Java-Chains / papersLinks
Topic: The Swiss Army Knife of Java Exploitation
☆21Updated 5 months ago
Alternatives and similar repositories for papers
Users that are interested in papers are comparing it to the libraries listed below
Sorting:
- ActiveMQ RCE (CVE-2023-46604) 回显利用工具☆35Updated 11 months ago
- My security presentations☆28Updated 2 years ago
- 7bits安全团队-《Java安全-记一次实战使用memoryshell》代码样例☆19Updated 2 years ago
- Spring-Kafka-Deserialization-Remote-Code-Execution☆30Updated last year
- 在spring-aop中新发现的反序列化gadget-chain☆50Updated 7 months ago
- portreuse reuseport 端口复用☆62Updated last year
- Windows & linux Echo to file command converter☆25Updated 4 years ago
- ☆21Updated 6 months ago
- Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小☆66Updated last year
- 针对kubernetes中的RBAC可能被攻击检测工具。Detection tool for possible attacks on RBAC in kubernetes.☆26Updated last year
- Hessian UTF-8 Overlong Encoding☆19Updated last year
- Netty/WebFlux 内存马☆25Updated last year
- 轻便的恶意反代☆48Updated 4 years ago
- CVE-2020-4464 / CVE-2020-4450☆33Updated 4 years ago
- 一个基于DNS隧道的简单C2☆59Updated 3 years ago
- c/s网络准入平台☆20Updated 2 years ago
- Exchange ProxyRelay POC☆38Updated 2 years ago
- CrossC2通信协议API实现☆84Updated 4 years ago
- NoPacScan is a CVE-2021-42287/CVE-2021-42278 Scanner,it scan for more domain controllers than other script☆90Updated 3 years ago
- 利用NTLM Hash读取Exchange邮件☆60Updated 2 years ago
- CVE-2024-43044的利用方式☆20Updated last year
- ☆19Updated 2 years ago
- 解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具☆31Updated 3 years ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆92Updated 2 years ago
- ☆14Updated 2 years ago
- CVE-2023-36899漏洞的复现环境和工具,针对ASP.NET框架中的无cookie会话身份验证绕过。☆31Updated 2 years ago
- Windows、Linux持久化套件/Windows, Linux persistence suite☆19Updated last year
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆70Updated 2 years ago
- druid数据库密码解密☆34Updated 2 years ago
- The Poc for CVE-2024-20931☆74Updated last year