X1r0z / hessian-overlong-encodingView external linksLinks
Hessian UTF-8 Overlong Encoding
☆21Mar 9, 2024Updated last year
Alternatives and similar repositories for hessian-overlong-encoding
Users that are interested in hessian-overlong-encoding are comparing it to the libraries listed below
Sorting:
- woodpecker插件生成hessian利用payload☆20Sep 19, 2023Updated 2 years ago
- ☆25Dec 13, 2024Updated last year
- 抽离出 utf-8-overlong-encoding 的序列化逻辑,实现 2 3 字节加密序列化数组☆139Mar 11, 2024Updated last year
- 使用 agent 实现反序列化 utf8 overlong☆83Apr 24, 2024Updated last year
- ☆19Feb 27, 2022Updated 3 years ago
- jolokia Realm JNDI RCE 漏洞检测,并获取明文密码☆18May 29, 2023Updated 2 years ago
- Tai-e的Web插件☆23Jun 11, 2024Updated last year
- CVE-2023-38646 Metabase RCE☆55Oct 11, 2023Updated 2 years ago
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆39Nov 12, 2024Updated last year
- 一个基于jvm-sandbox高度定制化rasp☆58Sep 28, 2023Updated 2 years ago
- ☆65Sep 27, 2023Updated 2 years ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆71Jul 22, 2025Updated 6 months ago
- 一个普通的BOF用来BypassUAC☆22Apr 6, 2024Updated last year
- 在原版nps的基础上,增加了nps探测,以及对应的利用方式(如获取cookie,页面等),进行一些简单的二开。未经过大量测试,可能存在bug。☆21Aug 5, 2025Updated 6 months ago
- Apache OFBIZ Path traversal leading to RCE POC[CVE-2024-32113 & CVE-2024-36104]☆27Jun 3, 2024Updated last year
- Netty/WebFlux 内存马☆26Nov 19, 2023Updated 2 years ago
- Kill Everything AV/EDR☆27Nov 18, 2024Updated last year
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆171Aug 9, 2023Updated 2 years ago
- Some ReadObject Sink With JDBC☆243May 8, 2024Updated last year
- A branch (technically done as a subtree) of apache jasper with tomcat dependencies removed.☆13Updated this week
- CVE-2023-22527 内存马注入工具☆76Feb 21, 2024Updated last year
- ☆79Nov 22, 2024Updated last year
- JDBC Attack Tricks☆154Sep 3, 2023Updated 2 years ago
- 《深入JDBC安全:特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…☆569Feb 7, 2026Updated last week
- 用于快速启动tabby 分析漏洞或者gadget的环境☆94Jul 14, 2025Updated 7 months ago
- GitHubApi CVE Poc监控工具☆14Jan 23, 2026Updated 3 weeks ago
- ☆15Nov 24, 2022Updated 3 years ago
- 针对IoT固件的openssl加密的暴力破解脚本☆14May 22, 2024Updated last year
- simple shellcode injector for Windows / Process Hollowing☆15Jun 26, 2024Updated last year
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆93Jan 17, 2023Updated 3 years ago
- 魔改的fofa浏览器插件,能够进行自动调用指纹接口进行指纹识别。☆15Apr 15, 2024Updated last year
- 原地修改PE文件ICON hash的小工具,用作免杀☆16Aug 19, 2024Updated last year
- ☆15Jul 13, 2024Updated last year
- Woodpecker模板项目,方便创建新插件☆14Jul 25, 2024Updated last year
- ☆13Jul 24, 2022Updated 3 years ago
- 帆软报表漏洞检测工具☆113Jun 10, 2025Updated 8 months ago
- 一款使用Yaml定义搜索规则来搜索Class的工具☆108Aug 2, 2023Updated 2 years ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆221Jun 8, 2024Updated last year
- YongYou U8C deserialization file upload exploit tool targeting IPFxxFileService and IFileTrans services☆28Sep 28, 2025Updated 4 months ago