Alternatives and similar repositories for yaml-payload-for-Win

Users that are interested in yaml-payload-for-Win are comparing it to the libraries listed below

• lz2y / yaml-payload-for-ruoyi

  View on GitHub
  A memory shell for ruoyi
  ☆266Apr 28, 2023Updated 2 years ago
• BeichenDream / CVE-2022-26134-Godzilla-MEMSHELL

  View on GitHub
  ☆342Jun 7, 2022Updated 3 years ago
• Ar3h / putter

  View on GitHub
  命令执行写任意文件，主要用于命令执行但不出网情况
  ☆30Sep 9, 2023Updated 2 years ago
• Lotus6 / ConfluenceMemshell

  View on GitHub
  Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎 内存马注入
  ☆548Feb 1, 2024Updated 2 years ago
• DaYuanzhang / akawaka

  View on GitHub
  一个简单的文件内容搜索工具
  ☆88Dec 16, 2022Updated 3 years ago
• R4gd0ll / ruoyi-4.8.0-RCE

  View on GitHub
  若依4.8.0后台RCE
  ☆26May 21, 2025Updated 8 months ago
• Hutt0n0 / ActiveMqRCE

  View on GitHub
  用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用 内存马注入
  ☆288Nov 20, 2023Updated 2 years ago
• woodpecker-appstore / zip-tools

  View on GitHub
  zip slip
  ☆38Apr 7, 2023Updated 2 years ago
• artsploit / yaml-payload

  View on GitHub
  A tiny project for generating SnakeYAML deserialization payloads
  ☆628Oct 14, 2025Updated 4 months ago
• adeljck / YongYou-Exploit

  View on GitHub
  YongYou U8C deserialization file upload exploit tool targeting IPFxxFileService and IFileTrans services
  ☆28Sep 28, 2025Updated 4 months ago
• Conan924 / NacosExploit

  View on GitHub
  NacosExploit 命令执行 内存马等利用
  ☆214Jul 18, 2024Updated last year
• shmilylty / vhost_password_decrypt

  View on GitHub
  vhost password decrypt
  ☆262Oct 9, 2024Updated last year
• hkxueqi / YonyouNc-UNSERIALIZE-scan

  View on GitHub
  Yonyou-UNSERIALIZE,用友NC 反序列化检查工具,批量检测用友NC 反序列化
  ☆50Jul 21, 2023Updated 2 years ago
• sv3nbeast / DnslogCmdEcho

  View on GitHub
  命令执行不回显但DNS协议出网的命令回显场景解决方案
  ☆277Jan 10, 2023Updated 3 years ago
• p1d3er / ReuseSocks

  View on GitHub
  通过端口复用直接进行正向socks5代理（非防火墙分流）
  ☆113Dec 17, 2024Updated last year
• tangxiaofeng7 / CVE-2022-22965-Spring-Core-Rce

  View on GitHub
  批量无损检测CVE-2022-22965
  ☆41Apr 1, 2022Updated 3 years ago
• Anion3r / MSSQLProxy

  View on GitHub
  一个能够利用MSSQL的xp_cmdshell功能来进行流量代理的脚本，用于在站酷分离且不出网SQL注入进行代理
  ☆107Sep 19, 2022Updated 3 years ago
• NS-Sp4ce / Vm4J

  View on GitHub
  A tool for detect&exploit vmware product log4j(cve-2021-44228) vulnerability.Support VMware HCX/vCenter/NSX/Horizon/vRealize Operations M…
  ☆210Jan 24, 2022Updated 4 years ago
• lz520520 / probelistener

  View on GitHub
  ☆33Aug 15, 2022Updated 3 years ago
• byname66 / SerializeJava

  View on GitHub
  用Go+Fyne开发的，展示JAVA序列化流以及集成一键插入脏数据,UTF过长编码绕WAF(Utf OverLoad Encoding),修改类SerializeVersionUID功能的图形化工具。
  ☆125Jan 14, 2025Updated last year
• Schira4396 / VcenterKiller

  View on GitHub
  一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
  ☆1,464Apr 25, 2024Updated last year
• pap1rman / postnacos

  View on GitHub
  哥斯拉nacos后渗透插件 maketoken adduser
  ☆150Jul 7, 2023Updated 2 years ago
• Ares-X / shiro-exploit

  View on GitHub
  Shiro反序列化利用工具，支持新版本(AES-GCM)Shiro的key爆破，配合ysoserial，生成回显Payload
  ☆898May 28, 2021Updated 4 years ago
• zhaoyumi / yoyoExploit

  View on GitHub
  一个用友漏洞检测工具
  ☆29May 15, 2024Updated last year
• bin-maker / FireBlade

  View on GitHub
  火刃 - 轻量级的，多功能的，联合xray、物联网引擎的全自动广域队列扫描器
  ☆28Mar 7, 2022Updated 3 years ago
• whwlsfb / cve-2022-22947-godzilla-memshell

  View on GitHub
  CVE-2022-22947 注入Godzilla内存马
  ☆210Apr 26, 2022Updated 3 years ago
• pen4uin / java-echo-generator

  View on GitHub
  一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
  ☆460Jan 12, 2025Updated last year
• BeichenDream / InjectJDBC

  View on GitHub
  注入JVM进程 动态获取目标进程连接的数据库
  ☆342Mar 6, 2022Updated 3 years ago
• W01fh4cker / LearnFastjsonVulnFromZero-Improvement

  View on GitHub
  【两万字原创】零基础学fastjson漏洞（提高篇），公众号：追梦信安
  ☆211Dec 7, 2023Updated 2 years ago
• kitezzzGrim / tongda-exp

  View on GitHub
  python编写的多个通达常见漏洞exp
  ☆38Aug 26, 2021Updated 4 years ago
• bigsizeme / fastjson-check

  View on GitHub
  fastjson 被动扫描、不出网payload生成
  ☆367Nov 19, 2021Updated 4 years ago
• veo / nginx_shell

  View on GitHub
  nginx WebShell/内存马，更优雅的nignx backdoor
  ☆325Jan 4, 2024Updated 2 years ago
• dr0op / shiro-550-with-NoCC

  View on GitHub
  Shiro-550 不依赖CC链利用工具
  ☆451Jun 19, 2024Updated last year
• horizon3ai / vcenter_saml_login

  View on GitHub
  A tool to extract the IdP cert from vCenter backups and log in as Administrator
  ☆528Sep 1, 2023Updated 2 years ago
• whwlsfb / JDumpSpider

  View on GitHub
  HeapDump敏感信息提取工具
  ☆1,629Dec 15, 2025Updated last month
• yuyan-sec / RedisEXP

  View on GitHub
  Redis 漏洞利用工具
  ☆938Jan 26, 2025Updated last year
• yangliukk / FindToDeskPass

  View on GitHub
  通过Dump内存读取ToDesk设备代码、连接密码
  ☆243Sep 9, 2024Updated last year
• susuya233 / fscan-bypass

  View on GitHub
  fscan 的魔改版
  ☆13Jul 8, 2024Updated last year
• TryA9ain / noPac

  View on GitHub
  CVE-2021-42287/CVE-2021-42278 Exploiter
  ☆13Jan 12, 2023Updated 3 years ago