记录调试分析ysoserial系列的学习过程,主要包含手动构造的一些poc,便于加深对漏洞和工具的理解
☆30Jun 15, 2020Updated 6 years ago
Alternatives and similar repositories for ysoserial-poc
Users that are interested in ysoserial-poc are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- 护网杯 2018 WEB (4) easy_laravel☆12Aug 22, 2019Updated 6 years ago
- 来源于jackson-CVE-2020-8840,需要开autotype☆16Jun 17, 2022Updated 4 years ago
- Really stupid re-implementation of invoke-wmiexec☆12Jul 14, 2022Updated 3 years ago
- 启动一个system权限的cmd☆12Apr 23, 2021Updated 5 years ago
- The Security Practices of Party A Phishing☆21Nov 9, 2019Updated 6 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- SyscallLoader☆11Sep 13, 2021Updated 4 years ago
- log4j 1.x RCE Poc -- CVE-2021-4104☆20Dec 14, 2021Updated 4 years ago
- [WIP] a simple UI for Vulhub☆15Jun 10, 2021Updated 5 years ago
- ☆13Feb 9, 2022Updated 4 years ago
- python security audit tool,用于python源码的代码审计,支持命令注入,sql注入☆63Jun 4, 2015Updated 11 years ago
- ☆10May 23, 2019Updated 7 years ago
- 1000个PHP代码审计案例(2016.7以前乌云公开漏洞)☆11Sep 30, 2016Updated 9 years ago
- A pyhon script to do port scan via weblogic uuid☆10Oct 1, 2020Updated 5 years ago
- 分享在建设安全管理体系、ISO27001、等级保护、安全评审过程中的点点滴滴☆23Aug 27, 2018Updated 7 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Zimbra XXE+SSRF+UPLOAD Poc☆60Jun 25, 2019Updated 7 years ago
- fastjson_rce工具,不用搭建HTTP服务,不受JDK版本限制☆10Nov 25, 2019Updated 6 years ago
- Java 反序列化学习的实验代码 Java_deserialize_vuln_lab☆87Nov 26, 2018Updated 7 years ago
- Shiro_721 exp 纯手工实现Padding Oracle整个过程☆67Nov 20, 2019Updated 6 years ago
- Jsp Decoder Source Code☆16Mar 23, 2021Updated 5 years ago
- ☆14Dec 29, 2020Updated 5 years ago
- ☆131Jun 17, 2022Updated 4 years ago
- Ares RedTeam_Box 是一款面相非初级网络渗透者,可高度自定义化的工具。☆31Feb 18, 2021Updated 5 years ago
- 打CTF实在厌倦了找利用链,就知道一个fastjson的版本,一堆依赖找啊找,头都疼。为了解决这个烦恼,用了卓卓师傅的fastjson黑名单工具和库,自己改造了一下。☆32Jan 3, 2020Updated 6 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- HCTF 2017 线下赛平台☆14Dec 17, 2017Updated 8 years ago
- Python3 Reverse Shell☆13May 24, 2019Updated 7 years ago
- xss payloads generator☆25Mar 1, 2019Updated 7 years ago
- CVE-2023-21742 Poc☆14Apr 7, 2023Updated 3 years ago
- 🚩 CTF AWD framework☆29Nov 28, 2021Updated 4 years ago
- ☆88Jun 28, 2022Updated 4 years ago
- Java RCE 回显测试代码☆1,013Oct 15, 2020Updated 5 years ago
- This repo contains Axis web shells☆18Jun 15, 2019Updated 7 years ago
- Struts2 vuln env☆43Dec 6, 2022Updated 3 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- ☆50Nov 4, 2022Updated 3 years ago
- java内存对象搜索辅助工具☆820Sep 23, 2022Updated 3 years ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆484Dec 9, 2020Updated 5 years ago
- 平时用到的注入模板☆19Nov 16, 2017Updated 8 years ago
- ☆62Mar 25, 2020Updated 6 years ago
- ☆34Sep 19, 2022Updated 3 years ago
- JavaAgent内存马☆17Jun 15, 2021Updated 5 years ago