Alternatives and similar repositories for JNDI-Injection-Bypass

Users that are interested in JNDI-Injection-Bypass are comparing it to the libraries listed below

• Y4er / CVE-2020-2551
  Weblogic IIOP CVE-2020-2551
  ☆334Updated 5 years ago
• artsploit / yaml-payload
  A tiny project for generating SnakeYAML deserialization payloads
  ☆592Updated 6 years ago
• Dliv3 / redis-rogue-server
  Redis 4.x/5.x RCE
  ☆543Updated 4 years ago
• wh1t3p1g / ysoserial
  forked from frohoff/ysoserial and added my own payloads.
  ☆151Updated 5 years ago
• LandGrey / spring-boot-upload-file-lead-to-rce-tricks
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆706Updated 4 years ago
• kxcode / JNDI-Exploit-Bypass-Demo
  Demo code for post <Restrictions of JNDI Manipulation RCE & Bypass>
  ☆261Updated 2 years ago
• mpgn / Spring-Boot-Actuator-Exploit
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆317Updated 4 years ago
• chennqqi / godnslog
  An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability
  ☆469Updated last year
• Imanfeng / Apache-Solr-RCE
  Apache Solr Exploits 🌟
  ☆340Updated 4 years ago
• zzwlpx / JNDIExploit
  A malicious LDAP server for JNDI injection attacks
  ☆319Updated 3 years ago
• feihong-cs / Java-Rce-Echo
  Java RCE 回显测试代码
  ☆1,012Updated 4 years ago
• 5wimming / gadgetinspector
  利用链、漏洞检测工具
  ☆367Updated 9 months ago
• jas502n / Log4j2-CVE-2021-44228
  Remote Code Injection In Log4j
  ☆465Updated 3 years ago
• Y4er / CVE-2020-2555
  Weblogic com.tangosol.util.extractor.ReflectionExtractor RCE
  ☆177Updated 2 years ago
• Y4er / dotnet-deserialization
  dotnet 反序列化学习笔记
  ☆457Updated last year
• phith0n / zkar
  ZKar is a Java serialization protocol analysis tool implement in Go.
  ☆616Updated 3 months ago
• zema1 / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆356Updated 2 years ago
• su18 / JDBC-Attack
  JDBC Connection URL Attack
  ☆413Updated 3 years ago
• allyshka / Rogue-MySql-Server
  MySQL fake server for read files of connected clients
  ☆599Updated 7 years ago
• rebeyond / memShell
  a webshell resides in the memory of java web server
  ☆673Updated 6 years ago
• yzddmr6 / Java-Shellcode-Loader
  基于Java实现的Shellcode加载器
  ☆409Updated last year
• vulhub / redis-rogue-getshell
  redis 4.x/5.x master/slave getshell module
  ☆364Updated 5 years ago
• n0b0dyCN / RedisModules-ExecuteCommand
  Tools, utilities and scripts to help you write redis modules!
  ☆278Updated 10 months ago
• NS-Sp4ce / CVE-2021-21972
  CVE-2021-21972 Exploit
  ☆492Updated last year
• waderwu / attackRmi
  attackRmi
  ☆255Updated 4 years ago
• 0x727 / JNDIExploit
  一款用于JNDI注入利用的工具，大量参考/引用了Rogue JNDI项目的代码，支持直接植入内存shell，并集成了常见的bypass 高版本JDK的方式，适用于与自动化工具配合使用。
  ☆331Updated 2 years ago
• threedr3am / ZhouYu
  （周瑜）Java - SpringBoot 持久化 WebShell 学习demo（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
  ☆599Updated 3 years ago
• threedr3am / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。
  ☆215Updated 3 years ago
• cckuailong / JNDI-Injection-Exploit-Plus
  80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…
  ☆793Updated 10 months ago
• wh1t3p1g / ysomap
  A helpful Java Deserialization exploit framework.
  ☆1,214Updated 3 months ago