LeadroyaL / java-xxe-defense-demo
java xxe defense demo
☆46Updated 5 years ago
Related projects: ⓘ
- ☆58Updated 4 years ago
- ☆80Updated 6 years ago
- RememberMe Padding Oracle Vulnerability RCE☆71Updated 4 years ago
- bypass JEP290 RaspHook code☆63Updated 4 years ago
- Test repository for verifying compatibility between adjacent minor versions☆35Updated 3 months ago
- ☆129Updated 2 years ago
- fastjson-1.2.61-RCE☆33Updated 4 years ago
- Java Security Documents☆79Updated 5 years ago
- fastjson-1.2.47☆64Updated 5 years ago
- Struts2 vuln env☆44Updated last year
- Java After-Deserialization Attack☆77Updated 3 years ago
- fastjson 1.2.68 版本 autotype bypass☆140Updated 2 years ago
- fastjson-1.2.58-rce with h2 database☆33Updated 5 years ago
- ☆70Updated 5 years ago
- ☆29Updated this week
- 个人用于在自动化挖掘gadget时,方便查找gadget chains中class所在jar包,以助于便捷审计测试gadget有效性的那么一个小工具。☆60Updated 4 years ago
- kibana < 6.6.0 未授权远程代码命令执行 (Need Timelion And Canvas),CVE-2019-7609☆90Updated 4 years ago
- VulHint是辅助代码审计的 sublime text 3 插件☆67Updated 5 years ago
- Spring Boot Actuator + Spring Cloud Vul Env☆19Updated 4 years ago
- Java 反序列化学习的实验代码 Java_deserialize_vuln_lab☆88Updated 5 years ago
- ☆74Updated this week
- ☆29Updated this week
- A js infomation dig tool.☆68Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆100Updated 4 years ago
- Shiro_721 exp 纯手工实现Padding Oracle整个过程☆68Updated 4 years ago
- Shiro RememberMe 1.2.4 反序列化 漏洞☆52Updated 4 years ago
- TongASDP漏洞测试环境☆33Updated last year
- ☆15Updated this week
- ☆81Updated this week