Alternatives and similar repositories for sign-me-2:

Users that are interested in sign-me-2 are comparing it to the libraries listed below

• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆50Updated last year
• freeFV / ShortPayload
  如何将Java反序列化Payload极致缩小
  ☆49Updated 3 years ago
• N0el4kLs / JSHunter
  JSHunter-一款针对于前端的未授权访问扫描工具
  ☆23Updated 2 weeks ago
• KpLi0rn / DeserializeAll
  一个简单的批量反编译jar包的小脚本
  ☆35Updated 3 years ago
• wh1t3p1g / tabby-intellij-plugin
  A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily
  ☆33Updated 4 months ago
• webraybtl / ysoserialbtl
  基于ysoserial扩展命令执行结果回显，生成冰蝎内存马
  ☆87Updated last year
• 0xrumble / BytecodeScreen
  ☆50Updated 2 years ago
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆67Updated last year
• a1phaboy / MenoyGone
  Attack cobalt strike server’s FCS by DoW
  ☆70Updated last year
• Boogipop / Netty-WebFlux-Memshell
  Netty/WebFlux 内存马
  ☆25Updated last year
• turn1tup / JvmRaspBypass
  ☆14Updated 2 years ago
• Ape1ron / SpringAopInDeserializationDemo1
  在spring-aop中新发现的反序列化gadget-chain
  ☆43Updated 2 months ago
• kyo-w / Spel-research
  Spel-research
  ☆26Updated 2 years ago
• sf197 / MemoryShellHunter
  Java Agent memory horse scanner combined with Call Graph modus
  ☆62Updated 2 years ago
• hosch3n / FastjsonVulns
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆90Updated 2 years ago
• 0linlin0 / Java
  java
  ☆54Updated 2 years ago
• byname66 / SerializeJava
  用Go+Fyne开发的，展示JAVA序列化流以及集成一键插入脏数据,UTF过长编码绕WAF(Utf OverLoad Encoding),修改类SerializeVersionUID功能的图形化工具。
  ☆98Updated 2 months ago
• 1oid / remotejs
  remote execute js when debugger.paused
  ☆42Updated last year
• wealeson1 / wcpvs
  Web Cache Poisoning Vulnerability Scanner
  ☆36Updated 2 months ago
• tangxiaofeng7 / smartscan
  burpsuite插件-被动无感识别指纹-主动poc扫描
  ☆26Updated 6 months ago
• KpLi0rn / ysoserial
  在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆68Updated 3 years ago
• l3yx / Java-RASP-Research-Env
  之前方便自己研究RASP原理和绕过时顺手写的，用于快速启动和重置RASP环境
  ☆55Updated 5 months ago
• r3change / jdwp-shellifier
  ☆35Updated 3 years ago
• Y4Sec-Team / mysql-jdbc-tricks
  JDBC Attack Tricks
  ☆142Updated last year
• mark0smith / Kunlun-M-GUI
  Kunlun-M 的GUI程序
  ☆51Updated 2 years ago
• HackJava / JNDI
  《JNDI-深入理解Java万恶之源》
  ☆37Updated last year
• Y4Sec-Team / no-templates
  如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过
  ☆50Updated last year
• unam4 / fineldapc
  某软最新公开gadgegt,新加入不出网利用。
  ☆61Updated 6 months ago
• cokeBeer / go-cves
  收录go语言编写的项目、框架和组件出现的cve，或者一些相关的利用方式的文章
  ☆38Updated 2 years ago
• YYHYlh / Dubbo-Scan
  一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。
  ☆167Updated last year