JavanXD / Demo-Exploit-Jackson-RCELinks
Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.
☆18Updated 6 years ago
Alternatives and similar repositories for Demo-Exploit-Jackson-RCE
Users that are interested in Demo-Exploit-Jackson-RCE are comparing it to the libraries listed below
Sorting:
- Native Java serialization filter blacklist for common gadgets☆20Updated 5 years ago
- Jira未授权SSRF漏洞☆31Updated 5 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆123Updated 7 years ago
- Additional materials for RootedCON 2015 Apache Struts talk☆30Updated 10 years ago
- POC for leaking java version through file and ftp protocols☆24Updated 4 years ago
- FasterXML/jackson-databind 远程代码执行漏洞☆74Updated 5 years ago
- CVE-2020-9547:FasterXML/jackson-databind 远程代码执行漏洞☆23Updated 5 years ago
- Web Server that serves a single file and keeps the connection open until user releases it.☆73Updated 11 years ago
- CVE-2020-8840:FasterXML/jackson-databind 远程代码执行漏洞☆36Updated 5 years ago
- Several XStream gadgets ported from ysoserial☆33Updated 3 years ago
- ☆27Updated 4 years ago
- Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12☆95Updated 2 years ago
- A Burp Extender plugin, that will take deserialized AMF objects and encode them in XML using the Xtream library☆28Updated 10 years ago
- ☆34Updated 5 years ago
- Dependencies with Log4j2 Checklist☆35Updated 3 years ago
- Directory transversal to remote code execution☆69Updated 5 years ago
- ☆65Updated 4 years ago
- CVE-2020-35728 & Jackson-databind RCE☆43Updated 4 years ago
- A Zhiyuan OA Collaborative Office Remote Code Execution Vulnerability on Windows☆37Updated 5 years ago
- CVE-2019-2890 WebLogic 反序列化RCE漏洞☆44Updated 5 years ago
- ☆12Updated 8 years ago
- ☆21Updated 6 years ago
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆100Updated 5 years ago
- Learn how to get a reverse shell from JIRA application server☆24Updated 6 years ago
- CVE-2020-11890: Improper input validations in the usergroup table class could lead to a broken ACL configuration to RCE☆62Updated 2 years ago
- A fastjson payload generator☆57Updated 4 years ago
- X41 BeanStack - Stack Trace Fingerprinting BETA☆52Updated 4 years ago
- bugbounty tools☆18Updated last year
- CVE-2020-36184 && Jackson-databind RCE☆15Updated 4 years ago
- Spring Boot Actuator + Spring Cloud Vul Env☆19Updated 5 years ago