laluka / jolokia-exploitation-toolkitView external linksLinks
jolokia-exploitation-toolkit
☆310Dec 19, 2024Updated last year
Alternatives and similar repositories for jolokia-exploitation-toolkit
Users that are interested in jolokia-exploitation-toolkit are comparing it to the libraries listed below
Sorting:
- JDBC Connection URL Attack☆438Sep 10, 2021Updated 4 years ago
- Java RMI Vulnerability Scanner☆914Jul 3, 2024Updated last year
- ZKar is a Java serialization protocol analysis tool implement in Go.☆643Feb 15, 2025Updated last year
- JMX enumeration and attacking tool.☆494Jun 26, 2025Updated 7 months ago
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆753Apr 14, 2021Updated 4 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆613Mar 4, 2021Updated 4 years ago
- Java RCE 回显测试代码☆1,015Oct 15, 2020Updated 5 years ago
- attackRmi☆258Oct 14, 2020Updated 5 years ago
- ☆232Jan 3, 2022Updated 4 years ago
- ☆294May 7, 2022Updated 3 years ago
- 80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…☆866Jun 24, 2024Updated last year
- A malicious LDAP server for JNDI injection attacks☆1,076Sep 28, 2023Updated 2 years ago
- Shiro-550 不依赖CC链利用工具☆451Jun 19, 2024Updated last year
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆357Sep 20, 2022Updated 3 years ago
- Java应用的一些配置文件字典,来源于公开的字典与平时收集☆321Feb 1, 2024Updated 2 years ago
- .NET Project for Attacking vCenter☆553Nov 11, 2021Updated 4 years ago
- Java Js Engine Payloads All in one☆289Aug 21, 2023Updated 2 years ago
- (周瑜)Java - SpringBoot 持久化 WebShell(不仅仅是SpringBoot,适合任何符合JavaEE规范的服务)☆615Dec 29, 2021Updated 4 years ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- fastjson不出网利用、c3p0☆255Jul 30, 2021Updated 4 years ago
- FilterBased/ServletBased in memory shell for Tomcat and some other middlewares☆382Nov 6, 2020Updated 5 years ago
- A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.☆754Dec 2, 2022Updated 3 years ago
- A helpful Java Deserialization exploit framework.☆1,239Feb 17, 2025Updated last year
- java内存对象搜索辅助工具☆822Sep 23, 2022Updated 3 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- Exploit for EfsPotato(MS-EFSR EfsRpcOpenFileRaw with SeImpersonatePrivilege local privalege escalation vulnerability).☆817Dec 14, 2023Updated 2 years ago
- ☆419Jan 5, 2022Updated 4 years ago
- ☆274Oct 28, 2021Updated 4 years ago
- Some ReadObject Sink With JDBC☆243May 8, 2024Updated last year
- 通过正则搜索、批量反编译特定Jar包中的class名称☆320Dec 9, 2021Updated 4 years ago
- java memory web shell extracting tool☆497May 17, 2021Updated 4 years ago
- 利用链、漏洞检测工具☆373Jul 31, 2024Updated last year
- ☆341Oct 11, 2025Updated 4 months ago
- Yet another SharpSphere☆227Aug 1, 2021Updated 4 years ago
- Java反序列化漏洞利用链补全计划,仅用于个人归纳总结。☆420Dec 3, 2021Updated 4 years ago
- ☆306Feb 27, 2025Updated 11 months ago
- VMware vCenter 7.0.2.00100 unauth Arbitrary File Read + SSRF + Reflected XSS☆219Dec 1, 2021Updated 4 years ago
- 基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)☆321Dec 22, 2024Updated last year
- ☆835Jun 7, 2022Updated 3 years ago