Alternatives and similar repositories for FuckJsonp-RCE-CVE-2022-26809-SQL-XSS-FuckJsonp

Users that are interested in FuckJsonp-RCE-CVE-2022-26809-SQL-XSS-FuckJsonp are comparing it to the libraries listed below

• veo / wsMemShell

  View on GitHub
  WebSocket 内存马/Webshell，一种新型内存马/WebShell技术
  ☆1,486Apr 10, 2023Updated 2 years ago
• wendell1224 / ide-honeypot

  View on GitHub
  一款针对于IDE的反制蜜罐 IDE-honeypot
  ☆106Jul 12, 2022Updated 3 years ago
• UzJu / Cloud-Bucket-Leak-Detection-Tools

  View on GitHub
  六大云存储，泄露利用检测工具
  ☆1,238Mar 28, 2025Updated 10 months ago
• safe6Sec / Fastjson

  View on GitHub
  Fastjson姿势技巧集合
  ☆1,822Oct 20, 2023Updated 2 years ago
• exp1orer / JNDI-Inject-Exploit

  View on GitHub
  解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
  ☆770Jan 26, 2022Updated 4 years ago
• Schira4396 / VcenterKiller

  View on GitHub
  一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
  ☆1,464Apr 25, 2024Updated last year
• xiecat / goblin

  View on GitHub
  一款适用于红蓝对抗中的仿真钓鱼系统
  ☆1,535May 30, 2023Updated 2 years ago
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,011May 21, 2024Updated last year
• bitterzzZZ / MemoryShellLearn

  View on GitHub
  分享几个直接可用的内存马，记录一下学习过程中看过的文章
  ☆975Mar 23, 2022Updated 3 years ago
• czz1233 / GBByPass

  View on GitHub
  冰蝎 哥斯拉 WebShell bypass
  ☆759Jan 15, 2026Updated 3 weeks ago
• safe6Sec / PentestDB

  View on GitHub
  各种数据库的利用姿势
  ☆1,034Jan 3, 2025Updated last year
• a1phaboy / FastjsonScan

  View on GitHub
  Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
  ☆1,049Oct 7, 2022Updated 3 years ago
• pen4uin / java-memshell-generator

  View on GitHub
  一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
  ☆2,150Aug 21, 2025Updated 5 months ago
• woodpecker-framework / woodpecker-framework-release

  View on GitHub
  高危漏洞精准检测与深度利用框架
  ☆1,456Jan 8, 2023Updated 3 years ago
• achuna33 / MYExploit

  View on GitHub
  OAExploit一款基于产品的一键扫描工具。
  ☆1,482Sep 20, 2022Updated 3 years ago
• novysodope / RMI_Inj_MemShell

  View on GitHub
  rmi打内存马工具，适用于目标用不了ldap的情况
  ☆254Jul 12, 2023Updated 2 years ago
• AbelChe / cola_dnslog

  View on GitHub
  Cola Dnslog v1.3.2 更加强大的dnslog平台/无回显漏洞探测辅助平台 完全开源 dnslog httplog ldaplog rmilog 支持dns http ldap rmi等协议 提供API调用方式便于与其他工具结合 支持钉钉机器人、Bark等提醒…
  ☆502Feb 6, 2023Updated 3 years ago
• LandGrey / spring-boot-upload-file-lead-to-rce-tricks

  View on GitHub
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆753Apr 14, 2021Updated 4 years ago
• AlphabugX / Alphalog

  View on GitHub
  DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名 产品(fuzz.red)，Alphalog与传统DNSLog不同，更快、更安全。
  ☆456Aug 20, 2025Updated 5 months ago
• no-one-sec / code-phish

  View on GitHub
  JetBrains系列产品.idea钓鱼反制红队
  ☆332Jan 27, 2026Updated 2 weeks ago
• Taonn / EmailAll

  View on GitHub
  EmailAll is a powerful Email Collect tool — 一款强大的邮箱收集工具
  ☆734Mar 4, 2022Updated 3 years ago
• TryGOTry / DogCs4.4

  View on GitHub
  cs4.4修改去特征狗狗版(美化ui,去除特征,自带bypass核晶截图等..)
  ☆574Jan 17, 2023Updated 3 years ago
• LandGrey / ClassHound

  View on GitHub
  利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
  ☆711May 10, 2021Updated 4 years ago
• cnrstar / anti-honeypot

  View on GitHub
  一款可以检测WEB蜜罐并阻断请求的Chrome插件
  ☆877Aug 5, 2024Updated last year
• Ghr07h / Heimdallr

  View on GitHub
  一款完全被动监听的谷歌插件，用于高危指纹识别、蜜罐特征告警和拦截、机器特征对抗
  ☆1,646Jan 19, 2023Updated 3 years ago
• Rvn0xsy / PassDecode-jar

  View on GitHub
  帆软/致远密码解密工具
  ☆359Jul 29, 2021Updated 4 years ago
• zema1 / watchvuln

  View on GitHub
  一个高价值漏洞采集与推送服务 | Collect valueable vulnerabilities and push them to various services
  ☆1,773Nov 26, 2025Updated 2 months ago
• shmilylty / netspy

  View on GitHub
  netspy是一款快速探测内网可达网段工具（深信服深蓝实验室天威战队强力驱动）
  ☆2,199Jul 25, 2023Updated 2 years ago
• c0ny1 / passive-scan-client

  View on GitHub
  Burp被动扫描流量转发插件
  ☆1,459Jun 17, 2024Updated last year
• c0ny1 / chunked-coding-converter

  View on GitHub
  Burp suite 分块传输辅助插件
  ☆2,021Feb 23, 2022Updated 3 years ago
• wyzxxz / heapdump_tool

  View on GitHub
  heapdump敏感信息查询工具，例如查找 spring heapdump中的密码明文，AK,SK等
  ☆1,433May 21, 2024Updated last year
• hayasec / 360SafeBrowsergetpass

  View on GitHub
  这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具，用于节省红队工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
  ☆638Apr 4, 2021Updated 4 years ago
• y1nglamore / IDOR_detect_tool

  View on GitHub
  一款API水平越权漏洞检测工具
  ☆769Jun 27, 2023Updated 2 years ago
• safe6Sec / GolangBypassAV

  View on GitHub
  研究利用golang各种姿势bypassAV
  ☆815Apr 11, 2022Updated 3 years ago
• achuna33 / Memoryshell-JavaALL

  View on GitHub
  收集内存马打入方式
  ☆506May 20, 2022Updated 3 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• Ormicron / chatViewTool

  View on GitHub
  基于Java实现的图形化微信聊天记录解密查看器
  ☆584May 20, 2024Updated last year
• wyzxxz / aksk_tool

  View on GitHub
  AK资源管理工具，阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret，利用AK获取资源信息和操作资源，ECS/CVM/E2/UHOST/ECI/BCC执行命令，OSS/COS/S3/BOS…
  ☆775Feb 13, 2025Updated last year
• JDArmy / DCSec

  View on GitHub
  域控安全one for all
  ☆736Sep 9, 2024Updated last year