Dor-Tumarkin / CVE-2019-17564-FastJson-GadgetView external linksLinks
Basic code for creating the Alibaba FastJson + Spring gadget chain, as used to exploit Apache Dubbo in CVE-2019-17564 - more information available at https://www.checkmarx.com/blog/apache-dubbo-unauthenticated-remote-code-execution-vulnerability
☆16Dec 10, 2022Updated 3 years ago
Alternatives and similar repositories for CVE-2019-17564-FastJson-Gadget
Users that are interested in CVE-2019-17564-FastJson-Gadget are comparing it to the libraries listed below
Sorting:
- 代码审计关键词扫描工具☆11Apr 29, 2024Updated last year
- DomainPasswordSpray is a tool written in PowerShell to perform a password spray attack against users of a domain. By default it will auto…☆11Sep 2, 2020Updated 5 years ago
- This repo contains Axis web shells☆18Jun 15, 2019Updated 6 years ago
- ☆22Jan 7, 2021Updated 5 years ago
- Weblogic RCE with IIOP☆80Jan 18, 2020Updated 6 years ago
- ☆11Oct 23, 2019Updated 6 years ago
- Wechat And DingDing LuckyMoney☆13Feb 6, 2020Updated 6 years ago
- XXST-白加黑辅助挖掘工具,全程静默运行不影响正常使用☆17Apr 12, 2024Updated last year
- Bug Hunter/Red Team/Yellow Team/Blue Team/Green Team/Cyan Team/Purple Team/Operations/Security Research Asset Collection & Scanning Platf…☆25Feb 9, 2026Updated last week
- 读取微信联系人列表,版本(3.9.12.51)☆13Mar 22, 2025Updated 10 months ago
- Jsp Decoder Source Code☆16Mar 23, 2021Updated 4 years ago
- ActiveMQ RCE (CVE-2023-46604) 回显利用工具☆40Sep 13, 2024Updated last year
- CVE-2020-4464 / CVE-2020-4450☆35Aug 24, 2021Updated 4 years ago
- Woodpecker framework Tomcat vulnerability library☆15May 23, 2021Updated 4 years ago
- ☆95Nov 26, 2022Updated 3 years ago
- Stop Windows Defender programmatically☆15Jan 17, 2022Updated 4 years ago
- An AntSword's plugin to scan webshell☆16Sep 2, 2019Updated 6 years ago
- CVE-2023-21742 Poc☆14Apr 7, 2023Updated 2 years ago
- ThinkPHP各版本反序列化利用代码☆32Aug 13, 2020Updated 5 years ago
- ☆65Jun 19, 2025Updated 7 months ago
- PoC for CVE-2025-22457 - A remote unauthenticated stack based buffer overflow affecting Ivanti Connect Secure, Pulse Connect Secure, Ivan…☆71Apr 25, 2025Updated 9 months ago
- ☆17Oct 25, 2018Updated 7 years ago
- LANGZI_SRC_安全巡航 是一款集成漏扫,验证,资产监控,自动复现并且生成结果表报的工具,实现初衷是为了帮助白帽子在SRC中节约时间成本的自动化工具。☆14Jul 7, 2019Updated 6 years ago
- java performance tool in idea☆16Apr 1, 2021Updated 4 years ago
- IngressNightmare POC. world first non-blind remote execution exploitation with multi-advanced exploitation methods. allow on disk exploit…☆92May 6, 2025Updated 9 months ago
- golang styles proxy client, support http/https, socks4/5, ssh☆45Dec 5, 2025Updated 2 months ago
- repo for ACTF 2020. Challenges, WPs, sources, etc.☆14Dec 9, 2020Updated 5 years ago
- Weblogic,CVE-2018-2894☆18Sep 11, 2019Updated 6 years ago
- weblogic漏洞利用工具☆18Jul 16, 2020Updated 5 years ago
- 收集了java XXE漏洞的demo及修复方式☆19Mar 11, 2024Updated last year
- ☆51Aug 12, 2023Updated 2 years ago
- CVE-2018-3191 反弹shell☆16Oct 23, 2018Updated 7 years ago
- 中国蚁剑JSP一句话Payload☆123Oct 4, 2020Updated 5 years ago
- 在spring-aop中新发现的反序列化gadget-chain☆52Jan 12, 2025Updated last year
- Java After-Deserialization Attack☆79Apr 26, 2021Updated 4 years ago
- Flask 内存马☆312Mar 26, 2021Updated 4 years ago
- 清除基于java agent木马☆80Apr 12, 2021Updated 4 years ago
- ☆19Mar 16, 2021Updated 4 years ago
- Hacker News written in Python☆18Feb 22, 2016Updated 9 years ago