qi4L / Ysoserial-goView external linksLinks
A Go library for generating Java deserialization payloads.
☆155Sep 9, 2024Updated last year
Alternatives and similar repositories for Ysoserial-go
Users that are interested in Ysoserial-go are comparing it to the libraries listed below
Sorting:
- EDR绕过demo☆294Jan 14, 2024Updated 2 years ago
- Callback Function Loader Implemented in Go☆140Mar 26, 2024Updated last year
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆545Mar 6, 2025Updated 11 months ago
- Java Js Engine Payloads All in one☆289Aug 21, 2023Updated 2 years ago
- JNDI在java高版本的利用工具,FUZZ利用链☆597Oct 8, 2022Updated 3 years ago
- 基于golang实现的impacket☆246Aug 28, 2023Updated 2 years ago
- kill windows log☆45Mar 26, 2024Updated last year
- 一款支持自定义的 Java 回显载荷生成工具|A customizable Java echo payload generation tool.☆461Jan 12, 2025Updated last year
- 泛微oa漏洞利用工具☆255Jan 4, 2023Updated 3 years ago
- Java web路由内存分析工具☆437May 22, 2025Updated 8 months ago
- rmi打内存马工具,适用于目标用不了ldap的情况☆254Jul 12, 2023Updated 2 years ago
- 域内自动化信息搜集利用工具☆468Oct 24, 2023Updated 2 years ago
- 命令执行不回显但DNS协议出网的命令回显场景解决方案(修改为使用ceye接收请求,添加自定义DNS服务器)☆292Aug 20, 2023Updated 2 years ago
- WeblogicScan一键检测☆128May 6, 2024Updated last year
- 无需文件落地Agent内存马生成器☆248May 30, 2024Updated last year
- webshell manager libraries | 网站管理工具☆148Jul 23, 2022Updated 3 years ago
- Nacos JRaft Hessian 反序列化 RCE EXP☆65Jun 13, 2023Updated 2 years ago
- 一款专注于 Java 主流 Web 中间件的内存马快速生成工具,致力于简化安全研究人员和红队成员的工作流程,提升攻防效率☆1,338Feb 8, 2026Updated last week
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆108Jan 8, 2021Updated 5 years ago
- Mssql利用工具☆276Aug 7, 2023Updated 2 years ago
- Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency☆1,049Oct 7, 2022Updated 3 years ago
- DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名 产品(fuzz.red),Alphalog与传统DNSLog不同,更快、更安全。☆456Aug 20, 2025Updated 5 months ago
- Exchange 服务器安全性的辅助测试工具☆332Jul 21, 2023Updated 2 years ago
- 项目监控工具 以及 Codeql 自动运行☆313Apr 13, 2023Updated 2 years ago
- ZKar is a Java serialization protocol analysis tool implement in Go.☆643Feb 15, 2025Updated last year
- JavaPassDump☆272Jan 7, 2022Updated 4 years ago
- 获取服务器或域控登录日志☆276Sep 8, 2023Updated 2 years ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- frp修改版,增加socks、pf命令,便捷启用socks5代理、端口转发,且去除流量特征,增加loadini命令,支持命令行参数导入base64编码的配置文件☆103Dec 5, 2021Updated 4 years ago
- 添加计划任务方法集合☆309Aug 6, 2023Updated 2 years ago
- K8S安全攻防思维导图 | Docker安全攻防思维导图☆417Jun 22, 2022Updated 3 years ago
- OrcaC2是一款基于Websocket加密通信的多功能C&C框架,使用Golang实现。☆676Dec 30, 2022Updated 3 years ago
- 不那么一样的 Java Agent 内存马☆289Nov 27, 2023Updated 2 years ago
- 一个提供查询 TXT 记录的 DNS 服务利用工具。例如:可配合 Windows 下的 certutil 工具传输小文件(64KB)☆37Dec 31, 2021Updated 4 years ago
- 用于解决判断出网情况的问题,以http、ldap、rmi以及socket形式批量监听端口,在web界面进行结果查看☆127Apr 17, 2023Updated 2 years ago
- 适用于某EHR&HRM的加解密工具,可直接用于sqlmap☆25Jan 14, 2024Updated 2 years ago
- 一种通过进程注入实现强制关闭部分杀软进程的方法(以360安全卫士和360杀毒为例)☆138Dec 26, 2023Updated 2 years ago
- 一款用Go语言编写的数据库自动化提权工具,支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接☆858Aug 30, 2023Updated 2 years ago
- Hyuga is a tool for monitoring Out-of-Band (OOB) traffic, supporting DNS, HTTP, LDAP, RMI, and DNS-Rebinding。🪤☆539Dec 27, 2025Updated last month