BeichenDream / JDR
☆137Updated 2 years ago
Alternatives and similar repositories for JDR:
Users that are interested in JDR are comparing it to the libraries listed below
- JDBC Attack Tricks☆142Updated last year
- 多组件客户端☆74Updated 6 months ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆90Updated 2 years ago
- 检测查杀java内存马☆76Updated last year
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆55Updated 5 months ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆41Updated 5 months ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆90Updated 2 years ago
- CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!☆88Updated 4 months ago
- ☆56Updated last year
- ☆50Updated 2 years ago
- Some ReadObject Sink With JDBC☆207Updated 10 months ago
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆50Updated last year
- 基于污点分析和模拟栈帧技术的JSP Webshell检测☆45Updated 3 months ago
- 抽离出 utf-8-overlong-encoding 的序列化逻辑,实现 2 3 字节加密序列化数组☆121Updated last year
- Spel-research☆26Updated 2 years ago
- Java表达式语句生成器☆184Updated last year
- Java 内存马生成插件☆50Updated last year
- springboot跨线程注入内存马☆116Updated 2 years ago
- A Go library for generating Java deserialization payloads.☆155Updated 6 months ago
- 如何将Java反序列化Payload极致缩小☆48Updated 3 years ago
- Java Agent memory horse scanner combined with Call Graph modus☆62Updated 2 years ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆185Updated 9 months ago
- Java agent without file 无文件的Java agent☆78Updated 2 years ago
- 不那么一样的 Java Agent 内存马☆263Updated last year
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆78Updated 2 years ago
- ☆13Updated 2 years ago
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆33Updated 4 months ago
- 在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 3 years ago
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆167Updated last year
- Apache Dubbo漏洞测试Demo及其POC☆61Updated last year