Ape1ron / SpringAopInDeserializationDemo1Links
在spring-aop中新发现的反序列化gadget-chain
☆50Updated 7 months ago
Alternatives and similar repositories for SpringAopInDeserializationDemo1
Users that are interested in SpringAopInDeserializationDemo1 are comparing it to the libraries listed below
Sorting:
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆92Updated 2 years ago
- 基于污点分析和模拟栈帧技术的JSP Webshell检测☆46Updated 2 months ago
- 如何将Java反序列化Payload极致缩小☆60Updated 3 years ago
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆37Updated 9 months ago
- ☆50Updated 2 years ago
- 多组件客户端☆73Updated 3 months ago
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆50Updated 3 years ago
- 一个简单的批量反编译jar包的小脚本☆41Updated 3 years ago
- Easy burp sign extension!☆55Updated 6 months ago
- Netty/WebFlux 内存马☆25Updated last year
- Hessian UTF-8 Overlong Encoding☆19Updated last year
- A list for Spring Security☆125Updated last year
- ☆15Updated 2 years ago
- ☆14Updated 2 years ago
- My security presentations☆28Updated 2 years ago
- docker运行cs4.7server端☆40Updated 2 years ago
- Apache Dubbo漏洞测试Demo及其POC☆62Updated 2 years ago
- JNDI/LDAP注入利用工具,对命令进行两种编码,支持多种绕过高版本JDK的方式(参考大佬代码造的轮子)☆44Updated 3 years ago
- Java Agent memory horse scanner combined with Call Graph modus☆64Updated 2 years ago
- ☆18Updated 2 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆92Updated 2 years ago
- Java 内存马生成插件☆54Updated 2 years ago
- 添加Connector内存马与ws内存马检测逻辑☆16Updated 2 years ago
- Java agent without file 无文件的Java agent☆82Updated 3 years ago
- Java漏洞调试分析集合☆91Updated last year
- ☆18Updated 8 months ago
- Just mindmapping according to official document ( useful for further study )☆27Updated 3 years ago
- Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势☆15Updated 3 years ago
- 安全升级jar包时,辅助检测Java Archive (JAR) 包之间兼容性,各类符号引用的存在检测,包括方法、方法签名、字段定义和引用、类引用等等☆14Updated last year
- A lightweight reverse proxy server that converts TLS traffic to TCP, allowing secure communication between clients and upstream servers.☆76Updated last year