longofo/Apache-Dubbo-Hessian2-CVE-2021-43297 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

longofo/Apache-Dubbo-Hessian2-CVE-2021-43297

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/longofo/Apache-Dubbo-Hessian2-CVE-2021-43297)

Close

longofo / Apache-Dubbo-Hessian2-CVE-2021-43297View on GitHubMore

• External links
• Readme badge

Apache Dubbo Hessian2 CVE-2021-43297 demo

☆46Jan 18, 2022Updated 4 years ago

Alternatives and similar repositories for Apache-Dubbo-Hessian2-CVE-2021-43297

Users that are interested in Apache-Dubbo-Hessian2-CVE-2021-43297 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• bitterzzZZ / CVE-2021-43297-POC

  View on GitHub
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Jan 24, 2022Updated 4 years ago
• zwjjustdoit / Xstream-1.4.17

  View on GitHub
  XSTREAM<=1.4.17漏洞复现（CVE-2021-39141、CVE-2021-39144、CVE-2021-39150）
  ☆62Aug 25, 2021Updated 4 years ago
• flowerwind / JspFinder

  View on GitHub
  一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)
  ☆176Jan 4, 2022Updated 4 years ago
• ZZ-SOCMAP / CVE-2021-35587

  View on GitHub
  Oracle Access Manager Unauthenticated Attacker Vulnerability CVE-2021-35587
  ☆42Mar 14, 2022Updated 4 years ago
• BeichenDream / InjectJDBC

  View on GitHub
  注入JVM进程 动态获取目标进程连接的数据库
  ☆343Mar 6, 2022Updated 4 years ago
• Serverless GPU API endpoints on Runpod - Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• ice-doom / codeql_compile

  View on GitHub
  自动反编译闭源应用，创建codeql数据库
  ☆318Mar 2, 2022Updated 4 years ago
• sherlocksecurity / VMware-CVE-2022-22954

  View on GitHub
  POC for VMWARE CVE-2022-22954
  ☆282Apr 13, 2022Updated 4 years ago
• changheluor007 / MemShell-1

  View on GitHub
  Tomcat的Filter型免杀内存马，主要思路是Bypass各种检查手段
  ☆10Nov 26, 2021Updated 4 years ago
• su18 / MemoryShell

  View on GitHub
  JavaWeb MemoryShell Inject/Scan/Killer/Protect Research & Exploring
  ☆656Jun 25, 2021Updated 4 years ago
• threedr3am / dubbo-exp

  View on GitHub
  dubbo快速利用exp，基本上老版本覆盖100%。
  ☆161Jun 30, 2025Updated 9 months ago
• waderwu / My-CTF-Challenges

  View on GitHub
  Collection of CTF Web challenges I made
  ☆53Apr 25, 2023Updated 2 years ago
• synacktiv / mojarragadget

  View on GitHub
  ☆15Oct 25, 2021Updated 4 years ago
• xiaopan233 / Java_agent_without_file

  View on GitHub
  Java agent without file 无文件的Java agent
  ☆82Apr 7, 2022Updated 4 years ago
• ffadd / JNDIKit

  View on GitHub
  JNDI/LDAP注入利用工具，对命令进行两种编码，支持多种绕过高版本JDK的方式（参考大佬代码造的轮子）
  ☆43Dec 22, 2021Updated 4 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• Jeromeyoung / JNDIExploit-1

  View on GitHub
  一款用于JNDI注入利用的工具，大量参考/引用了Rogue JNDI项目的代码，支持直接植入内存shell，并集成了常见的bypass 高版本JDK的方式，适用于与自动化工具配合使用。
  ☆376Oct 22, 2021Updated 4 years ago
• c0ny1 / java-object-searcher

  View on GitHub
  java内存对象搜索辅助工具
  ☆823Sep 23, 2022Updated 3 years ago
• hoav18 / CVE-2021-22941

  View on GitHub
  ☆14Oct 12, 2021Updated 4 years ago
• blipzip / cve-2022-31692

  View on GitHub
  A project demonstrating an app that is vulnerable to Spring Security authorization bypass CVE-2022-31692
  ☆35Nov 7, 2022Updated 3 years ago
• cckuailong / spring-cloud-function-SpEL-RCE

  View on GitHub
  spring-cloud-function SpEL RCE, Vultarget & Poc
  ☆135Mar 27, 2022Updated 4 years ago
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,017Oct 15, 2020Updated 5 years ago
• phith0n / zkar

  View on GitHub
  ZKar is a Java serialization protocol analysis tool implement in Go.
  ☆651Updated this week
• 5wimming / gadgetinspector

  View on GitHub
  利用链、漏洞检测工具
  ☆375Jul 31, 2024Updated last year
• SummerSec / SPATool

  View on GitHub
  静态程序分析工具 主要生成方法的CFG和.java文件的AST
  ☆134Jul 12, 2023Updated 2 years ago
• Managed Kubernetes at scale on DigitalOcean • Ad
  DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
• hosch3n / FastjsonVulns

  View on GitHub
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆91Sep 2, 2022Updated 3 years ago
• Lotus6 / FileMonitor

  View on GitHub
  Java命令行文件监控小工具(代码审计)
  ☆105Nov 29, 2021Updated 4 years ago
• Y4er / openam-CVE-2021-35464

  View on GitHub
  openam-CVE-2021-35464 tomcat 执行命令回显
  ☆87Dec 15, 2022Updated 3 years ago
• su18 / JDBC-Attack

  View on GitHub
  JDBC Connection URL Attack
  ☆444Sep 10, 2021Updated 4 years ago
• Ppsoft1991 / CodeReviewTools

  View on GitHub
  通过正则搜索、批量反编译特定Jar包中的class名称
  ☆321Dec 9, 2021Updated 4 years ago
• phith0n / PaddingZip

  View on GitHub
  PaddingZip is a tool that you can craft a zip file that contains the padding characters between the file content.
  ☆81Aug 14, 2022Updated 3 years ago
• cckuailong / nginx_vultarget

  View on GitHub
  ☆13Feb 9, 2022Updated 4 years ago
• whwlsfb / cve-2022-22947-godzilla-memshell

  View on GitHub
  CVE-2022-22947 注入Godzilla内存马
  ☆211Apr 26, 2022Updated 3 years ago
• longofo / PaddingOracleAttack-Shiro-721

  View on GitHub
  Shiro-721 Padding Oracle Attack
  ☆73Jun 4, 2021Updated 4 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• kyo-w / router-router

  View on GitHub
  Java web路由内存分析工具
  ☆439May 22, 2025Updated 10 months ago
• phith0n / tls_proxy

  View on GitHub
  A lightweight reverse proxy server that converts TLS traffic to TCP, allowing secure communication between clients and upstream servers.
  ☆80Aug 16, 2024Updated last year
• Pear1y / CVE-2022-26133

  View on GitHub
  Atlassian Bitbucket Data Center RCE(CVE-2022-26133) verification.
  ☆148May 11, 2022Updated 3 years ago
• feihong-cs / memShell

  View on GitHub
  FilterBased/ServletBased in memory shell for Tomcat and some other middlewares
  ☆384Nov 6, 2020Updated 5 years ago
• vnhacker1337 / CVE-2022-27925-PoC

  View on GitHub
  Zimbra RCE simple poc
  ☆66Aug 13, 2022Updated 3 years ago
• keven1z / weblogic_memshell

  View on GitHub
  适用于weblogic和Tomcat的无文件的内存马(memshell)
  ☆271Mar 4, 2022Updated 4 years ago
• Firebasky / LdapBypassJndi

  View on GitHub
  The function of the tool is to inject JNDI through LDAP
  ☆28Dec 21, 2021Updated 4 years ago