Alternatives and similar repositories for DubboPOC

Users that are interested in DubboPOC are comparing it to the libraries listed below

• TonyD0g / JSPHunter
  基于污点分析和模拟栈帧技术的JSP Webshell检测
  ☆47Updated this week
• hosch3n / FastjsonVulns
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆91Updated 3 years ago
• tabby-sec / tabby-intellij-plugin
  A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily
  ☆37Updated 10 months ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆54Updated 2 years ago
• ax1sX / SpringSecurity
  A list for Spring Security
  ☆125Updated last year
• longofo / Apache-Dubbo-Hessian2-CVE-2021-43297
  Apache Dubbo Hessian2 CVE-2021-43297 demo
  ☆46Updated 3 years ago
• su18 / rasp-vuln
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆78Updated 3 years ago
• turn1tup / JvmRaspBypass
  ☆14Updated 2 years ago
• cwkiller / ClassLinefix
  Java bytecode line number restoration tool
  ☆88Updated last month
• 0linlin0 / Java
  java
  ☆54Updated 2 years ago
• kyo-w / Spel-research
  Spel-research
  ☆26Updated 3 years ago
• 0xrumble / BytecodeScreen
  ☆50Updated 2 years ago
• cwkiller / JDBC-PROXY-Bypass
  利用代理驱动绕过JDBC Attack检测
  ☆134Updated 3 months ago
• KpLi0rn / DeserializeAll
  一个简单的批量反编译jar包的小脚本
  ☆42Updated 3 years ago
• freeFV / ShortPayload
  如何将Java反序列化Payload极致缩小
  ☆65Updated 3 years ago
• p1n93r / SpringBootAdmin-thymeleaf-SSTI
  SpringBootAdmin-thymeleaf-SSTI which can cause RCE
  ☆82Updated 2 years ago
• KpLi0rn / ysoserial
  在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆68Updated 4 years ago
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆67Updated 2 years ago
• Lotus6 / FileMonitor
  Java命令行文件监控小工具(代码审计)
  ☆103Updated 3 years ago
• yuligesec / watchvuln
  一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service
  ☆31Updated last year
• pacemrc / VulDebug
  Java漏洞调试分析集合
  ☆91Updated last year
• passer-W / snakeyaml-memshell
  springboot跨线程注入内存马
  ☆122Updated 3 years ago
• qi4L / Ysoserial-go
  A Go library for generating Java deserialization payloads.
  ☆155Updated last year
• Le1a / CVE-2023-33246
  Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit
  ☆82Updated 2 years ago
• bitterzzZZ / CVE-2021-43297-POC
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Updated 3 years ago
• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆48Updated 3 years ago
• SummerSec / BlogPapers
  <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…
  ☆54Updated this week
• Y4Sec-Team / mysql-jdbc-tricks
  JDBC Attack Tricks
  ☆146Updated 2 years ago
• R17a-17 / JavaVulnSummary
  Java漏洞分析汇合
  ☆142Updated 3 years ago
• l3yx / Java-RASP-Research-Env
  之前方便自己研究RASP原理和绕过时顺手写的，用于快速启动和重置RASP环境
  ☆71Updated 11 months ago