OneSourceCat / XxlJob-Hessian-RCE
XxlJob<=2.1.2配置不当情况下反序列化RCE
☆92Updated 4 years ago
Alternatives and similar repositories for XxlJob-Hessian-RCE:
Users that are interested in XxlJob-Hessian-RCE are comparing it to the libraries listed below
- Java 内存马生成插件☆50Updated last year
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆90Updated 2 years ago
- ☆117Updated last year
- ☆81Updated 3 years ago
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆87Updated last year
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated last year
- 一个Spring4Shell 被动式检测的Burp插件☆93Updated 2 years ago
- ☆68Updated 3 years ago
- ☆50Updated 2 years ago
- Kunlun-M 的GUI程序☆51Updated 2 years ago
- 在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 3 years ago
- CodeQL 寻找 JNDI利用 Lookup接口☆163Updated 2 years ago
- 卸载冰蝎内存马☆67Updated 3 years ago
- 一些结合第三方组件的Fastjson POC,在1.2.48以后版本中陆续被添加至黑名单。☆56Updated 5 years ago
- 蓝凌OA的前后台密码的加解密工具☆94Updated 4 years ago
- 利用shiro反序列化注入冰蝎内存马☆35Updated 3 years ago
- 一款探测fastjson漏洞的BurpSuite插件☆61Updated 2 years ago
- ☆35Updated 3 years ago
- java☆54Updated 2 years ago
- remote execute js when debugger.paused☆42Updated last year
- 如何将Java反序列化Payload极致缩小☆48Updated 3 years ago
- Java命令行文件监控小工具(代码审计)☆100Updated 3 years ago
- Godzilla java Decode,哥斯拉jsp(内存马)流量解密☆105Updated 3 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆78Updated 2 years ago
- geacon:简单适配了一个profile配置文件,可直接拿来修改使用,用于cs上线linux.☆160Updated 2 years ago
- SMTP Netcat , test SMTP protocol☆105Updated 3 years ago
- ☆38Updated 4 years ago
- MemShell List☆79Updated last year
- ☆13Updated 2 years ago
- GO语言漏洞靶场 GIN框架 支持docker一键启动☆75Updated 2 years ago