Boogipop / JavaSec
JavaSec
☆25Updated 7 months ago
Related projects ⓘ
Alternatives and complementary repositories for JavaSec
- 内网集权系统渗透测试笔记☆9Updated 3 weeks ago
- evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.☆84Updated 2 years ago
- ☆80Updated 6 months ago
- A Java Route Collection Tool☆84Updated 3 months ago
- 自己积累的一些Java反序列化利用链☆86Updated last year
- 4个 .soap 版本的WebShell(持续更新维护),优点:可以运行于子目录,突破了过去只能运行于根目录的限制。4个脚本分别支持调用cmd.exe/哥斯拉/冰蝎/天蝎 客户端。☆174Updated this week
- 记录一些代码审计过的源码☆132Updated 2 months ago
- CVE-2023-22527 内存马注入工具☆73Updated 8 months ago
- ☆38Updated last month
- ☆53Updated 11 months ago
- xxl-job内存马☆117Updated last week
- fscan免杀☆105Updated 7 months ago
- 一款办公应用云凭证利用工具☆85Updated 5 months ago
- check hikvision/ys7 api☆64Updated last year
- ddpoc的谷歌浏览器插件☆56Updated 9 months ago
- hrms tool☆61Updated 3 years ago
- Struts2漏洞扫描 Burp插件☆126Updated last year
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆160Updated last year
- 哥斯拉nacos后渗透插件 maketoken adduser☆142Updated last year
- Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul☆86Updated last year
- Some ReadObject Sink With JDBC☆190Updated 6 months ago
- JNDI注入测试工具内存马版本(增加了注入内存马模块)☆108Updated 10 months ago
- ☆46Updated 2 months ago
- 帆软bi反序列化漏洞利用工具☆134Updated 7 months ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆175Updated 5 months ago
- ☆6Updated 8 months ago
- 用友的一些反序列化链子以及1day,二开了狼组的YongYouNcTool,改了一下逻辑以及poc☆72Updated 3 weeks ago
- Burp插件,快速探测可能存在SQL注入的请求并标记,提高测试效率☆79Updated this week