vulhub / JNDIExploitLinks

A malicious LDAP server for JNDI injection attacks

☆52

Alternatives and similar repositories for JNDIExploit

Users that are interested in JNDIExploit are comparing it to the libraries listed below

Sorting:

ax1sX / SpringSecurity
A list for Spring Security
☆127Updated 2 years ago
Le1a / CVE-2023-33246
Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit
☆82Updated 2 years ago
threedr3am / dubbo-exp
dubbo快速利用exp，基本上老版本覆盖100%。
☆161Updated 6 months ago
cwkiller / ClassLinefix
Java bytecode line number restoration tool
☆132Updated 4 months ago
passer-W / snakeyaml-memshell
springboot跨线程注入内存马
☆123Updated 3 years ago
webraybtl / ysoserialbtl
基于ysoserial扩展命令执行结果回显，生成冰蝎内存马
☆89Updated 2 years ago
woodpecker-appstore / java-memshell-generator
Java 内存马生成插件
☆54Updated 2 years ago
FFreestanding / JavaUnserializeChain
自己积累的一些Java反序列化利用链
☆91Updated 2 years ago
Wrin9 / weaverOA_sql_RCE
泛微OA_V9全版本的SQL远程代码执行漏洞
☆157Updated 3 years ago
cokeBeer / pyyso
pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550,…
☆55Updated 3 years ago
R17a-17 / JavaVulnSummary
Java漏洞分析汇合
☆142Updated 4 years ago
Lonely-night / fastjsonVul
fastjson 80 远程代码执行漏洞复现
☆199Updated 3 years ago
SuperZero / CVE-2023-33246
Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit
☆111Updated 2 years ago
AlphabugX / godzilla_decode
Godzilla java Decode,哥斯拉jsp(内存马)流量解密
☆113Updated 4 years ago
woodpecker-appstore / springboot-vuldb
☆70Updated 4 years ago
whwlsfb / cve-2022-22947-godzilla-memshell
CVE-2022-22947 注入Godzilla内存马
☆210Updated 3 years ago
YYHYlh / Dubbo-Scan
一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。
☆171Updated 2 years ago
webraybtl / zentaopms_poc
禅道相关poc
☆173Updated last year
qi4L / Ysoserial-go
A Go library for generating Java deserialization payloads.
☆155Updated last year
hanc00l / pocGoby2Xray
将Goby的json格式Poc转为xray的yaml格式Poc
☆132Updated 3 years ago
p1n93r / SpringBootAdmin-thymeleaf-SSTI
SpringBootAdmin-thymeleaf-SSTI which can cause RCE
☆86Updated 2 years ago
0range-x / dragon-lab
☆57Updated 2 years ago
turn1tup / JspEncounter
☆122Updated 2 years ago
lz2y / DubboPOC
Apache Dubbo漏洞测试Demo及其POC
☆65Updated 2 years ago
ax1sX / MemShell
MemShell List
☆90Updated 2 years ago
YYHYlh / Apache-Dubbo-CVE-2023-23638-exp
Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
☆230Updated 2 years ago
cwkiller / JDBC-PROXY-Bypass
利用代理驱动绕过JDBC Attack检测
☆143Updated 7 months ago
KpLi0rn / ysoserial
在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
☆68Updated 4 years ago
8ypass / weblogicExploit
weblogic历史漏洞利用工具
☆91Updated 3 years ago
freeFV / ShortPayload
如何将Java反序列化Payload极致缩小
☆68Updated 4 years ago