Ape1ron / SpringAopInDeserializationDemo1
在spring-aop中新发现的反序列化gadget-chain
☆45Updated 3 months ago
Alternatives and similar repositories for SpringAopInDeserializationDemo1:
Users that are interested in SpringAopInDeserializationDemo1 are comparing it to the libraries listed below
- 添加Connector内存马与ws内存马检测逻辑☆16Updated 2 years ago
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆50Updated 3 years ago
- Netty/WebFlux 内存马☆25Updated last year
- ☆19Updated 2 months ago
- ☆50Updated 2 years ago
- 如何将Java反序列化Payload极致缩小☆49Updated 3 years ago
- My security presentations☆28Updated last year
- Java 内存马生成插件☆50Updated last year
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆34Updated 5 months ago
- ☆14Updated 2 years ago
- Hessian UTF-8 Overlong Encoding☆17Updated last year
- ☆18Updated last year
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆90Updated 2 years ago
- Show the application of fuzzy in penetration test~☆13Updated 3 years ago
- 多组件客户端☆74Updated 7 months ago
- Easy burp sign extension!☆55Updated 2 months ago
- JNDI/LDAP注入利用工具,对命令进行两种编码,支持多种绕过高版本JDK的方式(参考大佬代码造的轮子)☆44Updated 3 years ago
- PoC of Nacos JRaft Hessian RCE☆3Updated 3 months ago
- ☆11Updated 2 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆90Updated 2 years ago
- CVE-2020-4464 / CVE-2020-4450☆32Updated 3 years ago
- ☆35Updated last year
- CVE-2021-43297 POC,Apache Dubbo<= 2.7.13时可以实现RCE☆38Updated 3 years ago
- 解决先知文件大小限制的问题☆16Updated 8 months ago
- CVE-2015-4852、CVE-2016-0638、CVE-2016-3510、CVE-2019-2890漏洞POC☆17Updated 4 years ago
- ☆33Updated 2 years ago
- ☆18Updated 4 months ago
- Java JDK 8-18 CodeQL databases☆15Updated 10 months ago
- JSHunter-一款针对于前端的未授权访问扫描工具☆23Updated last month
- java☆54Updated 2 years ago