XuCcc / VulEnvLinks

Debug CVEs!

☆33

Alternatives and similar repositories for VulEnv

Users that are interested in VulEnv are comparing it to the libraries listed below

Sorting:

welk1n / FastjsonPocs
一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
☆56Updated 5 years ago
liangyueliangyue / spring-core-rce
springFramework_CVE-2022-22965_RCE简单利用
☆26Updated 3 years ago
longofo / PaddingOracleAttack-Shiro-721
Shiro-721 Padding Oracle Attack
☆72Updated 4 years ago
l3yx / javaDeserializeNotes
Java反序列化漏洞学习笔记
☆16Updated 5 years ago
yuligesec / watchvuln
一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service
☆31Updated 8 months ago
0xrumble / BytecodeScreen
☆50Updated 2 years ago
woodpecker-framework / woodpecker-requests
woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
☆67Updated 2 years ago
woodpecker-appstore / rmi-deserialization-vuldb
Java RMI反序列化漏洞插件
☆48Updated 4 years ago
cckuailong / YarnRpcRCE
☆81Updated 3 years ago
ssrsec / SpringBootEnvDecrypt
SpringBoot获取被星号脱敏的密码的明文
☆58Updated 3 years ago
wuppp / releaseBehinderShell
卸载冰蝎内存马
☆67Updated 4 years ago
flowerwind / AutoGenerateXalanPayload
cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具，可根据不同的Jdk生成出其所对应的xslt文件
☆91Updated 2 years ago
woodpecker-appstore / springboot-vuldb
☆69Updated 4 years ago
r00tuser111 / SerializationDumper-Shiro
基于SerializationDumper的Shiro Cookie序列化数据解密小工具
☆53Updated 4 years ago
SummerSec / LookupInterface
CodeQL 寻找 JNDI利用 Lookup接口
☆163Updated 3 years ago
Rvn0xsy / DumperAnalyze
通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩，可以做一些破解、加密验证的绕过等操作
☆113Updated last year
lz2y / DubboPOC
Apache Dubbo漏洞测试Demo及其POC
☆61Updated 2 years ago
AlphabugX / godzilla_decode
Godzilla java Decode,哥斯拉jsp(内存马)流量解密
☆111Updated 3 years ago
longofo / Apache-Dubbo-Hessian2-CVE-2021-43297
Apache Dubbo Hessian2 CVE-2021-43297 demo
☆46Updated 3 years ago
SummerSec / BlogPapers
<a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…
☆53Updated this week
feihong-cs / Attacking_Shiro_with_CVE_2020_2555
☆49Updated 4 years ago
lz520520 / encrypt-js
☆35Updated 3 years ago
xhycccc / Shiro-Vuln-Demo
Shiro漏洞实例源码
☆26Updated 3 years ago
Conanjun / passive-scan-client-and-sendto
burp被动扫描自动转发和手动重发插件
☆51Updated 4 years ago
cyal1 / host_scan
这是一个用于IP和域名碰撞匹配访问的小工具，旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go
☆113Updated 2 years ago
KpLi0rn / DeserializeAll
一个简单的批量反编译jar包的小脚本
☆39Updated 3 years ago
KpLi0rn / ShiroVulnEnv
Shiro内存马注入环境
☆60Updated 4 years ago
TonyD0g / JSPHunter
基于污点分析和模拟栈帧技术的JSP Webshell检测
☆45Updated 5 months ago
0Chencc / DaE
CTFCrackTools 's BurpSuite Plugin - Decode and Encode
☆84Updated 3 years ago
Echox1 / ShiroExploit
☆38Updated 4 years ago