qi4L/CVE-2024-38077 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

qi4L/CVE-2024-38077

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/qi4L/CVE-2024-38077)

Close

qi4L / CVE-2024-38077View on GitHubMore

• External links
• Readme badge

RDL的堆溢出导致的RCE

☆223Aug 14, 2024Updated last year

Alternatives and similar repositories for CVE-2024-38077

Users that are interested in CVE-2024-38077 are comparing it to the libraries listed below

• Whoopsunix / JavaRce

  View on GitHub
  Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
  ☆544Mar 6, 2025Updated last year
• Boogipop / CVE-2023-22527-Godzilla-MEMSHELL

  View on GitHub
  CVE-2023-22527 内存马注入工具
  ☆76Feb 21, 2024Updated 2 years ago
• convisolabs / CVE-2024-43044-jenkins

  View on GitHub
  Exploit for the vulnerability CVE-2024-43044 in Jenkins
  ☆184Oct 2, 2024Updated last year
• Chave0v0 / YONYOU-TOOL

  View on GitHub
  用友漏洞综合利用工具
  ☆263Nov 9, 2024Updated last year
• Ar3h / utf8-overlong-agent

  View on GitHub
  使用 agent 实现反序列化 utf8 overlong
  ☆83Apr 24, 2024Updated last year
• Conan924 / NacosExploit

  View on GitHub
  NacosExploit 命令执行 内存马等利用
  ☆214Jul 18, 2024Updated last year
• 4ra1n / poc-runner

  View on GitHub
  Small & Fast Vulnerability Scanner Engine based on XRAY YAML Rule | 基于 XRAY YAML 规则的超轻量快速漏洞扫描引擎 | 基于 ANTLR 实现语法分析和完整的 XRAY YAML 规则实现 | 简单…
  ☆182Jul 10, 2025Updated 7 months ago
• triplexlove / javasocket

  View on GitHub
  java实现反序列化建立socket连接
  ☆60Dec 27, 2024Updated last year
• ImCoriander / ZeroEye

  View on GitHub
  自动化找白文件，用于扫描 EXE 文件的导入表，列出导入的DLL文件，并筛选出非系统DLL，符合条件的文件将被复制到特定的 X64 或 X86 文件夹
  ☆564Dec 14, 2025Updated 2 months ago
• nex121 / RuoyiGui

  View on GitHub
  ☆26Dec 13, 2024Updated last year
• Lotus6 / ConfluenceMemshell

  View on GitHub
  Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎 内存马注入
  ☆553Feb 1, 2024Updated 2 years ago
• lypd0 / DeadPotato

  View on GitHub
  DeadPotato is a windows privilege escalation utility from the Potato family of exploits, leveraging the SeImpersonate right to obtain SYS…
  ☆462Aug 17, 2024Updated last year
• wjlin0 / riverPass

  View on GitHub
  riverPass 是一个用Go编写的瑞数WAF绕过工具。它利用了WebSocket协议，将请求发送的自身浏览器中，从而绕过了瑞数WAF的检测。
  ☆234Oct 18, 2024Updated last year
• Symph0nia / Coda

  View on GitHub
  入侵痕迹清理/Cleaning up traces of intrusion
  ☆244Nov 6, 2024Updated last year
• l3yx / jdwp-codeifier

  View on GitHub
  基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本（动态执行Java/Js代码并获得回显）
  ☆321Dec 22, 2024Updated last year
• tarihub / blackjump

  View on GitHub
  JumpServer 堡垒机未授权综合漏洞利用, Exploit for CVE-2023-42442 / CVE-2023-42820 / RCE 2021
  ☆272Jun 6, 2025Updated 9 months ago
• qigpig / Ghosting-BOF

  View on GitHub
  主要用于隐藏进程真实路径，进程带windows真签名
  ☆119Oct 15, 2024Updated last year
• berryalen02 / PECracker

  View on GitHub
  针对PE文件的分离的攻防对抗工具，红队、研究者的好帮手。目前支持文件头伪装、证书区段感染。A no-kill confrontation tool for the separation of PE files, a good helper for red teams and…
  ☆287Aug 20, 2024Updated last year
• veo / ebpf_shell

  View on GitHub
  ebpf WebShell/内核马，一种新型内核马/WebShell技术
  ☆352Jan 8, 2024Updated 2 years ago
• Hutt0n0 / ActiveMqRCE

  View on GitHub
  用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用 内存马注入
  ☆288Nov 20, 2023Updated 2 years ago
• Lotus6 / JavaGadgetGenerator

  View on GitHub
  JavaGadgetGenerator 工具，支持 ysoserial，Hessian，字节码，Expr/SSTI，Shiro，JDBC 等 Gadget 生成，封装，混淆，出网延迟探测，内存马注入等...
  ☆548Dec 7, 2025Updated 3 months ago
• Pizz33 / JoJoLoader

  View on GitHub
  助力红队成员一键生成免杀木马，使用rust实现 | Help Redteam members generate Evasive Anti-virus software Trojan
  ☆612Aug 7, 2024Updated last year
• Mr-r00t11 / CVE-2024-37081

  View on GitHub
  A local privilege escalation vulnerability in VMware vCenter Server (and VMware Cloud Foundation) caused by a misconfiguration of sudo, a…
  ☆58Jul 9, 2024Updated last year
• qi4L / WeblogicScan-go

  View on GitHub
  WeblogicScan一键检测
  ☆127May 6, 2024Updated last year
• hakaioffsec / CVE-2024-21338

  View on GitHub
  Local Privilege Escalation from Admin to Kernel vulnerability on Windows 10 and Windows 11 operating systems with HVCI enabled.
  ☆315Apr 16, 2024Updated last year
• DeEpinGh0st / MDUT-Extend-Release

  View on GitHub
  MDUT-Extend(扩展版本)
  ☆797Dec 19, 2024Updated last year
• 0xchang / DockerApiRCE

  View on GitHub
  DockerApiRCE
  ☆235Oct 22, 2024Updated last year
• novysodope / javaeasyscan

  View on GitHub
  javaeasyscanner - 富婆系列，代码审计辅助工具，致力于解放大脑，方便双手
  ☆276Jun 18, 2024Updated last year
• Phelaine / SinkFinder

  View on GitHub
  闭源系统半自动漏洞挖掘工具，针对 jar/war/zip 进行静态代码分析，输出从source到sink的可达路径。LLM将验证路径可达性，并根据上下文给出该路径可信分数
  ☆503Jan 12, 2026Updated last month
• P001water / yuze

  View on GitHub
  A socksv5 proxy tool Written by CLang. 一款纯C实现的轻量内网穿透工具，支持正向，反向socks5代理隧道的搭建，支持跨平台使用。
  ☆466Mar 2, 2025Updated last year
• Neo-Maoku / SearchAvailableExe

  View on GitHub
  寻找可利用的白文件
  ☆556Aug 18, 2025Updated 6 months ago
• Conan924 / GodInfo

  View on GitHub
  GodInfo 是一个功能全面的后渗透信息和凭据收集工具，旨在帮助安全测试人员在获得授权访问权限后，快速收集目标系统的信息和凭据。
  ☆245Apr 29, 2025Updated 10 months ago
• suizhibo / MemShellGene

  View on GitHub
  一款Java内存马生成、测试工具，搭配@ax1sX的MemShell食用。
  ☆261Feb 15, 2026Updated 3 weeks ago
• xsshim / GzWebsocket

  View on GitHub
  哥斯拉webshell管理工具的插件，用于连接websocket型webshell
  ☆176Apr 17, 2024Updated last year
• Y3A / CVE-2023-28229

  View on GitHub
  ☆137Jan 8, 2024Updated 2 years ago
• Janhsu / DockerAPITool

  View on GitHub
  DockerRemoteAPI未授权访问(2375端口)利用工具，支持容器逃逸
  ☆67Dec 29, 2024Updated last year
• Dor00tkit / CVE-2024-30090

  View on GitHub
  CVE-2024-30090 - LPE PoC
  ☆108Oct 17, 2024Updated last year
• yj94 / BinarySpy

  View on GitHub
  一个手动或自动patch shellcode到二进制文件的免杀工具/A tool for manual or automatic patch shellcode into binary file oder to bypass AV.
  ☆562May 30, 2025Updated 9 months ago
• kN6jq / JeecgCracker

  View on GitHub
  JeecgCracker 是一个专门针对 JeecgBoot 框架的密码爆破工具。
  ☆29Oct 29, 2024Updated last year