Ape1ron / FastjsonInDeserializationDemo1Links
高版本Fastjson在Java原生反序列化中的利用演示
☆26Updated last year
Alternatives and similar repositories for FastjsonInDeserializationDemo1
Users that are interested in FastjsonInDeserializationDemo1 are comparing it to the libraries listed below
Sorting:
- 在spring-aop中新发现的反序列化gadget-chain☆52Updated last year
- 方便自己搭建codeql环境和数据库的工具。☆62Updated 4 months ago
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆39Updated last year
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆71Updated last year
- Java bytecode line number restoration tool☆128Updated 4 months ago
- ☆18Updated last year
- 用于快速启动tabby 分析漏洞或者gadget的环境☆94Updated 6 months ago
- Java Chains 插件编写 demo☆14Updated 10 months ago
- A lightweight reverse proxy server that converts TLS traffic to TCP, allowing secure communication between clients and upstream servers.☆78Updated last year
- 基于污点分析和模拟栈帧技术的JSP Webshell检测☆48Updated 3 months ago
- Java JDK 8-18 CodeQL databases☆16Updated last year
- A vul-finder for loading CPG and automated finding vul-call-chains☆70Updated 5 months ago
- idea插件,快速生成反序列化中常用的方法,比如setFieldValue、createTemplatesImpl等☆29Updated last year
- 一个基于 Vineflower 引擎的多线程 Java 批量反编译工具,支持快速处理大量的 class 文件和 JAR 文件。☆57Updated 8 months ago
- ☆29Updated last year
- ☆106Updated this week
- 利用代理驱动绕过JDBC Attack检测☆143Updated 6 months ago
- Apache Dubbo漏洞测试Demo及其POC☆65Updated 2 years ago
- 多组件客户端☆74Updated 8 months ago
- Hessian UTF-8 Overlong Encoding☆20Updated last year
- 如何将Java反序列化Payload极致缩小☆68Updated 3 years ago
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆53Updated 2 years ago
- Java漏洞调试分析集合☆91Updated last year
- Easy burp sign extension!☆56Updated 11 months ago
- 一个IDEA插件:一键收集项目中所有jar包依赖的工具插件。遍历项目目录收集所有jar文件,复制到all-in-one文件夹,并自动添加为项目库。☆49Updated 2 months ago
- 关于GadgetInspector的二开的一些思考和改进。☆18Updated 2 years ago
- Java 代码审计 idea 插件☆26Updated 10 months ago
- 使用 Docker 一键构建 JDK 源码的 CodeQL 数据库,方便使用 CodeQL 查找 JDK 中的数据。☆27Updated 8 months ago
- ☆105Updated last month
- 在xxe中使用smb外带多行内容☆100Updated 2 months ago