quentinhardy/jndiat

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/quentinhardy/jndiat)

quentinhardy / jndiat

JNDI Attacking Tool

☆246

Alternatives and similar repositories for jndiat

Users that are interested in jndiat are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

mbechler / serjs
View on GitHub
A Java serializer in JavaScript
☆81May 21, 2018Updated 7 years ago
mogwaisec / mjet
View on GitHub
Mogwai Java Management Extensions (JMX) Exploitation Toolkit
☆175Jul 21, 2016Updated 9 years ago
pwntester / JRE8u20_RCE_Gadget
View on GitHub
JRE8u20_RCE_Gadget
☆255Jul 1, 2016Updated 9 years ago
nccgroup / freddy
View on GitHub
Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans
☆584Sep 7, 2021Updated 4 years ago
waderwu / attackRmi
View on GitHub
attackRmi
☆258Oct 14, 2020Updated 5 years ago
Wordpress hosting with auto-scaling - Free Trial • Ad
Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
wh1t3p1g / ysomap
View on GitHub
A helpful Java Deserialization exploit framework.
☆1,242Feb 17, 2025Updated last year
c0ny1 / java-object-searcher
View on GitHub
java内存对象搜索辅助工具
☆823Sep 23, 2022Updated 3 years ago
airman604 / jdbc-backdoor
View on GitHub
A fake JDBC driver that allows OS command execution.
☆126Oct 2, 2022Updated 3 years ago
NickstaDB / BaRMIe
View on GitHub
Java RMI enumeration and attack tool.
☆742Sep 28, 2017Updated 8 years ago
feihong-cs / Java-Rce-Echo
View on GitHub
Java RCE 回显测试代码
☆1,017Oct 15, 2020Updated 5 years ago
Coalfire-Research / java-deserialization-exploits
View on GitHub
A collection of curated Java Deserialization Exploits
☆592May 16, 2021Updated 4 years ago
lufeirider / CVE-2019-2725
View on GitHub
CVE-2019-2725 命令回显
☆435May 8, 2023Updated 2 years ago
kyo-w / router-router
View on GitHub
Java web路由内存分析工具
☆439May 22, 2025Updated 10 months ago
mogwailabs / rmi-deserialization
View on GitHub
Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
☆101Sep 20, 2019Updated 6 years ago
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
quentinhardy / scriptsAndExploits
View on GitHub
Some scripts and exploits
☆149Jul 9, 2018Updated 7 years ago
pyn3rd / CVE-2018-3245
View on GitHub
CVE-2018-3245-PoC
☆172Jul 13, 2021Updated 4 years ago
NickstaDB / SerializationDumper
View on GitHub
A tool to dump Java serialization streams in a more human readable form.
☆1,069Jun 21, 2024Updated last year
r3dxpl0it / Apache-Superset-Remote-Code-Execution-PoC-CVE-2018-8021
View on GitHub
CVE-2018-8021 Proof-Of-Concept and Exploit
☆106Dec 3, 2018Updated 7 years ago
BishopFox / GadgetProbe
View on GitHub
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
☆612Mar 4, 2021Updated 5 years ago
dschadow / Java-Web-Security
View on GitHub
Java-Web-Security - Sichere Webanwendungen mit Java entwickeln
☆222Updated this week
veracode-research / solr-injection
View on GitHub
Apache Solr Injection Research
☆581Jan 28, 2020Updated 6 years ago
codeplutos / java-security-manager-bypass
View on GitHub
☆153Jun 24, 2019Updated 6 years ago
Tr3jer / dnsAutoRebinding
View on GitHub
ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6
☆217Aug 17, 2017Updated 8 years ago
GPU virtual machines on DigitalOcean Gradient AI • Ad
Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
LandGrey / spring-boot-upload-file-lead-to-rce-tricks
View on GitHub
spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
☆754Apr 14, 2021Updated 5 years ago
Ivan1ee / NET-Deserialize
View on GitHub
总结了20+.Net反序列化文章，持续更新
☆750Apr 3, 2024Updated 2 years ago
rebeyond / memShell
View on GitHub
a webshell resides in the memory of java web server
☆701Jun 26, 2018Updated 7 years ago
waderwu / extractor-java
View on GitHub
CodeQL extractor for java, which don't need to compile java source
☆348Nov 25, 2022Updated 3 years ago
quentinhardy / odat
View on GitHub
ODAT: Oracle Database Attacking Tool
☆1,755Mar 31, 2026Updated 2 weeks ago
qtc-de / remote-method-guesser
View on GitHub
Java RMI Vulnerability Scanner
☆918Jul 3, 2024Updated last year
depycode / fastjson-c3p0
View on GitHub
fastjson不出网利用、c3p0
☆257Jul 30, 2021Updated 4 years ago
JackOfMostTrades / gadgetinspector
View on GitHub
A byte code analyzer for finding deserialization gadget chains in Java applications
☆1,079Jun 15, 2021Updated 4 years ago
quentinhardy / msdat
View on GitHub
MSDAT: Microsoft SQL Database Attacking Tool
☆993Aug 1, 2023Updated 2 years ago
Virtual machines for every use case on DigitalOcean • Ad
Get dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
longofo / rmi-jndi-ldap-jrmp-jmx-jms
View on GitHub
rmi、jndi、ldap、jrmp、jmx、jms一些demo测试
☆311Jun 17, 2022Updated 3 years ago
5up3rc / weblogic_cmd
View on GitHub
weblogic t3 deserialization rce
☆268Jul 13, 2017Updated 8 years ago
GrrrDog / Java-Deserialization-Cheat-Sheet
View on GitHub
The cheat sheet about Java Deserialization vulnerabilities
☆3,170May 26, 2023Updated 2 years ago
knownsec / wam
View on GitHub
Web App Monitor
☆227Sep 20, 2018Updated 7 years ago
Yt1g3r / CVE-2019-3396_EXP
View on GitHub
CVE-2019-3396 confluence SSTI RCE
☆174Oct 1, 2020Updated 5 years ago
Arno0x / NtlmRelayToEWS
View on GitHub
ntlm relay attack to Exchange Web Services
☆333Jan 15, 2018Updated 8 years ago
Mel0day / RedTeam-BCS
View on GitHub
BCS（北京网络安全大会）2019 红队行动会议重点内容
☆821Sep 4, 2019Updated 6 years ago