W01fh4cker/LearnFastjsonVulnFromZero-Basic external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

W01fh4cker/LearnFastjsonVulnFromZero-Basic

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/W01fh4cker/LearnFastjsonVulnFromZero-Basic)

Close

W01fh4cker / LearnFastjsonVulnFromZero-BasicView on GitHubMore

• External links
• Readme badge

【两万字原创】零基础学fastjson漏洞（基础篇），公众号：追梦信安

☆190Oct 26, 2024Updated last year

Alternatives and similar repositories for LearnFastjsonVulnFromZero-Basic

Users that are interested in LearnFastjsonVulnFromZero-Basic are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• W01fh4cker / LearnFastjsonVulnFromZero-Improvement

  View on GitHub
  【两万字原创】零基础学fastjson漏洞（提高篇），公众号：追梦信安
  ☆213Dec 7, 2023Updated 2 years ago
• W01fh4cker / LearnJavaMemshellFromZero

  View on GitHub
  【三万字原创】完全零基础从0到1掌握Java内存马，公众号：追梦信安
  ☆1,000May 25, 2025Updated last year
• lemono0 / FastJsonParty

  View on GitHub
  FastJson全版本Docker漏洞环境(涵盖1.2.47/1.2.68/1.2.80等版本)，主要包括JNDI注入及高版本绕过、waf绕过、文件读写、原生反序列化、利用链探测绕过、不出网利用等。从黑盒的角度覆盖FastJson深入利用
  ☆1,216Jul 12, 2024Updated last year
• Whoopsunix / JavaRce

  View on GitHub
  Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios | 实战场景较通用的 Java Rce 相关漏洞的利用方式
  ☆549Mar 6, 2025Updated last year
• ReaJason / MemShellParty

  View on GitHub
  一款专注于 Java 主流 Web 中间件的内存马快速生成工具，致力于简化安全研究人员和红队成员的工作流程，提升攻防效率
  ☆1,501May 30, 2026Updated 2 weeks ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• pen4uin / java-memshell-generator

  View on GitHub
  一款支持自定义的 Java 内存马生成工具｜A customizable Java in-memory webshell generation tool.
  ☆2,207Aug 21, 2025Updated 9 months ago
• wgpsec / lc

  View on GitHub
  LC（List Cloud）是一个多云攻击面资产梳理工具
  ☆648Oct 6, 2024Updated last year
• ekkoo-z / Z-Godzilla_ekp

  View on GitHub
  哥斯拉webshell管理工具二次开发规避流量检测设备
  ☆1,064Dec 2, 2025Updated 6 months ago
• bmth666 / Yongyou-Unserialize-plus

  View on GitHub
  用友的一些反序列化链子以及1day，二开了狼组的YongYouNcTool，改了一下逻辑以及poc
  ☆131Oct 12, 2024Updated last year
• Bl0omZ / JNDIEXP

  View on GitHub
  JNDI在java高版本的利用工具,FUZZ利用链
  ☆601Oct 8, 2022Updated 3 years ago
• 0x727 / BypassPro

  View on GitHub
  对Auth/Waf 自动化bypass的burpsuite插件
  ☆1,277May 10, 2026Updated last month
• leveryd / x-waf

  View on GitHub
  让"WAF绕过"变得简单
  ☆437Jan 26, 2025Updated last year
• bcvgh / daydayExp-pocs

  View on GitHub
  daydayExp的漏洞POC仓库，慢慢更新...
  ☆377Nov 4, 2024Updated last year
• safe6Sec / Fastjson

  View on GitHub
  Fastjson姿势技巧集合
  ☆1,849Oct 20, 2023Updated 2 years ago
• AI Agents on DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• KimJun1010 / inspector

  View on GitHub
  IDEA代码审计辅助插件（深信服深蓝实验室天威战队强力驱动）
  ☆583Mar 10, 2025Updated last year
• wh1t3zer / SpringBootVul-GUI

  View on GitHub
  一个半自动化springboot打点工具，内置目前springboot所有漏洞
  ☆781Sep 30, 2025Updated 8 months ago
• vulhub / java-chains

  View on GitHub
  Java Vulnerability Exploitation Platform
  ☆2,089Apr 29, 2026Updated last month
• 7hang / --Java

  View on GitHub
  代码审计知识点整理-Java
  ☆530Jun 15, 2020Updated 6 years ago
• luelueking / RuoYi-v4.7.8-RCE-POC

  View on GitHub
  ☆254Feb 25, 2024Updated 2 years ago
• whwlsfb / JDumpSpider

  View on GitHub
  HeapDump敏感信息提取工具
  ☆1,660Dec 15, 2025Updated 6 months ago
• kyo-w / router-router

  View on GitHub
  Java web路由内存分析工具
  ☆439May 22, 2025Updated last year
• TheKingOfDuck / RCEFuzzer

  View on GitHub
  一个以fuzz为中心思想的被动扫描工具
  ☆160Dec 26, 2023Updated 2 years ago
• pmiaowu / log4j2Scan

  View on GitHub
  用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件
  ☆211Apr 18, 2023Updated 3 years ago
• Serverless GPU API endpoints on Runpod - Get Bonus Credits • Ad
  Skip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
• exp1orer / JNDI-Inject-Exploit

  View on GitHub
  解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用，探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入
  ☆775Jan 26, 2022Updated 4 years ago
• Wileysec / nacos_derby_rce

  View on GitHub
  Nacos Derby命令执行漏洞利用脚本
  ☆151Apr 7, 2025Updated last year
• pen4uin / java-echo-generator

  View on GitHub
  一款支持自定义的 Java 回显载荷生成工具｜A customizable Java echo payload generation tool.
  ☆463Jan 12, 2025Updated last year
• UzJu / Cloud-Bucket-Leak-Detection-Tools

  View on GitHub
  六大云存储，泄露利用检测工具
  ☆1,258Mar 28, 2025Updated last year
• ttstormxx / jjjjjjjjjjjjjs

  View on GitHub
  爬网站JS文件，自动fuzz api接口，指定api接口（针对前后端分离项目，可指定后端接口地址），回显api响应
  ☆761Jul 20, 2023Updated 2 years ago
• Lotus6 / ConfluenceMemshell

  View on GitHub
  Confluence CVE 2021，2022，2023 利用工具，支持命令执行，哥斯拉，冰蝎 内存马注入
  ☆558Feb 1, 2024Updated 2 years ago
• lokerxx / JavaVul

  View on GitHub
  JAVA 安全靶场，IAST 测试用例，JAVA漏洞复现，代码审计，SAST测试用例，安全扫描（主动和被动），JAVA漏洞靶场，RASP测试用例 ； Java Security Testbed, IAST Test Cases, Java Vulnerability R…
  ☆288Apr 29, 2026Updated last month
• qingchenhh / qc_poc

  View on GitHub
  漏洞poc
  ☆112Jan 4, 2026Updated 5 months ago
• lijiejie / swagger-exp

  View on GitHub
  A Swagger API Exploit
  ☆1,379Jun 7, 2024Updated 2 years ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• Neo-Maoku / SearchAvailableExe

  View on GitHub
  寻找可利用的白文件
  ☆562Aug 18, 2025Updated 9 months ago
• BambiZombie / FrchannelPlus

  View on GitHub
  帆软bi反序列化漏洞利用工具
  ☆196Mar 23, 2024Updated 2 years ago
• f0ng / poc2jar

  View on GitHub
  Java编写，Python作为辅助依赖的漏洞验证、利用工具，添加了进程查找模块、编码模块、命令模块、常见漏洞利用GUI模块、shiro rememberMe解密模块，加快测试效率
  ☆761Feb 25, 2024Updated 2 years ago
• TonyNPham / GodzillaPlugin-Suo5-MemProxy

  View on GitHub
  一款高性能 HTTP 内存代理 | 哥斯拉插件 | readteam | 红队 | 内存马 | Suo5 | Godzilla | 正向代理
  ☆293Aug 8, 2023Updated 2 years ago
• ax1sX / SecurityList

  View on GitHub
  A list for Web Security and Code Audit
  ☆1,246Dec 3, 2024Updated last year
• for-A1kaid / CodeAudit

  View on GitHub
  记录一些代码审计过的源码
  ☆183Feb 26, 2025Updated last year
• Hel10-Web / Databasetools

  View on GitHub
  一款用Go语言编写的数据库自动化提权工具，支持Mysql、MSSQL、Postgresql、Oracle、Redis数据库提权、命令执行、爆破以及ssh连接
  ☆866Aug 30, 2023Updated 2 years ago