mogwailabs/mjet external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

mogwailabs/mjet

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/mogwailabs/mjet)

Close

mogwailabs / mjetView on GitHubMore

• External links
• Readme badge

MOGWAI LABS JMX exploitation toolkit

☆207Mar 13, 2023Updated 3 years ago

Alternatives and similar repositories for mjet

Users that are interested in mjet are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• qtc-de / beanshooter

  View on GitHub
  JMX enumeration and attacking tool.
  ☆505Jun 26, 2025Updated 11 months ago
• NickstaDB / BaRMIe

  View on GitHub
  Java RMI enumeration and attack tool.
  ☆748Sep 28, 2017Updated 8 years ago
• BishopFox / GadgetProbe

  View on GitHub
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆616Mar 4, 2021Updated 5 years ago
• BishopFox / rmiscout

  View on GitHub
  RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
  ☆449Sep 7, 2022Updated 3 years ago
• JackOfMostTrades / gadgetinspector

  View on GitHub
  A byte code analyzer for finding deserialization gadget chains in Java applications
  ☆1,084Jun 15, 2021Updated 5 years ago
• Virtual machines for every use case on DigitalOcean • Ad
  Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
• c0ny1 / java-object-searcher

  View on GitHub
  java内存对象搜索辅助工具
  ☆820Sep 23, 2022Updated 3 years ago
• Lonely-night / fastjson_gadgets_scanner

  View on GitHub
  ☆131Jun 17, 2022Updated 4 years ago
• matthiaskaiser / jmet

  View on GitHub
  Java Message Exploitation Tool
  ☆509Jul 6, 2022Updated 3 years ago
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,014Oct 15, 2020Updated 5 years ago
• qtc-de / remote-method-guesser

  View on GitHub
  Java RMI Vulnerability Scanner
  ☆919Jul 3, 2024Updated last year
• Afant1 / RemoteObjectInvocationHandler

  View on GitHub
  bypass JEP290 RaspHook code
  ☆63Sep 21, 2020Updated 5 years ago
• welk1n / JNDI-Injection-Bypass

  View on GitHub
  Some payloads of JNDI Injection in JDK 1.8.0_191+
  ☆484Dec 9, 2020Updated 5 years ago
• veracode-research / solr-injection

  View on GitHub
  Apache Solr Injection Research
  ☆580Jan 28, 2020Updated 6 years ago
• mpgn / Spring-Boot-Actuator-Exploit

  View on GitHub
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆325Jun 16, 2020Updated 6 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• mogwailabs / rmi-deserialization

  View on GitHub
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆101Sep 20, 2019Updated 6 years ago
• pwntester / JRE8u20_RCE_Gadget

  View on GitHub
  JRE8u20_RCE_Gadget
  ☆255Jul 1, 2016Updated 9 years ago
• rebeyond / memShell

  View on GitHub
  a webshell resides in the memory of java web server
  ☆700Jun 26, 2018Updated 7 years ago
• codeplutos / MySQL-JDBC-Deserialization-Payload

  View on GitHub
  MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload
  ☆13Feb 8, 2020Updated 6 years ago
• NickstaDB / SerializationDumper

  View on GitHub
  A tool to dump Java serialization streams in a more human readable form.
  ☆1,075Jun 21, 2024Updated last year
• LeadroyaL / fastjson-blacklist

  View on GitHub
  ☆837Jun 7, 2022Updated 4 years ago
• waderwu / attackRmi

  View on GitHub
  attackRmi
  ☆259Oct 14, 2020Updated 5 years ago
• threedr3am / gadgetinspector

  View on GitHub
  一个利用ASM对字节码进行污点传播分析的静态代码审计应用（添加了大量代码注释，适合大家进行源码学习）。也加入了挖掘Fastjson反序列化gadget chains和SQLInject（JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等）静…
  ☆456Mar 24, 2022Updated 4 years ago
• mogwailabs / deserialization-filter-blacklists

  View on GitHub
  Native Java serialization filter blacklist for common gadgets
  ☆20Sep 12, 2019Updated 6 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• hosch3n / FastjsonVulns

  View on GitHub
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆91Sep 2, 2022Updated 3 years ago
• fnmsd / MySQL_Fake_Server

  View on GitHub
  MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize
  ☆1,372Nov 18, 2021Updated 4 years ago
• Imanfeng / Apache-Solr-RCE

  View on GitHub
  Apache Solr Exploits 🌟
  ☆345Oct 13, 2020Updated 5 years ago
• 5wimming / gadgetinspector

  View on GitHub
  利用链、漏洞检测工具
  ☆376Jul 31, 2024Updated last year
• STMCyber / RmiTaste

  View on GitHub
  RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…
  ☆110Oct 10, 2020Updated 5 years ago
• longofo / rmi-jndi-ldap-jrmp-jmx-jms

  View on GitHub
  rmi、jndi、ldap、jrmp、jmx、jms一些demo测试
  ☆311Jun 17, 2022Updated 4 years ago
• LandGrey / ClassHound

  View on GitHub
  利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
  ☆713May 10, 2021Updated 5 years ago
• veracode-research / rogue-jndi

  View on GitHub
  A malicious LDAP server for JNDI injection attacks
  ☆1,084Sep 28, 2023Updated 2 years ago
• Firebasky / LdapBypassJndi

  View on GitHub
  The function of the tool is to inject JNDI through LDAP
  ☆29Dec 21, 2021Updated 4 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• l1nk3rlin / CVE-2019-2890

  View on GitHub
  ☆85Dec 6, 2019Updated 6 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,402Jan 18, 2022Updated 4 years ago
• Litch1-v / ysoserial

  View on GitHub
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆183Apr 23, 2021Updated 5 years ago
• A-D-Team / attackRmi

  View on GitHub
  ☆231Jan 3, 2022Updated 4 years ago
• mbechler / marshalsec

  View on GitHub
  ☆3,690Jan 9, 2025Updated last year
• threedr3am / learnjavabug

  View on GitHub
  Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
  ☆2,691Mar 14, 2024Updated 2 years ago
• wh1t3p1g / ysoserial

  View on GitHub
  forked from frohoff/ysoserial and added my own payloads.
  ☆156Mar 6, 2020Updated 6 years ago