{"id":26093588,"url":"https://github.com/vulhub/java-chains","last_synced_at":"2026-04-03T06:08:04.666Z","repository":{"id":260758704,"uuid":"882261301","full_name":"vulhub/java-chains","owner":"vulhub","description":"Java Vulnerability Exploitation Platform","archived":false,"fork":false,"pushed_at":"2026-04-01T12:35:30.000Z","size":5275,"stargazers_count":2021,"open_issues_count":12,"forks_count":166,"subscribers_count":17,"default_branch":"main","last_synced_at":"2026-04-01T14:38:37.419Z","etag":null,"topics":["deserialization-vulnerability","java","java-vulnerability","javasecurity","jndi-exploit","jndi-injection","log4j-rce","payload","redteam","vulhub","vulnerability"],"latest_commit_sha":null,"homepage":"https://java-chains.vulhub.org","language":"Dockerfile","has_issues":true,"has_wiki":null,"has_pages":null,"mirror_url":null,"source_name":null,"license":null,"status":null,"scm":"git","pull_requests_enabled":true,"icon_url":"https://github.com/vulhub.png","metadata":{"files":{"readme":"README.md","changelog":"CHANGELOG.md","contributing":null,"funding":null,"license":null,"code_of_conduct":null,"threat_model":null,"audit":null,"citation":null,"codeowners":null,"security":null,"support":null,"governance":null,"roadmap":null,"authors":null,"dei":null,"publiccode":null,"codemeta":null,"zenodo":null,"notice":null,"maintainers":null,"copyright":null,"agents":null,"dco":null,"cla":null}},"created_at":"2024-11-02T10:41:25.000Z","updated_at":"2026-04-01T12:16:38.000Z","dependencies_parsed_at":null,"dependency_job_id":"c667caf7-b6b1-470a-9fcb-0a1f59c69eb4","html_url":"https://github.com/vulhub/java-chains","commit_stats":null,"previous_names":["ar3h/web-chains","java-chains/web-chains","vulhub/java-chains"],"tags_count":16,"template":false,"template_full_name":null,"purl":"pkg:github/vulhub/java-chains","repository_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulhub%2Fjava-chains","tags_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulhub%2Fjava-chains/tags","releases_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulhub%2Fjava-chains/releases","manifests_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulhub%2Fjava-chains/manifests","owner_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners/vulhub","download_url":"https://codeload.github.com/vulhub/java-chains/tar.gz/refs/heads/main","sbom_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories/vulhub%2Fjava-chains/sbom","scorecard":null,"host":{"name":"GitHub","url":"https://github.com","kind":"github","repositories_count":286080680,"owners_count":31338412,"icon_url":"https://github.com/github.png","version":null,"created_at":"2022-05-30T11:31:42.601Z","updated_at":"2026-04-03T04:42:29.251Z","status":"ssl_error","status_checked_at":"2026-04-03T04:42:12.667Z","response_time":107,"last_error":"SSL_read: unexpected eof while reading","robots_txt_status":"success","robots_txt_updated_at":"2025-07-24T06:49:26.215Z","robots_txt_url":"https://github.com/robots.txt","online":false,"can_crawl_api":true,"host_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub","repositories_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repositories","repository_names_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/repository_names","owners_url":"https://repos.ecosyste.ms/api/v1/hosts/GitHub/owners"}},"keywords":["deserialization-vulnerability","java","java-vulnerability","javasecurity","jndi-exploit","jndi-injection","log4j-rce","payload","redteam","vulhub","vulnerability"],"created_at":"2025-03-09T12:01:13.475Z","updated_at":"2026-04-03T06:08:04.661Z","avatar_url":"https://github.com/vulhub.png","language":"Dockerfile","readme":"\u003ch4 align=\"right\"\u003eEnglish | \u003cstrong\u003e\u003ca href=\"./README.zh-cn.md\"\u003e简体中文\u003c/a\u003e\u003c/strong\u003e\u003c/h4\u003e\n\u003ch1 align=\"center\"\u003eJava Chains\u003c/h1\u003e\n\u003cdiv align=\"center\"\u003e\n\u003cimg alt=\"downloads\" src=\"https://img.shields.io/github/downloads/vulhub/java-chains/total\"/\u003e\n\u003cimg alt=\"release\" src=\"https://img.shields.io/github/v/release/vulhub/java-chains\"/\u003e\n\u003ca href=\"https://discord.gg/ukC8KTrRXv\"\u003e\n  \u003cimg src=\"https://img.shields.io/discord/485505185167179778.svg\" alt=\"Chat on Discord\"\u003e\n\u003c/a\u003e\n\u003cimg alt=\"GitHub Stars\" src=\"https://img.shields.io/github/stars/vulhub/java-chains?color=success\"/\u003e\n\u003cdiv align=\"center\"\u003e\n    \u003cimg src=\"./img/logo.png\" width=\"60\" alt=\"center\"\u003e\n\u003c/div\u003e\n\u003c/div\u003e\n\n`Java-Chains` is a Java Payload generation and vulnerability exploitation web platform, designed to facilitate security\nresearchers in quickly generating Java Payloads and conveniently and rapidly testing vulnerabilities such as JNDI\ninjection, MySQL JDBC deserialization, and JRMP deserialization. It aims to improve testing efficiency to a certain\nextent.\n\n\u003e Standing on the shoulders of giants\n\n\u003cp align=\"center\"\u003e\n  \u003cimg src=\"./img/main.png\" /\u003e\n\u003c/p\u003e\n\n## Get started quickly\n\nhttps://java-chains.vulhub.org/docs/guide\n\n## Updated content\n\n[CHANGELOG.md](./CHANGELOG.md)\n\n## References and acknowledgments\n\nIt only supports personal research and learning, and should never be used for illegal and criminal activities.\n\nThe developers, providers and maintainers of the project are not responsible for the actions and consequences of the\nuser's use of the tool, and the user of the tool shall do so at their own risk.\n\nAcknowledgments:\n\n- https://github.com/ReaJason/MemShellParty\n- https://github.com/wh1t3p1g/ysomap\n- https://github.com/qi4L/JYso\n- https://github.com/X1r0z/JNDIMap\n- https://github.com/Whoopsunix/PPPYSO\n- https://github.com/jar-analyzer/class-obf\n- https://github.com/4ra1n/mysql-fake-server\n- https://github.com/mbechler/marshalsec\n- https://github.com/frohoff/ysoserial\n- https://github.com/H4cking2theGate/ysogate\n- https://github.com/Bl0omZ/JNDIEXP\n- https://github.com/kezibei/Urldns\n- https://github.com/rebeyond/JNDInjector\n- https://github.dev/LxxxSec/CTF-Java-Gadget\n- https://github.com/pen4uin/java-memshell-generator\n- https://github.com/pen4uin/java-echo-generator\n- https://github.com/NickstaDB/SerializationDumper\n- https://xz.aliyun.com/t/5381\n- http://rui0.cn/archives/1408\n\n## Communication\n\nIf you have any questions, please feel free to send issus\n\n## Star History\n\n[![Star History Chart](https://api.star-history.com/svg?repos=vulhub/java-chains\u0026type=Date)](https://star-history.com/#vulhub/java-chains\u0026Date)\n","funding_links":[],"categories":["Dockerfile","红队\u0026渗透测试"],"sub_categories":[],"project_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fvulhub%2Fjava-chains","html_url":"https://awesome.ecosyste.ms/projects/github.com%2Fvulhub%2Fjava-chains","lists_url":"https://awesome.ecosyste.ms/api/v1/projects/github.com%2Fvulhub%2Fjava-chains/lists"}