H3rmesk1t / Fastjson-Gadgets-Automatic-ScannerLinks
Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may be exploited, and screening results need to be excluded by themselves. Looking forward to Fork and Star.
☆50Updated 3 years ago
Alternatives and similar repositories for Fastjson-Gadgets-Automatic-Scanner
Users that are interested in Fastjson-Gadgets-Automatic-Scanner are comparing it to the libraries listed below
Sorting:
- e-mesaage <=4.15 后台jar包上传exp☆47Updated 6 years ago
- ☆50Updated 2 years ago
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆89Updated 3 years ago
- java☆54Updated 2 years ago
- 卸载冰蝎内存马☆67Updated 4 years ago
- ☆4Updated 4 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆92Updated 2 years ago
- CVE-2015-4852、CVE-2016-0638、CVE-2016-3510、CVE-2019-2890漏洞POC☆17Updated 4 years ago
- jre8u20 gadget☆33Updated 4 years ago
- 利用shiro反序列化注入冰蝎内存马☆35Updated 3 years ago
- Learning JAVA for Security☆31Updated 3 years ago
- 该项目是通过go语言实现防止rmi利用被反置的问题。☆44Updated 3 years ago
- ☆42Updated 5 years ago
- 一些结合第三方组件的Fastjson POC,在1.2.48以后版本中陆续被添加至黑名单。☆56Updated 5 years ago
- 2020年~2021年 网站CMS、中间件、框架系统漏洞集合☆36Updated 4 years ago
- mvn clean package -DskipTests☆46Updated 2 years ago
- CVE-2021-4034, For Webshell Version.☆34Updated 3 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated 2 years ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆91Updated 2 years ago
- <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…☆53Updated this week
- CVE-2022-24990信息泄露+RCE 一条龙☆39Updated 3 years ago
- OXID_Find by Csharp(多线程) 通过OXID解析器获取Windows远程主机上网卡地址 From @RcoIl☆54Updated 4 years ago
- shiro 反序列化 回显检测☆39Updated 3 years ago
- Spring Cloud Function Spel命令执行漏洞☆38Updated 3 years ago
- ☆14Updated 2 years ago
- Java RMI反序列化漏洞插件☆48Updated 4 years ago
- 内存马持久化☆59Updated 3 years ago
- 魔改的冰蝎,仅供测试连接内存webshell使用☆38Updated 4 years ago
- Show the application of fuzzy in penetration test~☆13Updated 3 years ago
- 添加Connector内存马与ws 内存马检测逻辑☆16Updated 2 years ago