W1one / FastJsonAttack
fastjson全版本漏洞利用工具,只支持POST
☆10Updated 3 years ago
Related projects ⓘ
Alternatives and complementary repositories for FastJsonAttack
- 文件上传字典-轻量化☆17Updated last year
- 批量处理url链接,获取多级路径并打印☆41Updated last year
- zip slip☆36Updated last year
- CVE-2021-22205 检测脚本,支持getshell和命令执行☆12Updated 2 years ago
- 重点系统指纹识别的工具☆32Updated 2 years ago
- 用友NC Cloud前台远程命令执行漏洞批量扫描poc、exp,带命令执行回显☆19Updated last year
- java反序列化学习笔记☆15Updated 2 years ago
- CobaltStrike profile by 风起☆39Updated 3 years ago
- Burp suite 插件 实现参数溢出、垃圾数据、字典笛卡尔积☆27Updated 2 years ago
- 自研JavaFX图形化漏洞扫描工具,支持ThinkPHP 2.x RCE,Thinkphp5 5.0.22/5.1.29RCE,ThinkPHP5 5.0.23RCE和ThinkPHP5 SQL注入漏洞和敏感信息泄露漏洞的漏洞检测,以及命令执行的功能。漏洞POC基本适用Th…☆18Updated 2 years ago
- Burp-Plugin-study☆16Updated 3 years ago
- 获取域控权限方法枚举☆12Updated 2 years ago
- BCEL编解码工具☆16Updated 2 years ago
- 读取dump向日葵&Todesk进程的文件获得连接信息☆12Updated last month
- Java反序列化漏洞学习☆14Updated 3 years ago
- 浏览器模拟爆破,支持CSS选择器☆18Updated last year
- CVE-2022-24990信息泄露+RCE 一条龙☆39Updated 2 years ago
- Breaking fastjson with forward shell☆23Updated 2 years ago
- 一个垃圾的fastjson反序列化payload生成工具☆18Updated 2 years ago
- burpsuite 插件 根据配置简单规则编辑通过的HTTP流量包☆15Updated last year
- 泛微OA_V9全版本前台任意文件上传漏洞☆29Updated 2 years ago
- Wwaf is a small tool for identifying Web application firewall (WAF) products.☆24Updated last year
- 一个解密 Shiro-rememberMe的图形化小工具,支持cbc和gcm。��☆27Updated 3 years ago
- 基于JavaFx编写的C/S图形化界面漏洞验证工具集。☆24Updated 2 years ago
- CVE-2021-43798 Grafana 任意文件读取漏洞 POC+参数☆14Updated 2 years ago