Y4Sec-Team / CVE-2023-21939
JDK CVE-2023-21939
☆97Updated last year
Related projects: ⓘ
- 抽离出 utf-8-overlong-encoding 的序列化逻辑,实现 2 3 字节加密序列化数组☆105Updated 6 months ago
- A list for Spring Security☆117Updated 8 months ago
- EndpointSearch 是一个探测云服务端点的扫描器。Endpoint Search is a sophisticated reconnaissance utility designed to discreetly identify and enumerate end…☆64Updated last month
- JDBC Attack Tricks☆134Updated last year
- The Poc for CVE-2024-20931☆73Updated 7 months ago
- 基于污点分析和模拟栈帧技术的JSP Webshell检测☆43Updated 4 months ago
- Web Cache Poisoning Vulnerability Scanner☆31Updated last week
- A heapdump leaks Shiro key causing RCE vulnerability environment.☆49Updated 4 months ago
- ☆134Updated last year
- 多组件客户端☆66Updated last week
- A malicious LDAP server for JNDI injection attacks☆50Updated last year
- Spel-research☆24Updated 2 years ago
- Java Agent memory horse scanner combined with Call Graph modus☆60Updated last year
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆252Updated 10 months ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆163Updated 3 months ago
- ☆92Updated last year
- ☆52Updated 9 months ago
- Java 内存马生成插件☆48Updated last year
- 检测查杀java内存马☆73Updated 9 months ago
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆44Updated last year
- ☆171Updated 2 weeks ago
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆26Updated 2 months ago
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆76Updated last year
- pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550,…☆49Updated last year
- ☆82Updated this week
- 《Spring漏洞研究》☆44Updated 2 years ago
- ☆20Updated last year
- Zerologon exploit with restore DC password automatically☆129Updated 6 months ago
- ☆32Updated last year
- A Java Route Collection Tool☆75Updated last month