ffadd / JNDIKitLinks
JNDI/LDAP注入利用工具,对命令进行两种编码,支持多种绕过高版本JDK的方式(参考大佬代码造的轮子)
☆44Updated 4 years ago
Alternatives and similar repositories for JNDIKit
Users that are interested in JNDIKit are comparing it to the libraries listed below
Sorting:
- ☆17Updated 3 years ago
- 窃取当前用户的ssh,sudo密码☆69Updated 2 years ago
- Java 内存马生成插件☆54Updated 2 years ago
- Redis primary/secondary replication RCE☆43Updated 3 years ago
- 利用shiro反序列化注入冰蝎内存马☆37Updated 4 years ago
- 多组件客户端☆73Updated 9 months ago
- 通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩,可以做一些破解、加密验证的绕过等操作☆115Updated last year
- Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小☆66Updated last year
- 汇编HTTP请求发送/Assembly Http Request☆55Updated last year
- 无影脚 - 命令行下的日志文件处理工具☆52Updated 3 years ago
- docker运行cs4.7server端☆39Updated 3 years ago
- Java Agent memory horse scanner combined with Call Graph modus☆65Updated 3 years ago
- 如何将Java反序列化Payload极致缩小☆68Updated 4 years ago
- 一个基于DNS隧道的简单C2☆61Updated 3 years ago
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆108Updated 5 years ago
- Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势☆15Updated 4 years ago
- Nacos JRaft Hessian 反序列化 RCE EXP☆65Updated 2 years ago
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆87Updated 3 years ago
- ☆122Updated 2 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆91Updated 3 years ago
- A list for Spring Security☆127Updated 2 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆72Updated 2 months ago
- 该项目是通过go语言实现防止rmi利用被反置的问题。☆44Updated 4 years ago
- 解密DBeaver数据库软件保存的密码☆30Updated 2 years ago
- portreuse reuseport 端口复用☆61Updated 2 years ago
- Apache Dubbo漏洞测试Demo及其POC☆65Updated 2 years ago
- WebSocket 内存马/Webshell,一种新型内存马/WebShell技术☆22Updated 2 years ago
- 一键出网探测工具☆73Updated 2 years ago
- ☆55Updated 4 years ago
- 密码收集☆58Updated 3 years ago