BeichenDream / JDR
☆135Updated last year
Related projects ⓘ
Alternatives and complementary repositories for JDR
- JDBC Attack Tricks☆135Updated last year
- CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!☆69Updated 2 weeks ago
- 多组件客户端☆69Updated 2 months ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆90Updated 2 years ago
- springboot跨线程注入内存马☆114Updated 2 years ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆51Updated last month
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆78Updated 2 years ago
- 抽离出 utf-8-overlong-encoding 的序列化逻辑,实现 2 3 字节加密序列化数组☆112Updated 8 months ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆176Updated 5 months ago
- Some ReadObject Sink With JDBC☆192Updated 6 months ago
- Java表达式语句生成器☆179Updated last year
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆87Updated last year
- 在原有yso基础上实现依赖分离,内存马注入等 功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 3 years ago
- fastjson 80 远程代码执行漏洞复现☆184Updated 2 years ago
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆161Updated last year
- A Go library for generating Java deserialization payloads.☆158Updated 2 months ago
- 检测查杀java内存马☆74Updated 11 months ago
- Spel-research☆24Updated 2 years ago
- Web Cache Poisoning Vulnerability Scanner☆33Updated 2 months ago
- Java Agent memory horse scanner combined with Call Graph modus☆61Updated last year
- Java 内存马生成插件☆50Updated last year
- 《Spring漏洞研究》☆44Updated 2 years ago
- 不那么一样的 Java Agent 内存马☆255Updated 11 months ago
- ☆51Updated 2 years ago
- A Java Route Collection Tool☆86Updated 3 months ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆35Updated last month
- java☆54Updated last year
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆77Updated last year
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆47Updated last year
- ☆55Updated last year