TomAPU / WAF-rules
☆22Updated 5 years ago
Related projects: ⓘ
- 总结了免杀webshell的方法论☆48Updated 4 years ago
- ☆159Updated this week
- Low-level RASP: Protecting Applications Implemented in High-level Programming Languages☆56Updated last year
- ☆27Updated 4 years ago
- slides and papers from (or partly from) Bonan☆22Updated 6 months ago
- 《深入理解DAST动态应用程序安全测试》Dynamic Application Security Testing.☆45Updated last year
- ☆58Updated 4 years ago
- 收集规则☆30Updated last year
- ☆103Updated 11 months ago
- PHP 扩展, 用于 PHP-FPM、FastCGI、LD_PRELOAD等模式下突破 disabled_functions☆104Updated 3 years ago
- JVM runtime class loading protection agent.(JVM类加载保护agent)☆47Updated 3 years ago
- ☆78Updated this week
- ☆32Updated 4 years ago
- struts2 漏洞环境源代码☆76Updated 2 years ago
- weblog/dnslog平台 Docker容器化部署☆37Updated 2 years ago
- CVE-2020-2551 POC to use in Internet☆21Updated 4 years ago
- bypass JEP290 RaspHook code☆63Updated 3 years ago
- 使用java agent反序列化注入内存shell☆67Updated 3 years ago
- ☆74Updated this week
- 基于AST的JSONP劫持漏洞自动化挖掘☆94Updated 4 years ago
- ☆108Updated this week
- Writeup and environment for XCTF2021Final-Dubbo☆45Updated 3 years ago
- Java 反序列化学习的实验代码 Java_deserialize_vuln_lab☆88Updated 5 years ago
- fastjson-1.2.58-rce with h2 database☆33Updated 5 years ago
- Struts2 vuln env☆44Updated last year
- 基于JVM-Sandbox实现RASP安全监控防护☆50Updated last year
- webshell-bypass☆73Updated 4 years ago
- ☆41Updated 4 years ago
- ☆79Updated 2 years ago
- Scripts that can generate gopher payload.☆11Updated 4 years ago