feihong-cs/memShell

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/feihong-cs/memShell)

feihong-cs / memShell

FilterBased/ServletBased in memory shell for Tomcat and some other middlewares

☆384

Alternatives and similar repositories for memShell

Users that are interested in memShell are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,017Oct 15, 2020Updated 5 years ago
su18 / MemoryShell
View on GitHub
JavaWeb MemoryShell Inject/Scan/Killer/Protect Research & Exploring
☆655Jun 25, 2021Updated 4 years ago
bitterzzZZ / MemoryShellLearn
View on GitHub
分享几个直接可用的内存马，记录一下学习过程中看过的文章
☆981Mar 23, 2022Updated 4 years ago
threedr3am / ZhouYu
View on GitHub
（周瑜）Java - SpringBoot 持久化 WebShell（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
☆615Dec 29, 2021Updated 4 years ago
c0ny1 / java-object-searcher
View on GitHub
java内存对象搜索辅助工具
☆823Sep 23, 2022Updated 3 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
keven1z / weblogic_memshell
View on GitHub
适用于weblogic和Tomcat的无文件的内存马(memshell)
☆271Mar 4, 2022Updated 4 years ago
wh1t3p1g / ysomap
View on GitHub
A helpful Java Deserialization exploit framework.
☆1,244Feb 17, 2025Updated last year
A-D-Team / SharpMemshell
View on GitHub
Memshell
☆295Dec 7, 2021Updated 4 years ago
veo / wsMemShell
View on GitHub
WebSocket 内存马/Webshell，一种新型内存马/WebShell技术
☆1,493Apr 10, 2023Updated 2 years ago
BeichenDream / GodzillaMemoryShellProject
View on GitHub
☆310Feb 27, 2025Updated last year
rebeyond / memShell
View on GitHub
a webshell resides in the memory of java web server
☆701Jun 26, 2018Updated 7 years ago
Y4er / WebLogic-Shiro-shell
View on GitHub
WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞，一键注册蚁剑filter内存shell
☆534Aug 25, 2020Updated 5 years ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,406Jan 18, 2022Updated 4 years ago
su18 / JDBC-Attack
View on GitHub
JDBC Connection URL Attack
☆443Sep 10, 2021Updated 4 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
LandGrey / spring-boot-upload-file-lead-to-rce-tricks
View on GitHub
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
☆754Apr 14, 2021Updated 4 years ago
pen4uin / java-memshell-generator
View on GitHub
一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
☆2,177Aug 21, 2025Updated 7 months ago
MountCloud / BehinderClientSource
View on GitHub
❄️冰蝎客户端源码-V4.0.6🔞
☆942Jul 8, 2025Updated 9 months ago
achuna33 / Memoryshell-JavaALL
View on GitHub
收集内存马打入方式
☆508May 20, 2022Updated 3 years ago
safe6Sec / Fastjson
View on GitHub
Fastjson姿势技巧集合
☆1,837Oct 20, 2023Updated 2 years ago
jweny / MemShellDemo
View on GitHub
内存马Demo合集 memshell demo for java / php / python
☆425May 31, 2021Updated 4 years ago
iceyhexman / flask_memory_shell
View on GitHub
Flask 内存马
☆314Mar 26, 2021Updated 5 years ago
LandGrey / ClassHound
View on GitHub
利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
☆713May 10, 2021Updated 4 years ago
Y4er / dotnet-deserialization
View on GitHub
dotnet 反序列化学习笔记
☆516Oct 19, 2023Updated 2 years ago
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
fnmsd / MySQL_Fake_Server
View on GitHub
MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
☆1,365Nov 18, 2021Updated 4 years ago
BeichenDream / Kcon2021Code
View on GitHub
☆276Oct 28, 2021Updated 4 years ago
exp1orer / JNDI-Inject-Exploit
View on GitHub
解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
☆775Jan 26, 2022Updated 4 years ago
woodpecker-framework / woodpecker-framework-release
View on GitHub
高危漏洞精准检测与深度利用框架
☆1,459Jan 8, 2023Updated 3 years ago
Ppsoft1991 / CodeReviewTools
View on GitHub
通过正则搜索、批量反编译特定Jar包中的class名称
☆321Dec 9, 2021Updated 4 years ago
ce-automne / TomcatMemShell
View on GitHub
拿来即用的Tomcat7/8/9/10版本Listener/Filter/Servlet内存马，支持注入CMD内存马和冰蝎内存马
☆514Aug 31, 2022Updated 3 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,016May 21, 2024Updated last year
woodpecker-framework / ysoserial-for-woodpecker
View on GitHub
给woodpecker框架量身定制的ysoserial
☆616Oct 26, 2022Updated 3 years ago
waderwu / attackRmi
View on GitHub
attackRmi
☆258Oct 14, 2020Updated 5 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
tabby-sec / tabby
View on GitHub
A CAT called tabby ( Code Analysis Tool )
☆1,642Jan 17, 2026Updated 2 months ago
QAX-A-Team / WeblogicEnvironment
View on GitHub
Weblogic环境搭建工具
☆796Apr 23, 2020Updated 5 years ago
LeadroyaL / fastjson-blacklist
View on GitHub
☆836Jun 7, 2022Updated 3 years ago
pen4uin / java-echo-generator
View on GitHub
一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
☆462Jan 12, 2025Updated last year
A-D-Team / attackRmi
View on GitHub
☆232Jan 3, 2022Updated 4 years ago
mai1zhi2 / SharpBeacon
View on GitHub
CobaltStrike Beacon written in .Net 4 用.net重写了stager及Beacon，其中包括正常上线、文件管理、进程管理、令牌管理、结合SysCall进行注入、原生端口转发、关ETW等一系列功能
☆730Sep 1, 2021Updated 4 years ago
threedr3am / ysoserial
View on GitHub
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。
☆214Jan 17, 2022Updated 4 years ago