Java-Chains / papersLinks
Topic: The Swiss Army Knife of Java Exploitation
☆22Updated 3 months ago
Alternatives and similar repositories for papers
Users that are interested in papers are comparing it to the libraries listed below
Sorting:
- ActiveMQ RCE (CVE-2023-46604) 回显利用工具☆29Updated 9 months ago
- 在spring-aop中新发现的反序列化gadget-chain☆46Updated 5 months ago
- Windows & linux Echo to file command converter☆25Updated 4 years ago
- My security presentations☆28Updated last year
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆50Updated 3 years ago
- Hessian UTF-8 Overlong Encoding☆18Updated last year
- ☆33Updated 2 years ago
- 与反病毒软件老大哥们的打闹日常☆13Updated 6 years ago
- ☆76Updated 7 months ago
- Spring-Kafka-Deserialization-Remote-Code-Execution☆30Updated last year
- ☆20Updated 4 months ago
- CVE-2020-4464 / CVE-2020-4450☆32Updated 3 years ago
- ad vulnerability scanner☆70Updated last year
- ☆12Updated 2 years ago
- Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势☆15Updated 3 years ago
- Just mindmapping according to official document ( useful for further study )☆27Updated 3 years ago
- Netty/WebFlux 内存马☆25Updated last year
- 通过RPC创建计划任务☆14Updated last month
- 利用EFSRPC协议批量探测出网☆66Updated last year
- 添加Connector内存马与ws内存马检测逻辑☆16Updated 2 years ago
- 该项目是通过go语言实现防止rmi利用被反置的问题。☆44Updated 3 years ago
- 解密DBeaver数据库软件保存的密码☆30Updated last year
- Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小☆66Updated 11 months ago
- ☆50Updated 2 years ago
- Show the application of fuzzy in penetration test~☆13Updated 3 years ago
- 编译原理学习代码仓库☆23Updated 3 years ago
- ☆24Updated 5 months ago
- 利用wasm静态免杀的demo☆16Updated last year
- .NET实现的shellcode加载器大集合,不断更新中☆15Updated 10 months ago
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆89Updated 3 years ago