Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.
☆18Feb 21, 2019Updated 7 years ago
Alternatives and similar repositories for Demo-Exploit-Jackson-RCE
Users that are interested in Demo-Exploit-Jackson-RCE are comparing it to the libraries listed below
Sorting:
- ☆16Jun 22, 2022Updated 3 years ago
- PoC for CVE-2021-43557☆22Nov 22, 2021Updated 4 years ago
- CVE-2020-36188 &&Jackson-databind RCE☆11Jan 11, 2021Updated 5 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆124Jan 9, 2018Updated 8 years ago
- jre8u20 gadget☆34May 23, 2021Updated 4 years ago
- CVE-2018-19276 - OpenMRS Insecure Object Deserialization RCE☆16Mar 11, 2019Updated 6 years ago
- CVE-2020-36184 && Jackson-databind RCE☆15Jan 11, 2021Updated 5 years ago
- ☆19Mar 27, 2020Updated 5 years ago
- A small PoC for the recent RCE found in the Goahead Webserver prior to version 5.1.5.☆22Oct 18, 2021Updated 4 years ago
- A Zeek package to detect CVE-2021-42292, a Microsoft Excel local privilege escalation exploit.☆18Nov 11, 2021Updated 4 years ago
- A Docker Image For the Open Vulnerability Assessment Scanner (OpenVAS)☆19Aug 18, 2023Updated 2 years ago
- CVE-2019-12384 漏洞测试环境☆21Nov 16, 2022Updated 3 years ago
- CVE-2022-37042 Zimbra Auth Bypass leads to RCE☆30Dec 9, 2022Updated 3 years ago
- GitHub Action安全工具,可以将Action Secrets还原拿到明文,用于证明Secrets并不是绝对的安全。(测试通过,放心使用,再有问题来issues区锤我...)☆24Sep 12, 2022Updated 3 years ago
- CVE-2020-9547:FasterXML/jackson-databind 远程代码执行漏洞☆23Mar 2, 2020Updated 5 years ago
- ☆27Dec 5, 2019Updated 6 years ago
- Collection of Some Good research Documentation☆27Dec 10, 2017Updated 8 years ago
- The PoC files for ethereum client's JSON-RPC DNS Rebinding☆35Jan 22, 2018Updated 8 years ago
- pdf-js-inject,能够将js代码注入到pdf文件中,也可以注入xss-payload到pdf文件中☆31Sep 8, 2024Updated last year
- CVE-2020-8163 - Remote code execution of user-provided local names in Rails☆61Dec 14, 2022Updated 3 years ago
- Apache Tomcat + MongoDB Remote Code Execution☆113Jan 15, 2021Updated 5 years ago
- Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告☆107Dec 13, 2017Updated 8 years ago
- CVE-2021-42008: Exploiting A 16-Year-Old Vulnerability In The Linux 6pack Driver☆31May 1, 2022Updated 3 years ago
- Shiro-721 RCE Via RememberMe Padding Oracle Attack☆269Oct 29, 2020Updated 5 years ago
- fastjson-1.2.47☆67Aug 5, 2019Updated 6 years ago
- Create a reverse icmp tunnel to forward tcp traffic,this maybe useful in some lan env☆29Jun 5, 2016Updated 9 years ago
- 紫菜鱼的网络安全扫描器☆11Dec 19, 2023Updated 2 years ago
- Winhttpclient is an interface which packaged with WinHTTP API written in c.☆13Jan 22, 2023Updated 3 years ago
- GreHack 2021 CodeQL for Java workshop☆73Nov 19, 2021Updated 4 years ago
- CVE-2020-8840:FasterXML/jackson-databind 远程代码执行漏洞☆37Feb 24, 2020Updated 6 years ago
- ☆39Mar 21, 2021Updated 4 years ago
- Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()☆80Jul 20, 2020Updated 5 years ago
- Weblogic IIOP CVE-2020-2551☆339Apr 7, 2020Updated 5 years ago
- Solidity Implementation of Terse IBC☆11Sep 4, 2022Updated 3 years ago
- Python3 program that creates a duckyscript payload to brutforce a 4-digit pin on android. It uses an improved pin list to use most used p…☆17Nov 3, 2023Updated 2 years ago
- Portfolio website.☆10Nov 29, 2023Updated 2 years ago
- POC for CVE-2023-29360☆12Aug 31, 2024Updated last year
- Jackson nested property filter that performs with almost no overhead☆11Nov 18, 2016Updated 9 years ago
- 🤗 Transformers: State-of-the-art Machine Learning for Pytorch, TensorFlow, and JAX.☆10Nov 19, 2024Updated last year