vulhub/JNDIExploit external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

vulhub/JNDIExploit

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/vulhub/JNDIExploit)

Close

vulhub / JNDIExploitView on GitHubMore

• External links
• Readme badge

A malicious LDAP server for JNDI injection attacks

☆52Apr 29, 2023Updated 2 years ago

Alternatives and similar repositories for JNDIExploit

Users that are interested in JNDIExploit are comparing it to the libraries listed below

• X1r0z / spring-amqp-deserialization

  View on GitHub
  PoC of Spring AMQP Deserialization Vulnerability (CVE-2023-34050)
  ☆13Jan 29, 2024Updated 2 years ago
• luelueking / Java-CVE-Lists

  View on GitHub
  ☆19Jun 7, 2023Updated 2 years ago
• hosch3n / FastjsonVulns

  View on GitHub
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆91Sep 2, 2022Updated 3 years ago
• turn1tup / JspEncounter

  View on GitHub
  ☆122Jun 7, 2023Updated 2 years ago
• BeichenDream / GodzillaMemoryShellProject

  View on GitHub
  ☆307Feb 27, 2025Updated last year
• su18 / hack-fastjson-1.2.80

  View on GitHub
  ☆524Sep 16, 2022Updated 3 years ago
• xk4ng / NacosDefaultToken

  View on GitHub
  Alibaba Nacos存在默认token.secret.key，导致远程攻击者可以绕过密钥认证接管Nacos
  ☆19Mar 17, 2023Updated 2 years ago
• safe6Sec / tp3

  View on GitHub
  tp3注入总结
  ☆19Jan 6, 2022Updated 4 years ago
• ZhuriLab / rbacr

  View on GitHub
  针对kubernetes中的RBAC可能被攻击检测工具。Detection tool for possible attacks on RBAC in kubernetes.
  ☆26Jan 4, 2024Updated 2 years ago
• BeichenDream / GodzillaMemoryShellProject.NET

  View on GitHub
  ☆95Nov 26, 2022Updated 3 years ago
• Ridter / PySQLTools

  View on GitHub
  Mssql利用工具
  ☆276Aug 7, 2023Updated 2 years ago
• rebeyond / JNDInjector

  View on GitHub
  一个高度可定制化的JNDI和Java反序列化利用工具
  ☆471Jan 17, 2023Updated 3 years ago
• woodpecker-appstore / yonyou-nc-decrypter

  View on GitHub
  用友 nc 系列密码解密
  ☆61Apr 7, 2023Updated 2 years ago
• Whoopsunix / fastjson_study

  View on GitHub
  Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul
  ☆96Oct 30, 2023Updated 2 years ago
• wgpsec / YongYouNcTool

  View on GitHub
  用友NC系列漏洞检测利用工具，支持一键检测、命令执行回显、文件落地、一键打入内存马、文件读取等
  ☆580Aug 19, 2023Updated 2 years ago
• pen4uin / java-echo-generator

  View on GitHub
  一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
  ☆461Jan 12, 2025Updated last year
• JDArmy / NO445-lateral-movement

  View on GitHub
  command execute without 445 port
  ☆57Feb 25, 2022Updated 4 years ago
• whwlsfb / pty_bind_shell

  View on GitHub
  Pty bind shell for golang 一款基于SSH协议的远控程序
  ☆49Feb 23, 2022Updated 4 years ago
• silentsignal / WebSphere-WSIF-gadget

  View on GitHub
  CVE-2020-4464 / CVE-2020-4450
  ☆35Aug 24, 2021Updated 4 years ago
• hldfight / Tai-e-WebPlugin

  View on GitHub
  Tai-e的Web插件
  ☆23Jun 11, 2024Updated last year
• bravery9 / weblogic_exploit

  View on GitHub
  weblogic漏洞利用工具
  ☆18Jul 16, 2020Updated 5 years ago
• Lotus6 / ConfluenceMemshell

  View on GitHub
  Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎 内存马注入
  ☆554Feb 1, 2024Updated 2 years ago
• cckuailong / JNDI-Injection-Exploit-Plus

  View on GitHub
  80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…
  ☆866Jun 24, 2024Updated last year
• xzxxzzzz000 / impacket-programming-manual

  View on GitHub
  impacket编程手册
  ☆104Oct 13, 2023Updated 2 years ago
• Drun1baby / CTF-Repo-2023

  View on GitHub
  2023 各大 CTF 的比赛附件
  ☆49May 7, 2023Updated 2 years ago
• c0ny1 / java-memshell-scanner

  View on GitHub
  通过jsp脚本扫描java web Filter/Servlet型内存马
  ☆988Mar 9, 2023Updated 2 years ago
• 4ra1n / mysql-fake-server

  View on GitHub
  纯 Java 实现的 MySQL Fake Server | 支持 GUI 版和命令行版 | 支持反序列化和文件读取的利用方式 | 支持常见的 GADGET 和自定义 GADGET 数据 | 根据目标环境自动生成匹配的 PAYLOAD | 支持 PGSQL 和 DERBY …
  ☆825Sep 18, 2023Updated 2 years ago
• Ruil1n / after-deserialization-attack

  View on GitHub
  Java After-Deserialization Attack
  ☆79Apr 26, 2021Updated 4 years ago
• phith0n / zkar

  View on GitHub
  ZKar is a Java serialization protocol analysis tool implement in Go.
  ☆649Feb 15, 2025Updated last year
• achuna33 / Memoryshell-JavaALL

  View on GitHub
  收集内存马打入方式
  ☆506May 20, 2022Updated 3 years ago
• BeichenDream / CVE-2022-26134-Godzilla-MEMSHELL

  View on GitHub
  ☆342Jun 7, 2022Updated 3 years ago
• yzddmr6 / Java-Js-Engine-Payloads

  View on GitHub
  Java Js Engine Payloads All in one
  ☆289Aug 21, 2023Updated 2 years ago
• ReaJason / MemShellParty

  View on GitHub
  一款专注于 Java 主流 Web 中间件的内存马快速生成工具，致力于简化安全研究人员和红队成员的工作流程，提升攻防效率
  ☆1,339Feb 8, 2026Updated 3 weeks ago
• Hutt0n0 / ActiveMqRCE

  View on GitHub
  用java实现构造openwire协议，利用activeMQ < 5.18.3 RCE 回显利用 内存马注入
  ☆288Nov 20, 2023Updated 2 years ago
• Schira4396 / VcenterKiller

  View on GitHub
  一款针对Vcenter的综合利用工具，包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j，提供一键上传webs…
  ☆1,467Apr 25, 2024Updated last year
• R17a-17 / JavaVulnSummary

  View on GitHub
  Java漏洞分析汇合
  ☆142Dec 14, 2021Updated 4 years ago
• pen4uin / java-memshell-generator

  View on GitHub
  一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
  ☆2,151Aug 21, 2025Updated 6 months ago
• KimJun1010 / inspector

  View on GitHub
  IDEA代码审计辅助插件（深信服深蓝实验室天威战队强力驱动）
  ☆581Mar 10, 2025Updated 11 months ago
• XiaoliChan / LDAPShell

  View on GitHub
  A wrapper of ldap_shell.py module which in ntlmrelayx
  ☆62Sep 22, 2022Updated 3 years ago