Jlan45 / ysoserialSecondLinks
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
☆14Updated 2 years ago
Alternatives and similar repositories for ysoserialSecond
Users that are interested in ysoserialSecond are comparing it to the libraries listed below
Sorting:
- PoC of Apache Dubbo CVE-2023-23638☆33Updated last year
- c3p0 new gadget☆24Updated 4 months ago
- 虚拟WebShell及内存马系列,来源自.NET安全矩阵星球☆29Updated 11 months ago
- Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小☆66Updated last year
- portreuse reuseport 端口复用☆62Updated last year
- 检测域内常见一把梭漏洞,包括:NoPac、ZeroLogon、CVE-2022-26923、PrintNightMare☆61Updated last year
- ☆36Updated 2 years ago
- ☆80Updated 8 months ago
- Netty/WebFlux 内存马☆25Updated last year
- 分享ABC_123自己改造的ysoserial工具,java反序列化漏洞利用,生成的java反序列化利用链支持jdk1.5版本的老旧系统的利用。☆56Updated 4 months ago
- 多组件客户端☆73Updated 3 months ago
- ☆24Updated 7 months ago
- CVE-2025-54424:1Panel 客户端证书绕过RCE漏洞 一体化工具 (扫描+利用)☆27Updated last week
- 域横向,内网信息收集利用工具☆30Updated 2 years ago
- Java 代码审计 idea 插件☆23Updated 5 months ago
- 一个用友漏洞检测工具☆29Updated last year
- 利用EFSRPC协议批量探测出网☆66Updated last year
- 用友 nc 系列密码解密☆62Updated 2 years ago
- Nacos JRaft Hessian 反序列化 RCE EXP☆65Updated 2 years ago
- Hessian UTF-8 Overlong Encoding☆19Updated last year
- 在spring-aop中新发现的反序列化gadget-chain☆50Updated 7 months ago
- Redis primary/secondary replication RCE☆44Updated 3 years ago
- 内存马生成工具 Tomcat、Weblogic、CMD、Behinder、Godzilla、Suo5......☆30Updated 5 months ago
- CVE-2023-46604☆28Updated last year
- CVE-2024-43044的利用方式☆20Updated 11 months ago
- CVE-2023-46604☆64Updated last year
- ActiveMQ RCE (CVE-2023-46604) 回显利用工具☆34Updated 10 months ago
- windows 添加管理员--Rust版本☆44Updated 3 years ago
- 配合 CVE-2023-22515 后台上传jar包实现RCE☆22Updated last year
- Supershell反制☆29Updated 2 years ago