AMJIYU / javaweb-secView external linksLinks
攻击Java Web应用-[Java Web安全]
☆79Dec 8, 2019Updated 6 years ago
Alternatives and similar repositories for javaweb-sec
Users that are interested in javaweb-sec are comparing it to the libraries listed below
Sorting:
- 备份文件扫描,并自动进行下载☆130Jul 26, 2023Updated 2 years ago
- CVE-2020-9548:FasterXML/jackson-databind 远程代码执行漏洞☆24Mar 2, 2020Updated 5 years ago
- 与反病毒软件老大哥们的打闹日常☆13Nov 8, 2018Updated 7 years ago
- 代码审计总结☆85Sep 1, 2021Updated 4 years ago
- 2020年~2021年 网站CMS、中间件、框架系统漏洞集合☆99Mar 3, 2021Updated 4 years ago
- Java反序列化漏洞利用链补全计划,仅用于个人归纳总结。☆420Dec 3, 2021Updated 4 years ago
- Crack Dict☆11Oct 12, 2020Updated 5 years ago
- 后台插件getshell☆50Dec 4, 2021Updated 4 years ago
- Thymeleaf SSTI Bypass☆13Nov 24, 2021Updated 4 years ago
- 一款可以在不出网的环境下进行反向代理及cs上线的工具☆491Apr 26, 2023Updated 2 years ago
- Flask 内存马☆312Mar 26, 2021Updated 4 years ago
- 一款辅助探测Orderby注入漏洞的BurpSuite插件☆25Oct 19, 2021Updated 4 years ago
- 红队行动中利用白利用、免杀、自动判断网络环境生成钓鱼可执行文件。☆367Jun 19, 2024Updated last year
- RedTeaming知识星球2020年安全知识汇总☆473May 5, 2021Updated 4 years ago
- cve-2020-1472 复现利用及其exp☆112Sep 16, 2020Updated 5 years ago
- 模拟cobalt strike beacon上线包. Simulation cobalt strike beacon connection packet.☆17Sep 9, 2021Updated 4 years ago
- sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆717Aug 3, 2021Updated 4 years ago
- EHole(棱洞)-红队重点攻击系统指纹探测工具☆471Jan 27, 2021Updated 5 years ago
- Coremail任意文件上传漏洞POC☆156Apr 11, 2021Updated 4 years ago
- 这个脚本主要提供对Exchange邮件服务器的账户爆破功能,集成了现有主流接口的爆破方式。☆339May 22, 2023Updated 2 years ago
- 透明代理切换脚本,仅支持 Linux☆52Oct 9, 2021Updated 4 years ago
- 记录weblogic的一些漏洞原理☆16Nov 4, 2021Updated 4 years ago
- 基于Burp插件开发打造渗透测试自动化☆422Dec 7, 2021Updated 4 years ago
- fastjson不出网利用、c3p0☆255Jul 30, 2021Updated 4 years ago
- 渗透红线Checklist☆449Jun 20, 2023Updated 2 years ago
- 沙箱IP、网络测绘ip、全网扫描ip等等收集☆128Nov 8, 2021Updated 4 years ago
- 自己学习java安全的一些总结,主要是安全审计相关☆1,694Jan 5, 2022Updated 4 years ago
- 提取DC日志,快速获取域用户对应IP地址☆308Mar 21, 2022Updated 3 years ago
- 强制关闭360 需要管理员权限☆171Feb 6, 2022Updated 4 years ago
- Bypass cobaltstrike beacon config scan☆84May 24, 2021Updated 4 years ago
- Flash钓鱼弹窗优化版☆643Nov 18, 2022Updated 3 years ago
- 利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码☆711May 10, 2021Updated 4 years ago
- Spring Cloud SnakeYAML 反序列化一键注入cmdshell和reGeorg☆135Sep 24, 2020Updated 5 years ago
- 攻击流量模拟 用于迷惑蓝队 分散蓝队精力 混淆真实攻击流量☆197Feb 25, 2021Updated 4 years ago
- Java RCE 回显测试代码☆1,015Oct 15, 2020Updated 5 years ago
- Redis RCE 的几种方法☆90Jun 5, 2024Updated last year
- 🧬 辅助生成 XRay YAML POC☆272Jan 4, 2023Updated 3 years ago
- Magisk burpsuite 证书模块,在安卓10以上通过magisk模块快速安装burpsuite证书☆41Feb 2, 2023Updated 3 years ago
- CAS 硬编码 远程代码执行漏洞☆125Jun 4, 2021Updated 4 years ago