shanshanerxi/Memory-horse

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/shanshanerxi/Memory-horse)

shanshanerxi / Memory-horse

关于内存马的学习研究支持新手从0到1，从内存马原理，内存马植入内存马检测到内存马防御与内存马应急以及内存马查杀全系列java内存马/php/.net/c++/python 喜欢可以点个star 后续持续更新

☆141

Alternatives and similar repositories for Memory-horse

Users that are interested in Memory-horse are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

Conan924 / NacosExploit
View on GitHub
NacosExploit 命令执行内存马等利用
☆215Jul 18, 2024Updated last year
unam4 / fineldapc
View on GitHub
某软最新公开gadgegt,新加入不出网利用。
☆89Sep 6, 2024Updated last year
Lotus6 / JavaGadgetGenerator
View on GitHub
JavaGadgetGenerator 工具，支持 ysoserial，Hessian，字节码，Expr/SSTI，Shiro，JDBC 等 Gadget 生成，封装，混淆，出网延迟探测，内存马注入等...
☆553Dec 7, 2025Updated 3 months ago
1ucky7 / MySQL_Fake_Server_for_woodpecker_yso
View on GitHub
MySQL_Fake_Server-啄木鸟yso适配版
☆45Sep 20, 2024Updated last year
suizhibo / MemShellGene
View on GitHub
一款Java内存马生成、测试工具，搭配@ax1sX的MemShell食用。
☆262Feb 15, 2026Updated last month
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
xsshim / GzWebsocket
View on GitHub
哥斯拉webshell管理工具的插件，用于连接websocket型webshell
☆176Apr 17, 2024Updated last year
novysodope / javaeasyscan
View on GitHub
javaeasyscanner - 富婆系列，代码审计辅助工具，致力于解放大脑，方便双手
☆278Jun 18, 2024Updated last year
Zjackky / CodeScan
View on GitHub
一款轻量级匹配Sink点的代码审计扫描器，为了帮助红队过程中快速代码审计的小工具
☆409Oct 6, 2024Updated last year
ReaJason / MemShellParty
View on GitHub
一款专注于 Java 主流 Web 中间件的内存马快速生成工具，致力于简化安全研究人员和红队成员的工作流程，提升攻防效率
☆1,375Mar 21, 2026Updated last week
K-7H7l / Jeecg_Tools
View on GitHub
本工具为jeecg框架漏洞利用工具非jeecg-boot！
☆183Aug 13, 2024Updated last year
yuxianzi / FrchannelPlus
View on GitHub
帆软bi反序列化漏洞利用工具
☆56Jun 4, 2024Updated last year
YYHYlh / Dubbo-Scan
View on GitHub
一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。
☆171Aug 9, 2023Updated 2 years ago
ekkoo-z / Z-Godzilla_ekp
View on GitHub
哥斯拉webshell管理工具二次开发规避流量检测设备
☆1,052Dec 2, 2025Updated 3 months ago
Whoopsunix / JavaRce
View on GitHub
Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
☆544Mar 6, 2025Updated last year
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
Lotus6 / ConfluenceMemshell
View on GitHub
Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎内存马注入
☆555Feb 1, 2024Updated 2 years ago
pen4uin / java-echo-generator
View on GitHub
一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
☆462Jan 12, 2025Updated last year
MInggongK / jeecg-
View on GitHub
jeecg综合漏洞利用工具
☆430Aug 30, 2024Updated last year
0xf4n9x / CDGXStreamDeserRCE
View on GitHub
亿赛通电子文档安全管理系统XStream反序列化漏洞任意文件上传利用
☆120Aug 9, 2024Updated last year
geekmc / FindShell
View on GitHub
内存马查杀工具，尤其针对Agent型，原理是dump出JVM当前的class并进行字节码分析，并加入自动修复的功能
☆180May 10, 2023Updated 2 years ago
veo / vagent
View on GitHub
多功能 java agent 内存马
☆514Oct 8, 2023Updated 2 years ago
leveryd / x-waf
View on GitHub
让"WAF绕过"变得简单
☆432Jan 26, 2025Updated last year
BambiZombie / FrchannelPlus
View on GitHub
帆软bi反序列化漏洞利用工具
☆191Mar 23, 2024Updated 2 years ago
yulate / jdbc-tricks
View on GitHub
《深入JDBC安全：特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…
☆572Feb 7, 2026Updated last month
DigitalOcean Gradient AI Platform • Ad
Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
suizhibo / MemShellKiller
View on GitHub
基于Agent技术实现的Java内存马查杀、防护工具。
☆94Jul 25, 2024Updated last year
bmth666 / Yongyou-Unserialize-plus
View on GitHub
用友的一些反序列化链子以及1day，二开了狼组的YongYouNcTool，改了一下逻辑以及poc
☆125Oct 12, 2024Updated last year
Getshell / Mshell
View on GitHub
Memshell-攻防内存马研究
☆954Apr 13, 2025Updated 11 months ago
achuna33 / Memoryshell-JavaALL
View on GitHub
收集内存马打入方式
☆507May 20, 2022Updated 3 years ago
lemono0 / FastJsonParty
View on GitHub
FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本)，主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用
☆1,188Jul 12, 2024Updated last year
winezer0 / APIFinderPlus
View on GitHub
目标是成为当下最完善的API挖掘工具，实现自动提取响应敏感信息、URI信息，并且对URI进行自动|手动递归检查
☆257Aug 16, 2025Updated 7 months ago
RuoJi6 / xxl-job-FLM
View on GitHub
xxl-job内存马
☆228Jan 26, 2025Updated last year
lintstar / CS-AutoPostChain
View on GitHub
基于 OPSEC 的 CobaltStrike 后渗透自动化链
☆452Mar 11, 2024Updated 2 years ago
MInggongK / Penetration-mining-src
View on GitHub
一款集成了H3C,致远，泛微，万户，帆软，海康威视，金蝶云星空，畅捷通，Struts等多个RCE漏洞利用工具
☆235Jul 28, 2024Updated last year
Managed Database hosting by DigitalOcean • Ad
PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
AfterSnows / ApricusFindEvil
View on GitHub
检测查杀java内存马
☆127Dec 5, 2023Updated 2 years ago
Esonhugh / yapi-rce-webshell
View on GitHub
Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法相比于其他的利用方式更加微操和可控影响更小
☆66Jul 4, 2024Updated last year
EdgeSecurityTeam / command
View on GitHub
红队命令速查是由棱角社区(Edge Forum) 整理的关于 Red Team 期间所常使用的一些基础命令。
☆63Jul 11, 2024Updated last year
pacemrc / VulDebug
View on GitHub
Java漏洞调试分析集合
☆91Mar 11, 2024Updated 2 years ago
wgpsec / YongYouNcTool
View on GitHub
用友NC系列漏洞检测利用工具，支持一键检测、命令执行回显、文件落地、一键打入内存马、文件读取等
☆585Aug 19, 2023Updated 2 years ago
novysodope / RMI_Inj_MemShell
View on GitHub
rmi打内存马工具，适用于目标用不了ldap的情况
☆253Jul 12, 2023Updated 2 years ago
KimJun1010 / inspector
View on GitHub
IDEA代码审计辅助插件（深信服深蓝实验室天威战队强力驱动）
☆583Mar 10, 2025Updated last year