jndi
There are 0 repository under jndi topic.
- Language:Java 1179
wuba / Antenna
Antenna是58同城安全团队打造的一款辅助安全从业人员验证网络中多种漏洞是否存在以及可利用性的工具。其基于带外应用安全测试(OAST)通过任务的形式,将不同漏洞场景检测能力通过插件的形式进行集合,通过与目标进行out-bind的数据通信方式进行辅助检测。
Language:JavaScript 711cckuailong / JNDI-Injection-Exploit-Plus
80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.
Language:Java 579Whoopsunix / JavaRce
实战场景较通用的 Java Rce 相关漏洞的利用方式 | Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios
Language:Java 288- Language:Java 274
0x727 / JNDIExploit
一款用于JNDI注入利用的工具,大量参考/引用了Rogue JNDI项目的代码,支持直接植入内存shell,并集成了常见的bypass 高版本JDK的方式,适用于与自动化工具配合使用。
Language:Java 222- Language:Java 145
alexbakker / log4shell-tools
Tool that runs a test to check whether one of your applications is affected by the recent vulnerabilities in log4j: CVE-2021-44228 and CVE-2021-45046
Language:Go 84- Language:Python 72
future-client / CVE-2021-44228
Abuse Log4J CVE-2021-44228 to patch CVE-2021-44228 in vulnerable Minecraft game sessions to prevent exploitation in the session :)
Language:Java 67For-ACGN / Log4Shell
Check, exploit, generate class, obfuscate, TLS, ACME about log4j2 vulnerability in one Go program.
Language:Go 57cokeBeer / pyyso
pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550, CommonsBeanutils1 no cc, JRMPClient, high version JDK Bypass, Fake MySQL for JDBC attack
Language:Python 47- Language:Java 31
juliojsb / jboss-cli-snippets-compilation
A repository of Jboss CLI snippets
- Language:Java 20
ncredinburgh / secure-tomcat-datasourcefactory
A drop in replacement for the standard Tomcat DataSourceFactory that allows the database connection password to be encrypted using a symmetric key for the purposes of security.
Language:Java 14LeakIX / l9fuzz
Help fuzz various protocols and waits for ping backs Integrates LDAP server and JNDI payload
Language:Go 11LoliKingdom / NukeJndiLookupFromLog4j
Selection of ways to remove JndiLookup in now obsolete Minecraft versions, or versions that still have log4j < 2.10 and is unable to use `-Dlog4j2.formatMsgNoLookups=true`
Language:Java 11rakutentech / jndi-ldap-test-server
A minimalistic LDAP server that is meant for test vulnerability to JNDI+LDAP injection attacks in Java, especially CVE-2021-44228.
Language:Go 10- Language:Java 8
nil-malh / JNDI-Exploit
JNDI-Exploit is an exploit on Java Naming and Directory Interface (JNDI) from the deleted project fromthe user feihong on GitHub.
Language:Java 6rndinfosecguy / yal4ss
yet another log4shell scanner
Language:Python 6- Language:Go 5
mohyehia / spring-boot-multiple-jndi-datasources
Spring boot application that connects to multiple databases using multiple JNDI dataSources configured on apache tomcat server.
Language:Java 5twelvesec / RogueLDAP
A lightweight rogue LDAP server which is a modified version of the JNDIExploit-1
Language:Java 5- Language:Java 5
- Language:Python 4
kwakutwumasi / Quakearts-Webtools
My Utility, Servlet 3.0, JAX-RS, CDI, JTA, JSF Tag Libraries and JCA classes for web application development
Language:Java 3lenisha / spring-jndi-appservice
Example using Azure MSI library from Spring/JNDI application https://github.com/lenisha/msi-mssql-jdbc article:
Language:Java 3mzlogin / CVE-2021-44228-Demo
Apache Log4j2 CVE-2021-44228 RCE Demo with RMI and LDAP
Language:Java 3- Language:Java 2
Sudarshan-Gowda / Spring-Mvc-Quartz-Scheduler
Sending free Email from Gmail based on Scheduler
Language:Java 2Chakib-DAII / jms-spring-tibco-sample
Demo project for Jms using JNDI in point to point and pub/sub and using Spring Boot and Jms template with tibco message broker
Language:Java 1NicorDesigns / SpringJDBCGettingStarted
Getting started with JDBC and Spring using MariaDB and Intellij
Language:Java 1- Language:Kotlin 1
