Alternatives and similar repositories for DubboPOC

Users that are interested in DubboPOC are comparing it to the libraries listed below

• TonyD0g / JSPHunter
  基于污点分析和模拟栈帧技术的JSP Webshell检测
  ☆48Updated 2 months ago
• ax1sX / SpringSecurity
  A list for Spring Security
  ☆125Updated last year
• hosch3n / FastjsonVulns
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆91Updated 3 years ago
• tabby-sec / tabby-intellij-plugin
  A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily
  ☆37Updated last year
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆54Updated 2 years ago
• turn1tup / JvmRaspBypass
  ☆15Updated 3 years ago
• KpLi0rn / DeserializeAll
  一个简单的批量反编译jar包的小脚本
  ☆44Updated 3 years ago
• kyo-w / Spel-research
  Spel-research
  ☆26Updated 3 years ago
• yuligesec / watchvuln
  一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service
  ☆31Updated last year
• pacemrc / VulDebug
  Java漏洞调试分析集合
  ☆91Updated last year
• 0linlin0 / Java
  java
  ☆54Updated 2 years ago
• freeFV / ShortPayload
  如何将Java反序列化Payload极致缩小
  ☆66Updated 3 years ago
• KpLi0rn / ysoserial
  在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆68Updated 4 years ago
• cwkiller / JDBC-PROXY-Bypass
  利用代理驱动绕过JDBC Attack检测
  ☆136Updated 5 months ago
• l3yx / Java-RASP-Research-Env
  之前方便自己研究RASP原理和绕过时顺手写的，用于快速启动和重置RASP环境
  ☆71Updated last year
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆70Updated last month
• xiaopan233 / GenerateNoHard
  本工具的定位是快速生成Java安全相关的Payload，如内存马、反序列化链、JNDI url、Fastjson等，动态生成相关Payload，并附带相应的文档。
  ☆93Updated 9 months ago
• longofo / Apache-Dubbo-Hessian2-CVE-2021-43297
  Apache Dubbo Hessian2 CVE-2021-43297 demo
  ☆46Updated 3 years ago
• sf197 / MemoryShellHunter
  Java Agent memory horse scanner combined with Call Graph modus
  ☆64Updated 2 years ago
• cwkiller / ClassLinefix
  Java bytecode line number restoration tool
  ☆98Updated 3 months ago
• bitterzzZZ / CVE-2021-43297-POC
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Updated 3 years ago
• Lotus6 / FileMonitor
  Java命令行文件监控小工具(代码审计)
  ☆103Updated 4 years ago
• qi4L / Ysoserial-go
  A Go library for generating Java deserialization payloads.
  ☆155Updated last year
• threedr3am / dubbo-exp
  dubbo快速利用exp，基本上老版本覆盖100%。
  ☆160Updated 5 months ago
• su18 / rasp-vuln
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆79Updated 3 years ago
• phith0n / tls_proxy
  A lightweight reverse proxy server that converts TLS traffic to TCP, allowing secure communication between clients and upstream servers.
  ☆77Updated last year
• p1n93r / SpringBootAdmin-thymeleaf-SSTI
  SpringBootAdmin-thymeleaf-SSTI which can cause RCE
  ☆85Updated 2 years ago
• cokeBeer / pyyso
  pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550,…
  ☆53Updated 3 years ago
• woodpecker-appstore / springboot-vuldb
  ☆70Updated 4 years ago
• 0xrumble / BytecodeScreen
  ☆50Updated 3 years ago