KpLi0rn / ysoserialLinks
在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
☆68Updated 4 years ago
Alternatives and similar repositories for ysoserial
Users that are interested in ysoserial are comparing it to the libraries listed below
Sorting:
- springboot跨线程注入内存马☆123Updated 3 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆91Updated 3 years ago
- 一个Spring4Shell 被动式检测的Burp插件☆93Updated 3 years ago
- Java漏洞分析汇合☆142Updated 4 years ago
- ☆83Updated 4 years ago
- ☆122Updated 2 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆79Updated 3 years ago
- Java命令行文件监控小工具(代码审计)☆103Updated 4 years ago
- Shiro内存马注入环境☆63Updated 4 years ago
- 基于SerializationDumper的Shiro Cookie序列化数据解�密小工具☆54Updated 5 years ago
- java☆54Updated 3 years ago
- weblogic历史漏洞利用工具☆91Updated 3 years ago
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆89Updated 2 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆72Updated 2 months ago
- fastjson 80 远程代码执行漏洞复现☆199Updated 3 years ago
- woodpecker框架weblogic信息探测插件☆185Updated 3 years ago
- SMTP Netcat , test SMTP protocol☆105Updated 4 years ago
- 蓝凌OA的前后台密码的加解密工具☆95Updated 5 years ago
- ☆44Updated 3 years ago
- 可在Windows下执行系统命令的Redis模块,可用于Redis主从复制攻击。☆264Updated 3 years ago
- ☆117Updated 2 years ago
- 卸载冰蝎内存马☆68Updated 4 years ago
- dubbo快速利用exp,基本上老版本覆盖100%。☆161Updated 7 months ago
- 基于dbcp的fastjson rce 回显☆197Updated 4 years ago
- 《ASPX安全-只有ASPX安全才能拯救.NET》Only ASPX Security Can Save The NET.☆37Updated 3 years ago
- ☆97Updated 2 years ago
- 利用字符集编码绕过waf的burpsuite插件☆124Updated 4 years ago
- 利用RPC服务,批量探测内网Windows出网情况☆126Updated 3 years ago
- 自己的JNDI 利用工具,添加一些人性化功能☆131Updated 3 years ago
- XxlJob<=2.1.2配置不当情况下反序列化RCE☆119Updated 5 years ago