P4r4d1se / heapdump_shiro_vuln

A heapdump leaks Shiro key causing RCE vulnerability environment.

☆53

Alternatives and similar repositories for heapdump_shiro_vuln:

Users that are interested in heapdump_shiro_vuln are comparing it to the libraries listed below

TonyD0g / JSPHunter
基于污点分析和模拟栈帧技术的JSP Webshell检测
☆45Updated 3 months ago
Bin4xin / bigger-than-bigger
Expolit Lists. 相关集合💥💥💥 ;) 用友NC反序列化/ CTF/ Java Deserialization/Shiro Vulns/ CNVD or CVE Vulns/ Log4j2/ Hikvision-decrypter...✨✨✨
☆65Updated 6 months ago
Getshell / Fanzhi
《FanZhi-攻击与反制的艺术》
☆63Updated last year
webraybtl / ysoserialbtl
基于ysoserial扩展命令执行结果回显，生成冰蝎内存马
☆87Updated last year
ax1sX / SpringSecurity
A list for Spring Security
☆121Updated last year
Le1a / CVE-2023-33246
Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit
☆79Updated last year
vulhub / JNDIExploit
A malicious LDAP server for JNDI injection attacks
☆52Updated last year
winezer0 / knife-plus
burpsuite knife插件维护分支（2024分支请访问 knife-branch）
☆5Updated 9 months ago
AlphabugX / godzilla_decode
Godzilla java Decode,哥斯拉jsp(内存马)流量解密
☆105Updated 3 years ago
FFreestanding / JavaUnserializeChain
自己积累的一些Java反序列化利用链
☆87Updated 2 years ago
dushixiang / evil-mysql-server
evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.
☆87Updated 2 years ago
lz2y / DubboPOC
Apache Dubbo漏洞测试Demo及其POC
☆61Updated last year
AfterSnows / ApricusFindEvil
检测查杀java内存马
☆76Updated last year
a1phaboy / MenoyGone
Attack cobalt strike server’s FCS by DoW
☆69Updated last year
bkfish / yaml-payload-for-Win
用于windows反弹shell的yaml-payload
☆71Updated 3 years ago
woodpecker-appstore / java-memshell-generator
Java 内存马生成插件
☆50Updated last year
qi4L / Ysoserial-go
A Go library for generating Java deserialization payloads.
☆155Updated 6 months ago
YYHYlh / Dubbo-Scan
一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。
☆167Updated last year
Anion3r / MSSQLProxy
一个能够利用MSSQL的xp_cmdshell功能来进行流量代理的脚本，用于在站酷分离且不出网SQL注入进行代理
☆101Updated 2 years ago
ax1sX / RouteCheck-Alpha
A Java Route Collection Tool
☆91Updated 7 months ago
godzeo / go-gin-vul
GO语言漏洞靶场 GIN框架支持docker一键启动
☆75Updated 2 years ago
crow821 / FakeFlash
flash钓鱼 flash水坑攻击最新版源码
☆58Updated 2 years ago
ax1sX / MemShell
MemShell List
☆79Updated last year
Whoopsunix / PPPYSO
proof-of-concept for generating Java deserialization payload | Proxy MemShell
☆185Updated 9 months ago
Hackaspx / Hackaspx
《ASPX安全-只有ASPX安全才能拯救.NET》Only ASPX Security Can Save The NET.
☆33Updated 2 years ago
pap1rman / postnacos
哥斯拉nacos后渗透插件 maketoken adduser
☆144Updated last year
R17a-17 / JavaVulnSummary
Java漏洞分析汇合
☆142Updated 3 years ago
zwjjustdoit / CVE-2021-34371.jar
CVE-2021-34371.jar
☆25Updated 3 years ago
suizhibo / MemShellKiller
基于Agent技术实现的Java内存马查杀、防护工具。
☆82Updated 8 months ago
Lotus6 / FileMonitor
Java命令行文件监控小工具(代码审计)
☆101Updated 3 years ago