Java漏洞分析汇合
☆143Dec 14, 2021Updated 4 years ago
Alternatives and similar repositories for JavaVulnSummary
Users that are interested in JavaVulnSummary are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- fastjson不出网利用、c3p0☆257Jul 30, 2021Updated 4 years ago
- Java RCE 回显测试代码☆1,015Oct 15, 2020Updated 5 years ago
- 域控安全one for all☆739Sep 9, 2024Updated last year
- 命令执行不回显但DNS协议出网的命令回显场景解决方案☆277Jan 10, 2023Updated 3 years ago
- Java web路由内存分析工具☆439May 22, 2025Updated 11 months ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- JNDI在java高版本的利用工具,FUZZ利用链�☆602Oct 8, 2022Updated 3 years ago
- geacon:简单适配了一个profile配置文件,可直接拿来修改使用,用于cs上线linux.☆160Aug 3, 2022Updated 3 years ago
- 自己的JNDI 利用工具,添加一些人性化功能☆132Sep 4, 2022Updated 3 years ago
- Java漏洞学习笔记 Deserialization Vulnerability☆943Jun 14, 2023Updated 2 years ago
- JavaWeb MemoryShell Inject/Scan/Killer/Protect Research & Exploring☆657Jun 25, 2021Updated 4 years ago
- 关于学习java安全的一些知识,正在学习中ing,欢迎fork and star☆792Jul 11, 2023Updated 2 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆89Jul 21, 2022Updated 3 years ago
- 🚀 一款为了学习go而诞生的漏洞利用工具☆451Jun 14, 2022Updated 3 years ago
- (周瑜)Java - SpringBoot 持久化 WebShell(不仅仅是SpringBoot,适合任何符合JavaEE规范的服务)☆615Dec 29, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- 帆软/致远密码解密工具☆361Jul 29, 2021Updated 4 years ago
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入☆775Jan 26, 2022Updated 4 years ago
- 项目监控工具 以及 Codeql 自动运行☆314Apr 13, 2023Updated 3 years ago
- Java命令行文件监控小工具(代码审计)☆105Nov 29, 2021Updated 4 years ago
- Shiro-550 不依赖CC链利用工具☆451Jun 19, 2024Updated last year
- 记录学习codeql的过程☆396Jun 9, 2023Updated 2 years ago
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆754Apr 14, 2021Updated 5 years ago
- 80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background serv…☆874Jun 24, 2024Updated last year
- 分享几个直接可用的内存马,记录一下学习过程中看过的文章☆982Mar 23, 2022Updated 4 years ago
- AI Agents on DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- 收集内存马打入方式☆507May 20, 2022Updated 3 years ago
- A Go library for generating Java deserialization payloads.☆155Sep 9, 2024Updated last year
- 汇总了目前可以找到的所有的进程注入的方式,完成了x86/x64下的测试,不断更新中☆284Feb 8, 2022Updated 4 years ago
- DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名 产品(fuzz.red),Alphalog与传统DNSLog不同,更快、更安全。☆457Aug 20, 2025Updated 8 months ago
- 建议使用新版:https://github.com/jar-analyzer/jar-analyzer☆899Nov 30, 2023Updated 2 years ago
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,017May 21, 2024Updated last year
- 个人使用CodeQL编写的一些规则☆181Mar 30, 2022Updated 4 years ago
- 各种数据库的利用姿势☆1,035Jan 3, 2025Updated last year
- JDBC Connection URL Attack☆448Sep 10, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- fastjson 80 远程代码执行漏洞复现☆199Sep 7, 2022Updated 3 years ago
- WebSocket ��内存马/Webshell,一种新型内存马/WebShell技术☆1,494Apr 10, 2023Updated 3 years ago
- Java应用的一些配置文件字典,来源于公开的字典与平时收集☆320Feb 1, 2024Updated 2 years ago
- 基于dbcp的fastjson rce 回显☆197Jun 28, 2021Updated 4 years ago
- Exchange 服务器安全性的辅助测试工具☆332Jul 21, 2023Updated 2 years ago
- Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式☆546Mar 6, 2025Updated last year
- rmi打内存马工具,适用于目标用不了ldap的情况☆254Jul 12, 2023Updated 2 years ago