AfterSnows / ApricusFindEvil
检测查杀java内存马
☆76Updated last year
Alternatives and similar repositories for ApricusFindEvil:
Users that are interested in ApricusFindEvil are comparing it to the libraries listed below
- java实现反序列化建立socket连接☆58Updated 2 months ago
- 使用 agent 实现反序列化 utf8 overlong☆75Updated 10 months ago
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆87Updated last year
- 自己积累的一些Java反序列化利用链☆87Updated 2 years ago
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆79Updated last year
- Java 内存马生成插件☆50Updated last year
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆50Updated last year
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆165Updated last year
- 多组件客户端☆74Updated 6 months ago
- JDBC Attack Tricks☆142Updated last year
- 用��友的一些反序列化链子以及1day,二开了狼组的YongYouNcTool,改了一下逻辑以及poc☆95Updated 5 months ago
- MemShell List☆79Updated last year
- 这是一个用Go编写的红队内网环境中一个能快速开启HTTP文件浏览服务的小工具,能够执行shell命令,可以执行webshell☆70Updated last year
- 用Go+Fyne开发的,展示JAVA序列化流以及集成一键插入脏数据,UTF过长编码绕WAF(Utf OverLoad Encoding),修改类SerializeVersionUID功能的图形化工具。☆96Updated 2 months ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆55Updated 5 months ago
- 如何将Java反序列化Payload极致缩小☆48Updated 3 years ago
- 某软最新公开gadgegt,新加入不出网利用。☆61Updated 6 months ago
- A Java Route Collection Tool☆91Updated 7 months ago
- 通过端口复用直接进行正向socks5代理(非防火墙分流)☆105Updated 3 months ago
- Java命令行文件监控小工具(代码审计)☆100Updated 3 years ago
- evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.☆87Updated 2 years ago
- ☆55Updated last year
- A Go library for generating Java deserialization payloads.☆155Updated 6 months ago
- ☆117Updated last year
- A heapdump leaks Shiro key causing RCE vulnerability environment.☆53Updated 10 months ago
- 一键出网探测工具☆73Updated 2 years ago
- 基于Agent技术实现的Java内存马查杀、防护工具。☆83Updated 7 months ago
- Shiro文件上传工具☆99Updated last year
- 一个能够利用MSSQL的xp_cmdshell功能来进行流量代理的脚本,用于在站酷分离且不出网SQL注入进行代理☆101Updated 2 years ago