Alternatives and similar repositories for Spring4Shell:

Users that are interested in Spring4Shell are comparing it to the libraries listed below

• Lotus6 / FileMonitor
  Java命令行文件监控小工具(代码审计)
  ☆101Updated 3 years ago
• sv3nbeast / X-AutoXray
  AutoScan 有多个目标时，多线程调用xray+rad进行自动扫描
  ☆88Updated 2 years ago
• winezer0 / burp-wildcard-plus
  burpsuite wildcard 插件维护分支
  ☆1Updated 2 years ago
• cckuailong / YarnRpcRCE
  ☆81Updated 3 years ago
• achuna33 / MYJNDIExploit
  自己的JNDI 利用工具，添加一些人性化功能
  ☆130Updated 2 years ago
• winezer0 / springboot_scan
  支持自动化的切换请求方式、自动化的请求重试、以完整的扫描Springboot路径
  ☆3Updated 3 years ago
• webraybtl / ysoserialbtl
  基于ysoserial扩展命令执行结果回显，生成冰蝎内存马
  ☆87Updated last year
• xinxin999 / Exp-collect
  ☆29Updated 3 years ago
• NS-Sp4ce / Frp_modify
  修改版FRP
  ☆69Updated 3 years ago
• ce-automne / FastjsonPatrol
  一款探测fastjson漏洞的BurpSuite插件
  ☆61Updated 3 years ago
• bkfish / yaml-payload-for-Win
  用于windows反弹shell的yaml-payload
  ☆71Updated 3 years ago
• passer-W / snakeyaml-memshell
  springboot跨线程注入内存马
  ☆117Updated 3 years ago
• j2ekim / Security_Service_Interviews
  安服面经☞渗透测试/代码审计/安全研究
  ☆27Updated 2 years ago
• Dr-S1x17 / NoNetCmdEcho-FileW.e
  应对渗透中极限环境下命令回显 & 文件落地
  ☆132Updated 2 years ago
• GuoKerS / Charset_encoding-Burp
  利用字符集编码绕过waf的burpsuite插件
  ☆121Updated 4 years ago
• r00tSe7en / log4jScan_Modify
  对接JNDIMonitor的Burp Suite被动扫描插件
  ☆24Updated 3 years ago
• r00tuser111 / SerializationDumper-Shiro
  基于SerializationDumper的Shiro Cookie序列化数据解密小工具
  ☆52Updated 4 years ago
• Echox1 / ShiroExploit
  ☆38Updated 4 years ago
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆67Updated 2 years ago
• KpLi0rn / ysoserial
  在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆68Updated 3 years ago
• Y0-kan / Log4jShell-Scan
  log4j2 RCE漏洞（CVE-2021-44228)内网扫描器，可用于在不出网的条件下进行漏洞扫描，帮助企业内部快速发现Log4jShell漏洞。
  ☆37Updated 3 years ago
• wuppp / releaseBehinderShell
  卸载冰蝎内存马
  ☆67Updated 4 years ago
• 1oid / remotejs
  remote execute js when debugger.paused
  ☆42Updated last year
• r3change / jdwp-shellifier
  ☆37Updated 3 years ago
• cyxshizhu / OA-ezOFFICE
  ☆12Updated 3 years ago
• 8ypass / weblogicExploit
  weblogic历史漏洞利用工具
  ☆91Updated 2 years ago
• CrackerCat / YongyouNC-Unserialize-Tools
  用友NC反序列化漏洞payload生成
  ☆72Updated 2 years ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆50Updated last year
• syyu6 / WinRpcTest
  利用RPC服务，批量探测内网Windows出网情况
  ☆115Updated 3 years ago
• ghealer / G_Scan
  一个超级缝合怪的图形化渗透工具
  ☆35Updated 3 years ago