Java-Chains / papers
Topic: The Swiss Army Knife of Java Exploitation
☆20Updated last month
Alternatives and similar repositories for papers:
Users that are interested in papers are comparing it to the libraries listed below
- 在spring-aop中新发现的反序列化gadget-chain☆43Updated 2 months ago
- My security presentations☆28Updated last year
- CVE-2020-4464 / CVE-2020-4450☆32Updated 3 years ago
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆50Updated 3 years ago
- Spring-Kafka-Deserialization-Remote-Code-Execution☆30Updated last year
- Show the application of fuzzy in penetration test~☆13Updated 3 years ago
- Windows & linux Echo to file command converter☆23Updated 3 years ago
- 添加Connector内存马与ws内存马检测逻辑☆16Updated 2 years ago
- Just mindmapping according to official document ( useful for further study )☆27Updated 2 years ago
- ☆33Updated 2 years ago
- redshift-jdbc-RCE proof☆1Updated 2 years ago
- 7bits安全团队-《Java安全-记一次实战使用memoryshell》代码样例☆18Updated 2 years ago
- 该项目是通过go语言实现防止rmi利用被反置的问题。☆44Updated 3 years ago
- portreuse reuseport 端口复用☆61Updated last year
- Hessian UTF-8 Overlong Encoding☆17Updated last year
- jre8u20 gadget☆33Updated 3 years ago
- ☆50Updated 2 years ago
- 轻便的恶意反代☆46Updated 3 years ago
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆33Updated 4 months ago
- 解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具☆31Updated 2 years ago
- 利用wasm静态免杀的demo☆16Updated 11 months ago
- 针对kubernetes中的RBAC可能被攻击检测工具。Detection tool for possible attacks on RBAC in kubernetes.☆26Updated last year
- 编译原理学习代码仓库☆23Updated 3 years ago
- 就是一个练习RMI反序列化的最简单环境☆30Updated 3 years ago
- ☆24Updated 2 months ago
- 多组件客户端☆74Updated 6 months ago
- ☆13Updated 2 years ago
- PoC of Nacos JRaft Hessian RCE☆3Updated 2 months ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆90Updated 2 years ago
- 如何将Java反序列化Payload极致缩小☆48Updated 3 years ago