ffadd / JNDIKitLinks
JNDI/LDAP注入利用工具,对命令进行两种编码,支持多种绕过高版本JDK的方式(参考大佬代码造的轮子)
☆44Updated 3 years ago
Alternatives and similar repositories for JNDIKit
Users that are interested in JNDIKit are comparing it to the libraries listed below
Sorting:
- 窃取当前用户的ssh,sudo密码☆69Updated 2 years ago
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆89Updated 3 years ago
- 利用shiro反序列化注入冰蝎内存马☆35Updated 3 years ago
- 该项目是通过go语言实现防止rmi利用被反置的问题。☆44Updated 3 years ago
- Redis primary/secondary replication RCE☆44Updated 3 years ago
- Java Agent memory horse scanner combined with Call Graph modus☆62Updated 2 years ago
- 多组件客户端☆73Updated 2 months ago
- Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势☆15Updated 3 years ago
- Apache Dubbo漏洞测试Demo及其POC☆61Updated 2 years ago
- ☆14Updated 2 years ago
- Java 内存马生成插件☆53Updated 2 years ago
- 通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩,可以做一些破解、加密验证的绕过等操作☆114Updated last year
- YApi boolean-based injection exploit.☆58Updated 2 years ago
- Spring Cloud Gateway Actuator API SpEL表达式注入命令执行(CVE-2022-22947) 注入哥斯拉内存马☆53Updated 3 years ago
- 蓝凌OA的前后台密码的加解密工具☆95Updated 4 years ago
- detect gitlab detail version☆54Updated 10 months ago
- SpringBoot获取被星号脱敏的密码的明文☆58Updated 3 years ago
- 一键出网探测工具☆73Updated 2 years ago
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆108Updated 4 years ago
- Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小☆66Updated last year
- A mininal go http client for security testing☆48Updated 5 months ago
- portreuse reuseport 端口复用☆62Updated last year
- 无影脚 - 命令行下的日志文件处理工具☆51Updated 2 years ago
- 解密DBeaver数据库软件保存的密码☆30Updated last year
- 内存马持久化☆59Updated 3 years ago
- hyscan HengGe Team☆68Updated 3 years ago
- 汇编HTTP请求发送/Assembly Http Request☆49Updated 6 months ago
- ☆47Updated 3 years ago
- 域控 学习+攻击大纲☆67Updated 5 years ago
- ☆69Updated 4 years ago