Alternatives and similar repositories for JNDI-Injection-Bypass

Users that are interested in JNDI-Injection-Bypass are comparing it to the libraries listed below

• artsploit / yaml-payload
  A tiny project for generating SnakeYAML deserialization payloads
  ☆595Updated 6 years ago
• Y4er / CVE-2020-2551
  Weblogic IIOP CVE-2020-2551
  ☆335Updated 5 years ago
• wh1t3p1g / ysoserial
  forked from frohoff/ysoserial and added my own payloads.
  ☆151Updated 5 years ago
• chennqqi / godnslog
  An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
  ☆471Updated last year
• mpgn / Spring-Boot-Actuator-Exploit
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆317Updated 5 years ago
• rebeyond / memShell
  a webshell resides in the memory of java web server
  ☆678Updated 7 years ago
• feihong-cs / Java-Rce-Echo
  Java RCE 回显测试代码
  ☆1,012Updated 4 years ago
• Dliv3 / redis-rogue-server
  Redis 4.x/5.x RCE
  ☆549Updated 4 years ago
• zzwlpx / JNDIExploit
  A malicious LDAP server for JNDI injection attacks
  ☆325Updated 3 years ago
• n0b0dyCN / RedisModules-ExecuteCommand
  Tools, utilities and scripts to help you write redis modules!
  ☆283Updated last year
• LandGrey / spring-boot-upload-file-lead-to-rce-tricks
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆727Updated 4 years ago
• Y4er / CVE-2020-2555
  Weblogic com.tangosol.util.extractor.ReflectionExtractor RCE
  ☆177Updated 2 years ago
• NS-Sp4ce / CVE-2021-21972
  CVE-2021-21972 Exploit
  ☆494Updated 2 years ago
• jas502n / Log4j2-CVE-2021-44228
  Remote Code Injection In Log4j
  ☆468Updated 3 years ago
• phith0n / zkar
  ZKar is a Java serialization protocol analysis tool implement in Go.
  ☆620Updated 4 months ago
• Imanfeng / Apache-Solr-RCE
  Apache Solr Exploits 🌟
  ☆343Updated 4 years ago
• allyshka / Rogue-MySql-Server
  MySQL fake server for read files of connected clients
  ☆599Updated 7 years ago
• 5wimming / gadgetinspector
  利用链、漏洞检测工具
  ☆370Updated 11 months ago
• Y4er / dotnet-deserialization
  dotnet 反序列化学习笔记
  ☆462Updated last year
• su18 / JDBC-Attack
  JDBC Connection URL Attack
  ☆415Updated 3 years ago
• 5up3rc / weblogic_cmd
  weblogic t3 deserialization rce
  ☆270Updated 7 years ago
• yzddmr6 / Java-Shellcode-Loader
  基于Java实现的Shellcode加载器
  ☆410Updated last year
• pwntester / SerialKillerBypassGadgetCollection
  Collection of bypass gadgets to extend and wrap ysoserial payloads
  ☆371Updated 3 years ago
• lufeirider / CVE-2019-2725
  CVE-2019-2725 命令回显
  ☆437Updated 2 years ago
• threedr3am / gadgetinspector
  一个利用ASM对字节码进行污点传播分析的静态代码审计应用（添加了大量代码注释，适合大家进行源码学习）。也加入了挖掘Fastjson反序列化gadget chains和SQLInject（JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等）静…
  ☆449Updated 3 years ago
• wh1t3p1g / ysomap
  A helpful Java Deserialization exploit framework.
  ☆1,219Updated 4 months ago
• cckuailong / JNDI-Injection-Exploit-Plus
  80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…
  ☆808Updated last year
• zema1 / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆356Updated 2 years ago
• woodpecker-framework / ysoserial-for-woodpecker
  给woodpecker框架量身定制的ysoserial
  ☆579Updated 2 years ago
• kxcode / JNDI-Exploit-Bypass-Demo
  Demo code for post <Restrictions of JNDI Manipulation RCE & Bypass>
  ☆261Updated 3 years ago