r00t4dm/aLIEz

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/r00t4dm/aLIEz)

r00t4dm / aLIEz

☆197

Alternatives and similar repositories for aLIEz

Users that are interested in aLIEz are comparing it to the libraries listed below

Sorting:

novysodope / RMI_Inj_MemShell
View on GitHub
rmi打内存马工具，适用于目标用不了ldap的情况
☆253Jul 12, 2023Updated 2 years ago
yzddmr6 / ASP.NET-Memshell-Scanner
View on GitHub
asp.net内存马检测工具
☆283Aug 22, 2023Updated 2 years ago
keven1z / weblogic_memshell
View on GitHub
适用于weblogic和Tomcat的无文件的内存马(memshell)
☆269Mar 4, 2022Updated 4 years ago
c0ny1 / java-memshell-scanner
View on GitHub
通过jsp脚本扫描java web Filter/Servlet型内存马
☆988Mar 9, 2023Updated 3 years ago
LandGrey / copagent
View on GitHub
java memory web shell extracting tool
☆497May 17, 2021Updated 4 years ago
Schira4396 / VcenterKiller
View on GitHub
一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
☆1,467Apr 25, 2024Updated last year
huoji120 / DuckMemoryScan
View on GitHub
检测绝大部分所谓的内存免杀马
☆735Sep 15, 2022Updated 3 years ago
welk1n / FastjsonPocs
View on GitHub
一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
☆56Oct 29, 2019Updated 6 years ago
yzddmr6 / Java-Shellcode-Loader
View on GitHub
基于Java实现的Shellcode加载器
☆414Sep 4, 2023Updated 2 years ago
OneSourceCat / XxlJob-Hessian-RCE
View on GitHub
XxlJob<=2.1.2配置不当情况下反序列化RCE
☆120Nov 2, 2020Updated 5 years ago
sv3nbeast / DnslogCmdEcho
View on GitHub
命令执行不回显但DNS协议出网的命令回显场景解决方案
☆277Jan 10, 2023Updated 3 years ago
ce-automne / TomcatMemShell
View on GitHub
拿来即用的Tomcat7/8/9/10版本Listener/Filter/Servlet内存马，支持注入CMD内存马和冰蝎内存马
☆511Aug 31, 2022Updated 3 years ago
i11us0ry / winlog
View on GitHub
一款基于go的windows信息收集工具，主要收集目标机器rdp端口、mstsc远程连接记录、mstsc密码和安全事件中4624、4625登录事件记录
☆289Jul 18, 2022Updated 3 years ago
Rvn0xsy / PassDecode-jar
View on GitHub
帆软/致远密码解密工具
☆359Jul 29, 2021Updated 4 years ago
pen4uin / java-echo-generator
View on GitHub
一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
☆461Jan 12, 2025Updated last year
Hel10-Web / Databasetools
View on GitHub
一款用Go语言编写的数据库自动化提权工具，支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接
☆860Aug 30, 2023Updated 2 years ago
UzJu / Cloud-Bucket-Leak-Detection-Tools
View on GitHub
六大云存储，泄露利用检测工具
☆1,243Mar 28, 2025Updated 11 months ago
kezibei / Urldns
View on GitHub
☆342Updated this week
pmiaowu / log4j2Scan
View on GitHub
用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件
☆213Apr 18, 2023Updated 2 years ago
a1phaboy / FastjsonScan
View on GitHub
Fastjson扫描器，可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
☆1,049Oct 7, 2022Updated 3 years ago
geekmc / FindShell
View on GitHub
内存马查杀工具，尤其针对Agent型，原理是dump出JVM当前的class并进行字节码分析，并加入自动修复的功能
☆179May 10, 2023Updated 2 years ago
woodpecker-appstore / weblogic-infodetector
View on GitHub
woodpecker框架weblogic信息探测插件
☆185Mar 23, 2022Updated 3 years ago
safe6Sec / PentestDB
View on GitHub
各种数据库的利用姿势
☆1,033Jan 3, 2025Updated last year
hayasec / 360SafeBrowsergetpass
View on GitHub
这是一个一键辅助抓取360安全浏览器密码的CobaltStrike脚本以及解密小工具，用于节省红队工作量，通过下载浏览器数据库、记录密钥来离线解密浏览器密码。
☆638Apr 4, 2021Updated 4 years ago
z1un / Z1-AggressorScripts
View on GitHub
适用于Cobalt Strike的插件
☆561May 30, 2021Updated 4 years ago
wuppp / releaseBehinderShell
View on GitHub
卸载冰蝎内存马
☆68Apr 13, 2021Updated 4 years ago
amaz1ngday / fastjson-exp
View on GitHub
fastjson利用，支持tomcat、spring回显，哥斯拉内存马；回显利用链为dhcp、ibatis、c3p0。
☆326Mar 15, 2022Updated 3 years ago
0671 / RedisModules-ExecuteCommand-for-Windows
View on GitHub
可在Windows下执行系统命令的Redis模块，可用于Redis主从复制攻击。
☆264Nov 25, 2022Updated 3 years ago
exp1orer / JNDI-Inject-Exploit
View on GitHub
解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
☆769Jan 26, 2022Updated 4 years ago
threedr3am / JSP-WebShells
View on GitHub
Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
☆1,404Jan 18, 2022Updated 4 years ago
feihong-cs / memShell
View on GitHub
FilterBased/ServletBased in memory shell for Tomcat and some other middlewares
☆383Nov 6, 2020Updated 5 years ago
sp4zcmd / WeblogicExploit-GUI
View on GitHub
Weblogic漏洞利用图形化工具支持注入内存马、一键上传webshell、命令执行
☆775Apr 20, 2022Updated 3 years ago
yanghaoi / CobaltStrike_CNA
View on GitHub
使用多种WinAPI进行权限维持的CobaltStrike脚本，包含API设置系统服务，设置计划任务，管理用户等。
☆555Jan 18, 2022Updated 4 years ago
wyzxxz / jndi_tool
View on GitHub
JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行漏洞检测辅助工具
☆2,011May 21, 2024Updated last year
4ra1n / shell-analyzer
View on GitHub
通过 JAVA AGENT 查杀内存马，提供简易方便的 GUI 界面，一键反编译目标环境内存马进行分析，支持远程查杀和本地查杀（注意：仅供本地复现分析学习，请勿用于正式和生产环境）
☆584Dec 4, 2024Updated last year
A0WaQ4 / HexDnsEchoT
View on GitHub
命令执行不回显但DNS协议出网的命令回显场景解决方案（修改为使用ceye接收请求，添加自定义DNS服务器）
☆292Aug 20, 2023Updated 2 years ago
Ppsoft1991 / CodeReviewTools
View on GitHub
通过正则搜索、批量反编译特定Jar包中的class名称
☆321Dec 9, 2021Updated 4 years ago
safe6Sec / Fastjson
View on GitHub
Fastjson姿势技巧集合
☆1,829Oct 20, 2023Updated 2 years ago
r00tSe7en / JNDIMonitor
View on GitHub
一个LDAP请求监听器，摆脱dnslog平台
☆292Apr 7, 2023Updated 2 years ago