Java-Chains / papersLinks
Topic: The Swiss Army Knife of Java Exploitation
☆22Updated 3 months ago
Alternatives and similar repositories for papers
Users that are interested in papers are comparing it to the libraries listed below
Sorting:
- ActiveMQ RCE (CVE-2023-46604) 回显利用工具☆28Updated 8 months ago
- 在spring-aop中新发现的反序列化gadget-chain☆46Updated 4 months ago
- My security presentations☆28Updated last year
- Hessian UTF-8 Overlong Encoding☆18Updated last year
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆34Updated 6 months ago
- 添加Connector内存马与ws内存马检测逻辑☆16Updated 2 years ago
- ☆24Updated 4 months ago
- Windows & linux Echo to file command converter☆25Updated 3 years ago
- Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …☆50Updated 3 years ago
- 利用wasm静态免杀的demo☆16Updated last year
- ☆12Updated 2 years ago
- Spring-Kafka-Deserialization-Remote-Code-Execution☆30Updated last year
- 多组件客户端☆74Updated last month
- Collect JSP webshell of various implementation methods. 收集JSP Webshell的各种姿势☆15Updated 3 years ago
- Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小☆65Updated 10 months ago
- Show the application of fuzzy in penetration test~☆13Updated 3 years ago
- 7bits安全团队-《Java安全-记一次实战使用memoryshell》代码样例☆19Updated 2 years ago
- .NET实现的shellcode加载器大集合,不断更新中☆14Updated 9 months ago
- c3p0 new gadget☆21Updated 2 months ago
- CVE-2020-4464 / CVE-2020-4450☆32Updated 3 years ago
- ☆33Updated 2 years ago
- CVE-2022-24990信息泄露+RCE 一条龙☆39Updated 3 years ago
- 解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具☆31Updated 3 years ago
- ☆14Updated 2 years ago
- portreuse reuseport 端口复用☆61Updated last year
- Just mindmapping according to official document ( useful for further study )☆27Updated 3 years ago
- 解密DBeaver数据库软件保存的密码☆30Updated last year
- 如何将Java反序列化Payload极致缩小☆53Updated 3 years ago
- Netty/WebFlux 内存马☆25Updated last year
- ☆20Updated 3 months ago