Alternatives and similar repositories for Struts2-Vuln-Demo

Users that are interested in Struts2-Vuln-Demo are comparing it to the libraries listed below

• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,015Oct 15, 2020Updated 5 years ago
• Y4er / WebLogic-Shiro-shell

  View on GitHub
  WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞，一键注册蚁剑filter内存shell
  ☆535Aug 25, 2020Updated 5 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• QAX-A-Team / WeblogicEnvironment

  View on GitHub
  Weblogic环境搭建工具
  ☆796Apr 23, 2020Updated 5 years ago
• pmiaowu / log4j2Scan

  View on GitHub
  用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件
  ☆213Apr 18, 2023Updated 2 years ago
• r35tart / RedisWriteFile

  View on GitHub
  通过 Redis 主从写出无损文件
  ☆719May 25, 2020Updated 5 years ago
• bitterzzZZ / MemoryShellLearn

  View on GitHub
  分享几个直接可用的内存马，记录一下学习过程中看过的文章
  ☆975Mar 23, 2022Updated 3 years ago
• keven1z / weblogic_memshell

  View on GitHub
  适用于weblogic和Tomcat的无文件的内存马(memshell)
  ☆269Mar 4, 2022Updated 3 years ago
• threedr3am / learnjavabug

  View on GitHub
  Java安全相关的漏洞和技术demo，原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…
  ☆2,689Mar 14, 2024Updated last year
• Ares-X / shiro-exploit

  View on GitHub
  Shiro反序列化利用工具，支持新版本(AES-GCM)Shiro的key爆破，配合ysoserial，生成回显Payload
  ☆898May 28, 2021Updated 4 years ago
• haby0 / sec-note

  View on GitHub
  记录各语言、框架中危险的sink，个人代码审计、漏洞研究使用。
  ☆117Dec 30, 2021Updated 4 years ago
• SummerSec / JavaLearnVulnerability

  View on GitHub
  Java漏洞学习笔记 Deserialization Vulnerability
  ☆945Jun 14, 2023Updated 2 years ago
• sie504 / Struts-S2-xxx

  View on GitHub
  整理收集Struts2漏洞环境
  ☆270Jan 9, 2018Updated 8 years ago
• 5up3rc / weblogic_cmd

  View on GitHub
  weblogic t3 deserialization rce
  ☆268Jul 13, 2017Updated 8 years ago
• LandGrey / spring-boot-upload-file-lead-to-rce-tricks

  View on GitHub
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆753Apr 14, 2021Updated 4 years ago
• feihong-cs / JspMaster-Deprecated

  View on GitHub
  一款基于webshell命令执行功能实现的GUI webshell管理工具，支持流量加密
  ☆218Jun 4, 2021Updated 4 years ago
• woodpecker-framework / woodpecker-framework-release

  View on GitHub
  高危漏洞精准检测与深度利用框架
  ☆1,456Jan 8, 2023Updated 3 years ago
• threedr3am / ZhouYu

  View on GitHub
  （周瑜）Java - SpringBoot 持久化 WebShell（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
  ☆615Dec 29, 2021Updated 4 years ago
• wyzxxz / jndi_tool

  View on GitHub
  JNDI服务利用工具 RMI/LDAP，支持部分场景回显、内存shell，高版本JDK场景下利用等，fastjson rce命令执行，log4j rce命令执行 漏洞检测辅助工具
  ☆2,011May 21, 2024Updated last year
• zu1k / xray-crack

  View on GitHub
  xray社区高级版证书生成，仅供学习研究，正常使用请支持正版。removed due to Chaitin requirements & support to version 1.4.4 & learning purpose
  ☆443Nov 11, 2020Updated 5 years ago
• woodpecker-framework / ysoserial-for-woodpecker

  View on GitHub
  给woodpecker框架量身定制的ysoserial
  ☆607Oct 26, 2022Updated 3 years ago
• potats0 / javaSerializationTools

  View on GitHub
  ☆143Jan 21, 2021Updated 5 years ago
• iSafeBlue / fastjson-autotype-bypass-demo

  View on GitHub
  fastjson 1.2.68 版本 autotype bypass
  ☆142Jun 17, 2022Updated 3 years ago
• safe6Sec / Fastjson

  View on GitHub
  Fastjson姿势技巧集合
  ☆1,822Oct 20, 2023Updated 2 years ago
• pmiaowu / BurpShiroPassiveScan

  View on GitHub
  一款基于BurpSuite的被动式shiro检测插件
  ☆1,790Dec 14, 2022Updated 3 years ago
• rabbitmask / SB-Actuator

  View on GitHub
  Spring Boot Actuator未授权访问【XXE、RCE】单/多目标检测
  ☆521May 21, 2020Updated 5 years ago
• phith0n / JavaThings

  View on GitHub
  Share Things Related to Java - Java安全漫谈笔记相关内容
  ☆1,986Apr 9, 2025Updated 10 months ago
• safe6Sec / PentestDB

  View on GitHub
  各种数据库的利用姿势
  ☆1,034Jan 3, 2025Updated last year
• xfiftyone / STS2G

  View on GitHub
  Struts2漏洞扫描利用工具 - Golang版. Struts2 Scanner Written in Golang
  ☆573Jan 10, 2022Updated 4 years ago
• Adminisme / ServerScan

  View on GitHub
  ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。
  ☆1,632Jun 16, 2024Updated last year
• cn-panda / JavaCodeAudit

  View on GitHub
  Getting started with java code auditing 代码审计入门的小项目
  ☆930Feb 22, 2023Updated 2 years ago
• longofo / rmi-jndi-ldap-jrmp-jmx-jms

  View on GitHub
  rmi、jndi、ldap、jrmp、jmx、jms一些demo测试
  ☆310Jun 17, 2022Updated 3 years ago
• fupinglee / JavaTools

  View on GitHub
  一些Java编写的小工具。
  ☆318Aug 5, 2021Updated 4 years ago
• boy-hack / wooyun-payload

  View on GitHub
  从wooyun中提取的payload，以及burp插件
  ☆840Jun 17, 2022Updated 3 years ago
• broken5 / WebAliveScan

  View on GitHub
  对目标域名进行快速的存活扫描、简单的指纹识别、目录扫描
  ☆915Dec 8, 2022Updated 3 years ago
• Ch1ngg / WebLogicPasswordDecryptorUi

  View on GitHub
  解密weblogic AES或DES加密方法
  ☆232Dec 3, 2020Updated 5 years ago
• exp1orer / JNDI-Inject-Exploit

  View on GitHub
  解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
  ☆770Jan 26, 2022Updated 4 years ago
• su18 / JDBC-Attack

  View on GitHub
  JDBC Connection URL Attack
  ☆438Sep 10, 2021Updated 4 years ago
• iceyhexman / flask_memory_shell

  View on GitHub
  Flask 内存马
  ☆312Mar 26, 2021Updated 4 years ago