iSafeBlue/redis-rce

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/iSafeBlue/redis-rce)

iSafeBlue / redis-rce

Redis RCE 的几种方法

☆90

Alternatives and similar repositories for redis-rce

Users that are interested in redis-rce are comparing it to the libraries listed below

Sorting:

iSafeBlue / fastjson-autotype-bypass-demo
View on GitHub
fastjson 1.2.68 版本 autotype bypass
☆142Jun 17, 2022Updated 3 years ago
threedr3am / tomcat-cluster-session-sync-exp
View on GitHub
tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包，可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
☆212May 19, 2020Updated 5 years ago
Slzdude / behinder_source
View on GitHub
Behinder3.0 Beta4 源码（Decompile and Fixed）
☆207Sep 1, 2020Updated 5 years ago
lalajun / RMIDeserialize
View on GitHub
RMI 反序列化环境一步步
☆213Aug 31, 2020Updated 5 years ago
c0ny1 / java-object-searcher
View on GitHub
java内存对象搜索辅助工具
☆823Sep 23, 2022Updated 3 years ago
feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,016Oct 15, 2020Updated 5 years ago
virink / xray-weblisten-ui
View on GitHub
Xray 被动扫描管理
☆59May 1, 2020Updated 5 years ago
exp1orer / FastAdmin_Upload
View on GitHub
FastAdmin 前台文件上传RCE
☆109Oct 12, 2021Updated 4 years ago
keven1z / weblogic_memshell
View on GitHub
适用于weblogic和Tomcat的无文件的内存马(memshell)
☆269Mar 4, 2022Updated 4 years ago
z1Ro0 / tomcat_nofile_webshell
View on GitHub
Tomcat基于动态注册Filter的无文件Webshell
☆26Jun 20, 2020Updated 5 years ago
Ch1ngg / JCE
View on GitHub
JCE - JSP/JPSX CodeEncode - 用于 Webshell 逃避静态查杀的辅助脚本
☆258Oct 29, 2021Updated 4 years ago
QAX-A-Team / redis_lua_exploit
View on GitHub
☆145Jun 20, 2018Updated 7 years ago
thunderbarca / Caesar
View on GitHub
一个全新的敏感文件发现工具
☆225Jan 10, 2021Updated 5 years ago
uknowsec / loginlog_windows
View on GitHub
读取登录过本机的登录失败或登录成功的所有计算机信息，在内网渗透中快速定位运维管理人员。
☆221Sep 30, 2019Updated 6 years ago
threedr3am / ZhouYu
View on GitHub
（周瑜）Java - SpringBoot 持久化 WebShell（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
☆615Dec 29, 2021Updated 4 years ago
LandGrey / ClassHound
View on GitHub
利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
☆711May 10, 2021Updated 4 years ago
al0ne / Nmap_Bypass_IDS
View on GitHub
Nmap&Zmap特征识别，绕过IDS探测
☆329Aug 1, 2019Updated 6 years ago
cbwang505 / CVE-2020-1066-EXP
View on GitHub
CVE-2020-1066-EXP支持Windows 7和Windows Server 2008 R2操作系统
☆187Jun 17, 2020Updated 5 years ago
feihong-cs / JspMaster-Deprecated
View on GitHub
一款基于webshell命令执行功能实现的GUI webshell管理工具，支持流量加密
☆218Jun 4, 2021Updated 4 years ago
welk1n / JNDI-Injection-Bypass
View on GitHub
Some payloads of JNDI Injection in JDK 1.8.0_191+
☆484Dec 9, 2020Updated 5 years ago
lsh4ck / Langzi_SRC_Safe_Cruise
View on GitHub
LANGZI_SRC_安全巡航是一款集成漏扫，验证，资产监控，自动复现并且生成结果表报的工具，实现初衷是为了帮助白帽子在SRC中节约时间成本的自动化工具。
☆14Jul 7, 2019Updated 6 years ago
threedr3am / ysoserial
View on GitHub
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。
☆214Jan 17, 2022Updated 4 years ago
Artemis1029 / Java_xmlhack
View on GitHub
帮助java环境下任意文件下载情况自动化读取源码的小工具
☆167Apr 5, 2019Updated 6 years ago
Ramos-dev / R9000
View on GitHub
☆57Apr 27, 2020Updated 5 years ago
TideSec / Decrypt_Weblogic_Password
View on GitHub
搜集了市面上绝大部分weblogic解密方式，整理了7种解密weblogic的方法及响应工具。
☆834Nov 7, 2023Updated 2 years ago
veracode-research / actuator-testbed
View on GitHub
A vulnerable application exposing Spring Boot Actuators
☆123Feb 25, 2019Updated 7 years ago
rabbitmask / WeblogicScanLot
View on GitHub
WeblogicScanLot系列，Weblogic漏洞批量检测工具，V2.2
☆184Aug 1, 2020Updated 5 years ago
pwntester / JRE8u20_RCE_Gadget
View on GitHub
JRE8u20_RCE_Gadget
☆255Jul 1, 2016Updated 9 years ago
Y4er / yaml-payload
View on GitHub
Spring Cloud SnakeYAML 反序列化一键注入cmdshell和reGeorg
☆136Sep 24, 2020Updated 5 years ago
SPuerBRead / Bridge
View on GitHub
无回显漏洞测试辅助平台，平台使用Java编写，提供DNSLOG，HTTPLOG等功能，辅助渗透测试过程中无回显漏洞及SSRF等漏洞的验证和利用。
☆402Dec 21, 2025Updated 2 months ago
Y4er / WebLogic-Shiro-shell
View on GitHub
WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞，一键注册蚁剑filter内存shell
☆535Aug 25, 2020Updated 5 years ago
jas502n / zentao-getshell
View on GitHub
禅道8.2 - 9.2.1前台Getshell
☆78Sep 19, 2019Updated 6 years ago
longofo / rmi-jndi-ldap-jrmp-jmx-jms
View on GitHub
rmi、jndi、ldap、jrmp、jmx、jms一些demo测试
☆310Jun 17, 2022Updated 3 years ago
wonderkun / go-packer
View on GitHub
golang打包二进制进行免杀
☆234Apr 7, 2021Updated 4 years ago
Ivan1ee / NET-Deserialize
View on GitHub
总结了20+.Net反序列化文章，持续更新
☆748Apr 3, 2024Updated last year
Hzllaga / JsLoader
View on GitHub
js免杀shellcode，绕过杀毒添加自启
☆354Mar 16, 2021Updated 4 years ago
r35tart / RedisWriteFile
View on GitHub
通过 Redis 主从写出无损文件
☆719May 25, 2020Updated 5 years ago
l3m0n / vulenv
View on GitHub
漏洞测试环境 - 方便写扫描器利用复现
☆27Aug 12, 2019Updated 6 years ago
l3m0n / whatweb
View on GitHub
更快速的进行Web应用指纹识别
☆170May 9, 2019Updated 6 years ago