H3rmesk1t / Fastjson-Gadgets-Automatic-ScannerLinks
Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may be exploited, and screening results need to be excluded by themselves. Looking forward to Fork and Star.
☆50Updated 3 years ago
Alternatives and similar repositories for Fastjson-Gadgets-Automatic-Scanner
Users that are interested in Fastjson-Gadgets-Automatic-Scanner are comparing it to the libraries listed below
Sorting:
- CVE-2021-43297 POC,Apache Dubbo<= 2.7.13时可以实现RCE☆38Updated 3 years ago
- java☆54Updated 2 years ago
- ☆50Updated 2 years ago
- 卸载冰蝎内存马☆67Updated 4 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆92Updated 2 years ago
- 该项目是通过go语言 实现防止rmi利用被反置的问题。☆44Updated 3 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated 2 years ago
- CodeQL 寻找 JNDI利用 Lookup接口☆163Updated 3 years ago
- e-mesaage <=4.15 后台jar包上传exp☆47Updated 6 years ago
- Java agent without file 无文件的Java agent☆82Updated 3 years ago
- <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…☆54Updated this week
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆90Updated 3 years ago
- Java RMI反序列化漏洞插件☆48Updated 4 years ago
- 一些结合第三方组件的Fastjson POC,在1.2.48以后版本中陆续被添加至黑名单。☆56Updated 5 years ago
- Yapi RCE漏洞批量验证与伪交互SHELL☆42Updated 4 years ago
- ☆42Updated 6 years ago
- ☆14Updated 2 years ago
- CNVD-2021-49104——泛微E-Office文件上传漏洞☆22Updated 3 years ago
- SMTP Netcat , test SMTP protocol☆105Updated 3 years ago
- 基于污点分析和模拟栈帧技术的JSP Webshell检测☆45Updated last month
- Apereo CAS exploit tool☆58Updated 3 years ago
- 解密DBeaver数据库软件保存的密码☆30Updated 2 years ago
- Apache Dubbo Hessian2 CVE-2021-43297 demo☆46Updated 3 years ago
- ☆54Updated 3 years ago
- 魔改的冰蝎,仅供测试连接内存webshell使用☆38Updated 4 years ago
- FastJsonAutoTypeBypass☆16Updated 4 years ago
- Java Agent memory horse scanner combined with Call Graph modus☆64Updated 2 years ago
- Fastjson Poc for 1.2.33~1.2.36 with bcel☆11Updated 4 years ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆92Updated 2 years ago
- ☆49Updated 4 years ago