R17a-17 / JavaVulnSummaryLinks
Java漏洞分析汇合
☆142Updated 4 years ago
Alternatives and similar repositories for JavaVulnSummary
Users that are interested in JavaVulnSummary are comparing it to the libraries listed below
Sorting:
- 在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 4 years ago
- springboot跨线程注入内存马☆123Updated 3 years ago
- weblogic历史漏洞利用工具☆91Updated 3 years ago
- fastjson 80 远程代码执行漏洞复现☆199Updated 3 years ago
- ☆83Updated 4 years ago
- Java命令行文件监控小工具(代码审计)☆103Updated 4 years ago
- woodpecker框架weblogic信息探测插件☆185Updated 3 years ago
- 一个Spring4Shell 被动式检测的Burp插件☆93Updated 3 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆79Updated 3 years ago
- 利用字符集编码绕过waf的burpsuite插件☆124Updated 4 years ago
- 泛微OA_V9全版本的SQL远程代码执行漏洞☆157Updated 3 years ago
- ☆198Updated last year
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆230Updated 2 years ago
- 将Goby的json格式Poc转为xray的yaml格式Poc☆132Updated 3 years ago
- Druid 密文解密工具☆137Updated 5 years ago
- ☆30Updated 2 years ago
- ☆122Updated 2 years ago
- 基于dbcp的fastjson rce 回显☆197Updated 4 years ago
- 代码审计总结☆84Updated 4 years ago
- 一款探测fastjson漏洞的BurpSuite插件☆61Updated 3 years ago
- 可在Windows下执行系统命令的Redis模块,可用于Redis主从复制攻击。☆264Updated 3 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆91Updated 3 years ago
- CodeQL 寻找 JNDI利用 Lookup接口☆166Updated 3 years ago
- xxl-job未授权命令执行☆114Updated 3 years ago
- 针对 403 页面的 fuzz 脚本☆123Updated 3 years ago
- 一个以fuzz为中心思想的被动扫描工具☆161Updated 2 years ago
- 快速遍历目标目录中所有指定后缀文件中包含的敏感信息☆138Updated 3 years ago
- 自己的JNDI 利用工具,添加一些人性化功能☆131Updated 3 years ago
- A list for Spring Security☆128Updated 2 years ago
- dubbo快速利用exp,基本上老版本覆盖100%。☆161Updated 7 months ago