bkfish/Awesome_shiro external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

bkfish/Awesome_shiro

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/bkfish/Awesome_shiro)

Close

bkfish / Awesome_shiroView on GitHubMore

• External links
• Readme badge

CVE-2016-4437-Shiro反序列化爆破模块和key,命令执行，反弹shell的脚本

☆55Jun 27, 2020Updated 5 years ago

Alternatives and similar repositories for Awesome_shiro

Users that are interested in Awesome_shiro are comparing it to the libraries listed below

• bo1349 / Thinkcmf_RCE

  View on GitHub
  an exploit tool for Thinkcmf RCE vulnerable
  ☆14Feb 5, 2020Updated 6 years ago
• admintony / shiro_rememberMe_Rce

  View on GitHub
  利用长亭xray高级版的回显Gadget重写的一个shiro反序列化利用工具。
  ☆123Jul 27, 2020Updated 5 years ago
• TryGOTry / des.hex-encodefile

  View on GitHub
  Golang:采用随机deskey和hex进行文件加密，常用于加密shellcode.
  ☆14May 16, 2021Updated 4 years ago
• z1un / TongdaOA-exp

  View on GitHub
  TongdaOA 11.7 ~11.8 通达OA，任意用户登录+后台getshell
  ☆86Jul 16, 2021Updated 4 years ago
• zhzyker / shiro-1.2.4-rce

  View on GitHub
  shiro <= 1.2.4 反序列化远程命令执行利用脚本
  ☆52Jun 21, 2021Updated 4 years ago
• hkxueqi / YonyouNc-UNSERIALIZE-scan

  View on GitHub
  Yonyou-UNSERIALIZE,用友NC 反序列化检查工具,批量检测用友NC 反序列化
  ☆50Jul 21, 2023Updated 2 years ago
• godzeo / shiro_cb_memshell

  View on GitHub
  使用shiro无CC依赖的CB1直接写入冰蝎马 支持tomcat、spring
  ☆35Mar 11, 2023Updated 3 years ago
• z1Ro0 / tomcat_nofile_webshell

  View on GitHub
  Tomcat基于动态注册Filter的无文件Webshell
  ☆26Jun 20, 2020Updated 5 years ago
• Ares-X / shiro-exploit

  View on GitHub
  Shiro反序列化利用工具，支持新版本(AES-GCM)Shiro的key爆破，配合ysoserial，生成回显Payload
  ☆896May 28, 2021Updated 4 years ago
• mi1k7ea / M7-03

  View on GitHub
  个人使用的一款Web CMS指纹扫描器
  ☆25Aug 4, 2020Updated 5 years ago
• b1ank1108 / bypassAV

  View on GitHub
  破产版免杀
  ☆52Oct 2, 2021Updated 4 years ago
• jas502n / SweetPotato-webshell

  View on GitHub
  SweetPotato修改版，用于webshell下执行命令
  ☆13Nov 22, 2020Updated 5 years ago
• ph4ntonn / inject_und3ad

  View on GitHub
  👻inject_und3ad -- 蚁剑(AntSword)插件
  ☆24Aug 8, 2019Updated 6 years ago
• weiwhy / seeyon2021

  View on GitHub
  seeyonAjaxGetshell,致远OA ajax.jsp未授权文件上传漏洞，java版POC，自定义shell
  ☆20Jan 14, 2021Updated 5 years ago
• fumengze / rad_xray

  View on GitHub
  基于radium爬虫编写的批量任务处理脚本，使用进程池
  ☆13Aug 20, 2020Updated 5 years ago
• Wh0ale / SHIRO_Rememberme_decode

  View on GitHub
  Apache Shiro payload AES解密
  ☆28Mar 11, 2021Updated 5 years ago
• rabbitmask / SB-Actuator

  View on GitHub
  Spring Boot Actuator未授权访问【XXE、RCE】单/多目标检测
  ☆521May 21, 2020Updated 5 years ago
• sie504 / Struts-S2-xxx

  View on GitHub
  整理收集Struts2漏洞环境
  ☆270Jan 9, 2018Updated 8 years ago
• fupinglee / ShiroScan

  View on GitHub
  Shiro RememberMe 1.2.4 反序列化漏洞图形化检测工具(Shiro-550)
  ☆878Dec 16, 2022Updated 3 years ago
• y1ng1996 / Burp_Suite_Doc_zh_cn

  View on GitHub
  ☆22Sep 26, 2017Updated 8 years ago
• CrackerCat / sigFile

  View on GitHub
  微软签名缺陷利用，老技术
  ☆18Aug 10, 2021Updated 4 years ago
• SummerSec / SpringExploit

  View on GitHub
  🚀 一款为了学习go而诞生的漏洞利用工具
  ☆450Jun 14, 2022Updated 3 years ago
• rabbitmask / RCoder

  View on GitHub
  基于渗透需求的万能编码器，随需求增加持续维护
  ☆17Feb 17, 2021Updated 5 years ago
• c0ny1 / HTTPHeadModifer

  View on GitHub
  一款快速修改HTTP数据包头的Burp Suite插件
  ☆254Oct 10, 2018Updated 7 years ago
• jas502n / SMS4_Decrypt

  View on GitHub
  SMS4 Decrypt
  ☆11Dec 23, 2020Updated 5 years ago
• feihong-cs / ShiroExploit-Deprecated

  View on GitHub
  Shiro550/Shiro721 一键化利用工具，支持多种回显方式
  ☆1,953Jun 4, 2021Updated 4 years ago
• Veraxy00 / Shiro-EXP

  View on GitHub
  Apache Shiro 反序列化漏洞检测与利用工具，一键注入内存马
  ☆138Jan 20, 2021Updated 5 years ago
• fengwenhua / CNVD-2021-26058

  View on GitHub
  亿赛通电子文档安全管理系统-rce-exp
  ☆32Jun 18, 2023Updated 2 years ago
• yumusb / Yapi_Rce

  View on GitHub
  Yapi RCE漏洞批量验证与伪交互SHELL
  ☆42Jul 9, 2021Updated 4 years ago
• kezibei / yongyou_nc_poc

  View on GitHub
  ☆117Sep 13, 2023Updated 2 years ago
• xiaoZ-hc / Vulnerability-Repository

  View on GitHub
  日常积累，用以保存学习或比赛中遇到的漏洞复现文件，会有一些基本的说明文件
  ☆18Apr 24, 2021Updated 4 years ago
• waytai / cloudsafe

  View on GitHub
  cloudsafe 云安全扫描
  ☆23Dec 30, 2013Updated 12 years ago
• Wh0ale / Nexus_Repository_Manager3_Vulnerabilities

  View on GitHub
  Nexus Repository Manager3 - 远程执行代码漏洞回显payload
  ☆13Sep 29, 2020Updated 5 years ago
• trysec / AZScanner

  View on GitHub
  自动漏洞扫描器，自动子域名爆破，自动爬取注入，调用sqlmapapi检测注入，端口扫描，目录爆破，子网段服务探测及其端口扫描，常用框架漏洞检测。 Automatic scanner, automatic sub domain blasting, automatic craw…
  ☆16Dec 5, 2016Updated 9 years ago
• JE2Se / VayneScan

  View on GitHub
  常用漏洞一键化自动扫描，解决平时渗透测试中的重复工作~
  ☆101Dec 2, 2019Updated 6 years ago
• arno567 / ShiroScanF

  View on GitHub
  shiro反序列化批量ip快速检测脚本
  ☆77Jul 23, 2020Updated 5 years ago
• bigsizeme / CVE-2018-2893

  View on GitHub
  反弹shell生成器
  ☆17Jul 23, 2018Updated 7 years ago
• guguyu1 / tomcat_password

  View on GitHub
  tomcat 图形化弱口令爆破 也可以作为401认证爆破
  ☆14Mar 5, 2021Updated 5 years ago
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,014May 21, 2024Updated last year