Firebasky / ScanDF
The purpose of this script is to bypass disablefund, provide some useful information, and dig the hook function of PHP extension.
☆14Updated 3 years ago
Alternatives and similar repositories for ScanDF:
Users that are interested in ScanDF are comparing it to the libraries listed below
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆90Updated 2 years ago
- ☆50Updated 2 years ago
- java☆54Updated 2 years ago
- 多组件客户端☆74Updated 6 months ago
- Java 内存马生成插件☆50Updated last year
- 窃取当前用户的ssh,sudo密码☆69Updated last year
- 如何将Java反序列化Payload极致缩小☆48Updated 3 years ago
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆86Updated 3 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆78Updated 2 years ago
- springboot跨线程注入内存马☆116Updated 2 years ago
- MemShell List☆79Updated last year
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆87Updated last year
- ☆13Updated 2 years ago
- 基于污点分析和模拟栈帧技术的JSP Webshell检测☆45Updated 2 months ago
- Kunlun-M 的GUI程序☆51Updated 2 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated last year
- 在spring-aop中新发现的反序列化gadget-chain☆43Updated 2 months ago
- 一个简单的批量反编译jar包的小脚本☆35Updated 2 years ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆55Updated 5 months ago
- ☆68Updated 3 years ago
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆50Updated last year
- JNDI/LDAP注入利用工具,对命令进行两种编码,支持多种绕过高版本JDK的方式(参考大佬代码造的轮子)☆44Updated 3 years ago
- Apache Dubbo漏洞测试Demo及其POC☆61Updated last year
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆50Updated 3 years ago
- Java命令行文件监控小工具(代码审计)☆100Updated 3 years ago
- Spel-research☆26Updated 2 years ago
- remote execute js when debugger.paused☆42Updated last year
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆79Updated last year
- 《JNDI-深入理解Java万恶之源》☆37Updated last year
- XxlJob<=2.1.2配置不当情况下反序列化RCE☆91Updated 4 years ago