POC for Spring Kafka Deserialization Vulnerability CVE-2023-34040
☆46Oct 8, 2025Updated 5 months ago
Alternatives and similar repositories for Spring-Kafka-POC-CVE-2023-34040
Users that are interested in Spring-Kafka-POC-CVE-2023-34040 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 亿赛通电子文档安全管理系统-/UploadFileFromClientServiceForClient 任意文件上传漏洞☆13Aug 15, 2023Updated 2 years ago
- 一款用于生成winrar程序RCE(即cve-2023-38831)的POC的工具。☆129Aug 27, 2023Updated 2 years ago
- nativeRasp that can hook native methods☆23Apr 24, 2023Updated 2 years ago
- The Poc for CVE-2024-20931☆75Feb 2, 2024Updated 2 years ago
- JNDI/LDAP注入利用工具,对命令进行两种编码,支持多种绕过高版本JDK的方式(参考大佬代码造的轮子)☆43Dec 22, 2021Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- 一键出网探测工具☆73Feb 25, 2023Updated 3 years ago
- 一个基于jvm-sandbox高度定制化rasp☆58Sep 28, 2023Updated 2 years ago
- Some ReadObject Sink With JDBC☆243May 8, 2024Updated last year
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆230Aug 8, 2023Updated 2 years ago
- CVE-2023-46604☆29Oct 26, 2023Updated 2 years ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆72Jul 22, 2025Updated 8 months ago
- ☆240Feb 26, 2023Updated 3 years ago
- ThinkPHP 3.2.X POC Report By 风起☆12Apr 24, 2023Updated 2 years ago
- javaGGC for generate commons.collections gadget chain☆12Nov 10, 2021Updated 4 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- ☆147Jan 16, 2023Updated 3 years ago
- Java表达式语句生成器☆194Oct 9, 2023Updated 2 years ago
- 帆软报表漏洞检测工具☆115Jun 10, 2025Updated 9 months ago
- 无需文件落地Agent内存马生成器☆249May 30, 2024Updated last year
- CVE-2023-52251 There is a Remote Code Execution vulnerability provectus/kafka-ui.☆20Jan 23, 2024Updated 2 years ago
- 纯 Java 实现的 MySQL Fake Server | 支持 GUI 版和命令行版 | 支持反序列化和文件读取的利用方式 | 支持常见的 GADGET 和自定义 GADGET 数据 | 根据目标环境自动生成匹配的 PAYLOAD | 支持 PGSQL 和 DERBY …☆827Sep 18, 2023Updated 2 years ago
- Thymeleaf SSTI Bypass☆13Nov 24, 2021Updated 4 years ago
- 通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩,可以做一些破解、加密验证的绕过等操作☆117Jun 18, 2024Updated last year
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆171Aug 9, 2023Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Apache OFBIZ Path traversal leading to RCE POC[CVE-2024-32113 & CVE-2024-36104]☆27Jun 3, 2024Updated last year
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆53Sep 10, 2023Updated 2 years ago
- 2023白帽补天大会部分代码☆129Dec 26, 2023Updated 2 years ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆93Jan 17, 2023Updated 3 years ago
- mac标签栏工具,mac工具箱☆24Dec 10, 2024Updated last year
- ☆250Feb 25, 2024Updated 2 years ago
- ☆19Jun 7, 2023Updated 2 years ago
- 基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)☆321Dec 22, 2024Updated last year
- 一款批量验证dns可用性的工具☆25Jun 14, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小☆66Jul 4, 2024Updated last year
- Time Based SQL Injection in Zabbix Server Audit Log --> RCE☆131May 21, 2024Updated last year
- 这个项目主要用于辅助测试Swagger的XSS漏洞☆39Jun 11, 2022Updated 3 years ago
- Java Js Engine Payloads All in one☆291Aug 21, 2023Updated 2 years ago
- 用友NC反序列化漏洞payload生成☆73Aug 30, 2022Updated 3 years ago
- 组合利用泛微信息泄漏漏洞和任意用户登录漏洞,可获取全部loginId并测试登录☆59Aug 3, 2023Updated 2 years ago
- 建议使用新版:https://github.com/jar-analyzer/jar-analyzer☆899Nov 30, 2023Updated 2 years ago