Ape1ron / SpringAopInDeserializationDemo1Links
在spring-aop中新发现的反序列化gadget-chain
☆48Updated 6 months ago
Alternatives and similar repositories for SpringAopInDeserializationDemo1
Users that are interested in SpringAopInDeserializationDemo1 are comparing it to the libraries listed below
Sorting:
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆91Updated 2 years ago
- Hessian UTF-8 Overlong Encoding☆18Updated last year
- Netty/WebFlux 内存马☆25Updated last year
- 添加Connector内存马与ws内存马检测逻辑☆16Updated 2 years ago
- ☆20Updated 4 months ago
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆36Updated 8 months ago
- My security presentations☆28Updated last year
- 如何将Java反序列化Payload极致缩小☆55Updated 3 years ago
- JNDI/LDAP注入利用工具,对命令进行两种编码,支持多种绕过高版本JDK的方式(参考大佬代码造的轮子)☆44Updated 3 years ago
- Topic: The Swiss Army Knife of Java Exploitation☆22Updated 4 months ago
- ☆13Updated 2 years ago
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆50Updated 3 years ago
- Show the application of fuzzy in penetration test~☆13Updated 3 years ago
- PoC of Apache Dubbo CVE-2023-23638☆33Updated last year
- ☆50Updated 2 years ago
- 多组件客户端☆73Updated 2 months ago
- Easy burp sign extension!☆55Updated 5 months ago
- CVE-2020-4464 / CVE-2020-4450☆33Updated 3 years ago
- 解决先知文件大小限制的问题☆16Updated 11 months ago
- ActiveMQ RCE (CVE-2023-46604) 回显利用工具☆33Updated 10 months ago
- 高版本Fastjson在Java原生反序列化中的利用演示☆15Updated 6 months ago
- Java Agent memory horse scanner combined with Call Graph modus☆62Updated 2 years ago
- Apache Dubbo漏洞测试Demo及其POC☆61Updated 2 years ago
- ☆79Updated 7 months ago
- Spring-Kafka-Deserialization-Remote-Code-Execution☆30Updated last year
- ☆14Updated 2 years ago
- ☆18Updated 2 years ago
- ☆35Updated 2 years ago
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆51Updated last year
- ☆18Updated 6 months ago