JNDI-Exploit-Kit

Exploitation tool

An exploit kit designed to start an HTTP Server, RMI Server and LDAP Server to exploit Java web apps vulnerable to JNDI Injection

JNDI-Exploitation-Kit(A modified version of the great JNDI-Injection-Exploit created by @welk1n. This tool can be used to start an HTTP Server, RMI Server and LDAP Server to exploit java web apps vulnerable to JNDI Injection)

GitHub

903 stars
19 watching
166 forks
Language: Java
last commit: almost 3 years ago

Related projects:

Repository Description Stars
waderwu/attackrmi A tool designed to exploit vulnerabilities in the Java RMI system using various techniques such as deserialization and socket-based attacks. 250
pimps/docker-java-xxe A Docker image to test XXE attacks in Java with Tomcat using Smarty templates. 5
rpwnage/pwn-my Exploits a vulnerability in iOS 14.5 WebKit to gain jailbreak access 647
appknox/afe A toolset for exploiting vulnerabilities in Android-based devices and applications 186
irsl/jackson-rce-via-spel A proof-of-concept project demonstrating exploitation of a vulnerability in Jackson-databind via Spring application contexts and expressions. 121
portswigger/json-decoder Tools for analyzing and manipulating HTTP requests and responses in BurpSuite 10
bgeesaman/subpath-exploit Demonstrates an escape vulnerability in Kubernetes allowing privileged access to a pod through symlinks 35
arimogi/google-dorks A collection of tools and techniques for exploiting vulnerabilities in Google services 45
portswigger/reflected-parameters Tools and techniques for exploiting reflected parameter vulnerabilities in Java-based applications 19
netspi/javaserialkiller A Burp extension that enables Java Deserialization Attacks using a payload generator tool 208
emilyanncr/windows-post-exploitation Provides tools and resources for post-exploitation techniques on Windows systems during penetration testing 524
kibercthulhu/gdb-peda-cheatsheet A collection of tips and tricks for using GDB-PEDA in exploit development 16
rfunix/pompem Automates searches for exploits and vulnerabilities across multiple databases 984
1n3/intruderpayloads A collection of tools and methodologies for web application testing and vulnerability assessment. 3,686
mubix/post-exploitation A collection of post-exploitation tools and scripts for various operating systems. 1,554