A fastjson payload generator
☆59Oct 13, 2020Updated 5 years ago
Alternatives and similar repositories for BcelPayloadGenerator
Users that are interested in BcelPayloadGenerator are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- CommonsBeanutils1,CommonsCollectionsK1☆58Nov 16, 2020Updated 5 years ago
- tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484…☆213May 19, 2020Updated 5 years ago
- Shiro RCE (Padding Oracle Attack)☆148Nov 15, 2019Updated 6 years ago
- 未授权批量检测脚本☆14Oct 9, 2019Updated 6 years ago
- POP3 MITM example☆27Dec 12, 2019Updated 6 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- JRE8u20_RCE_Gadget☆255Jul 1, 2016Updated 9 years ago
- ☆18Sep 6, 2018Updated 7 years ago
- Reference:https://www.w2n1ck.com/article/44/☆155Mar 7, 2020Updated 6 years ago
- 通过webshell实现的内网穿透工具☆49Nov 19, 2019Updated 6 years ago
- RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl☆210Mar 10, 2019Updated 7 years ago
- shell over ICMP☆19Dec 8, 2012Updated 13 years ago
- Java RCE 回显测试代码☆1,017Oct 15, 2020Updated 5 years ago
- 用WebShell攻击PHP-FPM Attacking PHP-FPM with WebShell☆41May 6, 2021Updated 4 years ago
- rmi、jndi、ldap、jrmp、jmx、jms一些demo测试☆311Jun 17, 2022Updated 3 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- 更快速的进行Web应用指纹识别☆171May 9, 2019Updated 6 years ago
- Yet another SharpSphere☆228Aug 1, 2021Updated 4 years ago
- cobalt strike 自用脚本☆29Oct 29, 2020Updated 5 years ago
- record some AD security and Red Team contents☆14Dec 10, 2019Updated 6 years ago
- Exchange2010 authorized RCE☆157Dec 24, 2020Updated 5 years ago
- LANGZI_SRC_安全巡航 是一款集成漏扫,验证,资产监控,自动复现并且生成结果表报的工具,实现初衷是为了帮助白帽子在SRC中节约时间成本的自动化工具。☆14Jul 7, 2019Updated 6 years ago
- WINDOWS TELEMETRY权限维持☆258Jul 2, 2020Updated 5 years ago
- ☆131Jun 17, 2022Updated 3 years ago
- Shiro_721 exp 纯手工实现Padding Oracle整个过程☆67Nov 20, 2019Updated 6 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- bypass JEP290 RaspHook code☆63Sep 21, 2020Updated 5 years ago
- 利用NTLM Hash读取Exchange邮件☆443Mar 23, 2026Updated 2 weeks ago
- Drupal8's REST RCE, SA-CORE-2019-003, CVE-2019-6340☆71Jun 10, 2020Updated 5 years ago
- attackRmi☆258Oct 14, 2020Updated 5 years ago
- 一款基于webshell命令执行功能实现的GUI webshell管理工具,支持流量加密☆220Jun 4, 2021Updated 4 years ago
- X安蜜罐用的一些存在JSonp劫持的API☆93May 28, 2021Updated 4 years ago
- 利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码☆713May 10, 2021Updated 4 years ago
- fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.☆229Oct 12, 2022Updated 3 years ago
- AntSword 出网探测插件☆22Jul 6, 2022Updated 3 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆471Sep 16, 2023Updated 2 years ago
- 总结了一下2019年在JVM环境中使用XXE攻击的知识☆58Oct 31, 2019Updated 6 years ago
- 内网安全·域账号弱口令审计☆163Dec 27, 2019Updated 6 years ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆484Dec 9, 2020Updated 5 years ago
- Apache Solr Injection Research☆581Jan 28, 2020Updated 6 years ago
- ☆836Jun 7, 2022Updated 3 years ago
- Demo code for post <Restrictions of JNDI Manipulation RCE & Bypass>☆268Jun 17, 2022Updated 3 years ago