BeichenDream / ISC2022CodeLinks
☆57Updated 2 years ago
Alternatives and similar repositories for ISC2022Code
Users that are interested in ISC2022Code are comparing it to the libraries listed below
Sorting:
- ☆139Updated 2 years ago
- Java agent without file 无文件的Java agent☆78Updated 3 years ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆91Updated 2 years ago
- 通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩,可以做一些破解、加密验证的绕过等操作☆113Updated last year
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆92Updated 2 years ago
- JNDI/LDAP注入利用工具,对命令进行两种编码,支持多种绕过高版本JDK的方式(参考大佬代码造的轮子)☆44Updated 3 years ago
- nativeRasp that can hook native methods☆24Updated 2 years ago
- Bypass JVM Class ByteCode Verifier , 对抗反编译器☆112Updated last year
- ☆50Updated 2 years ago
- java☆54Updated 2 years ago
- 编译原理学习代码仓库☆23Updated 3 years ago
- ☆14Updated 2 years ago
- Java Agent memory horse scanner combined with Call Graph modus☆62Updated 2 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆78Updated 2 years ago
- Use java instrument API without JAR file☆45Updated 3 years ago
- ☆107Updated 3 years ago
- CVE-2021-43297 POC,Apache Dubbo<= 2.7.13时可以实现RCE☆38Updated 3 years ago
- springboot跨线程注入内存马☆119Updated 3 years ago
- CodeQL 寻找 JNDI利用 Lookup接口☆163Updated 3 years ago
- 一些结合第三方组件的Fastjson POC,在1.2.48以后版本中陆续被添加至黑名单。☆56Updated 5 years ago
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆50Updated 3 years ago
- 基于污点分析和模拟栈帧技术的JSP Webshell检测☆45Updated 5 months ago
- 在spring-aop中新发现的反序列化gadget-chain☆46Updated 5 months ago
- 一些自己打比赛的捣蛋脚本☆50Updated 4 years ago
- A mininal go http client for security testing☆48Updated 4 months ago
- 利用代理驱动绕过JDBC Attack检测☆71Updated last week
- Apache Dubbo漏洞测试Demo及其POC☆61Updated 2 years ago
- 简单实现的 Java RASP☆35Updated 4 years ago
- 打CTF实在厌倦了找利用链,就知道一个fastjson的版本,一堆依赖找啊找,头都疼。为了解决这个烦恼,用了卓卓师傅的fastjson黑名单工具和库,自己改造了一下。☆32Updated 5 years ago
- JDBC Attack Tricks☆142Updated last year