago
• safe6Sec / PentestDB

  View on GitHub
  各种数据库的利用姿势
  ☆1,034Jan 3, 2025Updated last year
• pen4uin / java-echo-generator

  View on GitHub
  一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
  ☆461Jan 12, 2025Updated last year
• lzzbb / Adinfo

  View on GitHub
  域信息收集工具
  ☆412Sep 16, 2022Updated 3 years ago
• 0x727 / SchTask_0x727

  View on GitHub
  创建隐藏计划任务，权限维持，Bypass AV
  ☆558Sep 1, 2021Updated 4 years ago
• MaskCyberSecurityTeam / FinalShellGetPass

  View on GitHub
  FinalShellGetPass是一款FinalShell密码读取工具
  ☆103Nov 27, 2022Updated 3 years ago
• RowTeam / SharpExchangeKing

  View on GitHub
  Exchange 服务器安全性的辅助测试工具
  ☆332Jul 21, 2023Updated 2 years ago
• uknowsec / SharpSQLTools

  View on GitHub
  SharpSQLTools 和@Rcoil一起写的小工具，可上传下载文件，xp_cmdshell与sp_oacreate执行命令回显和clr加载程序集执行相应操作。
  ☆965Aug 5, 2021Updated 4 years ago
• Ptkatz / OrcaC2

  View on GitHub
  OrcaC2是一款基于Websocket加密通信的多功能C&C框架，使用Golang实现。
  ☆676Dec 30, 2022Updated 3 years ago
• rebeyond / JNDInjector

  View on GitHub
  一个高度可定制化的JNDI和Java反序列化利用工具
  ☆471Jan 17, 2023Updated 3 years ago
• kyo-w / router-router

  View on GitHub
  Java web路由内存分析工具
  ☆438May 22, 2025Updated 9 months ago
• 0671 / RedisModules-ExecuteCommand-for-Windows

  View on GitHub
  可在Windows下执行系统命令的Redis模块，可用于Redis主从复制攻击。
  ☆264Nov 25, 2022Updated 3 years ago
• LTianHang / ShiroUploadTools

  View on GitHub
  Shiro文件上传工具
  ☆101Jun 28, 2023Updated 2 years ago
• Hutt0n0 / ActiveMqRCE

  View on GitHub
  用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用 内存马注入
  ☆288Nov 20, 2023Updated 2 years ago
• A0WaQ4 / HexDnsEchoT

  View on GitHub
  命令执行不回显但DNS协议出网的命令回显场景解决方案（修改为使用ceye接收请求，添加自定义DNS服务器）
  ☆292Aug 20, 2023Updated 2 years ago
• achuna33 / Memoryshell-JavaALL

  View on GitHub
  收集内存马打入方式
  ☆506May 20, 2022Updated 3 years ago
• seventeenman / CallBackDump

  View on GitHub
  dump lsass进程工具
  ☆561Jul 20, 2023Updated 2 years ago
• JDArmy / SharpXDecrypt

  View on GitHub
  Xshell全版本密码恢复工具
  ☆928Jun 8, 2023Updated 2 years ago
• pen4uin / java-memshell-generator

  View on GitHub
  一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
  ☆2,157Aug 21, 2025Updated 6 months ago
• Esonhugh / yapi-rce-webshell

  View on GitHub
  Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小
  ☆66Jul 4, 2024Updated last year
• crisprss / PetitPotam

  View on GitHub
  替代PrintBug用于本地提权的新方式，主要利用MS-EFSR协议中的接口函数 借鉴了Potitpotam中对于EFSR协议的利用,实现了本地提权的一系列方式 Drawing on the use of the EFSR protocol in Potitpotam, …
  ☆149Mar 13, 2022Updated 3 years ago
• sv3nbeast / DnslogCmdEcho

  View on GitHub
  命令执行不回显但DNS协议出网的命令回显场景解决方案
  ☆277Jan 10, 2023Updated 3 years ago
• Avienma / DumpHash

  View on GitHub
  一款dump hash工具配合后渗透的利用
  ☆275Apr 21, 2023Updated 2 years ago