JEECMS FreeMarker-RCE
☆12Nov 12, 2021Updated 4 years ago
Alternatives and similar repositories for JEECMS-INJECT
Users that are interested in JEECMS-INJECT are comparing it to the libraries listed below
Sorting:
- ☆21Jun 13, 2022Updated 3 years ago
- SolarWinds Orion Platform ActionPluginBaseView 反序列化RCE☆47Oct 23, 2021Updated 4 years ago
- Code By:Tas9er / ThinkCMF漏洞安全测试☆13Jan 15, 2021Updated 5 years ago
- A AWD Backup of Bugku.☆12Apr 3, 2022Updated 3 years ago
- PHP文件上传50+绕过手法全景解析☆17Mar 16, 2025Updated 11 months ago
- 转换python代码结构到golang的小工具☆19Aug 29, 2017Updated 8 years ago
- 一款不需要买代理来减少扫网站目录被封概率的扫描器,适用于中小规格字典。☆19Aug 23, 2021Updated 4 years ago
- Java静态代码安全审计工具,使用JavaParser项目做语法分析,计划支持常见的Web漏洞与组件漏洞☆21Sep 20, 2021Updated 4 years ago
- slides and papers from (or partly from) Bonan☆22Mar 8, 2024Updated 2 years ago
- 若依4.8.0后台RCE☆27May 21, 2025Updated 9 months ago
- ☆26Aug 26, 2021Updated 4 years ago
- ☆28Dec 2, 2021Updated 4 years ago
- Apache Druid 任意文件读取☆33Oct 15, 2021Updated 4 years ago
- 记录调试分析ysoserial系列的学习过程,主要包含手动构造的一些poc,便于加深对漏洞和工具的理解☆30Jun 15, 2020Updated 5 years ago
- 一个LDAP请求监听器,摆脱dnslog平台和java☆34Feb 4, 2023Updated 3 years ago
- 规则组合子��域名字典生成☆30Mar 5, 2020Updated 6 years ago
- 在JustTrustMe的基础上修改了log日志打印位置,便于追踪hook函数☆30Jul 15, 2019Updated 6 years ago
- ☆15Apr 23, 2025Updated 10 months ago
- Java代码审计学习笔记☆13Dec 20, 2024Updated last year
- frp0.38.1 支持域前置、远程加载配置文件、配置文件自删除、流量特征修改☆133Apr 26, 2022Updated 3 years ago
- CVE-2022-33980 Apache Commons Configuration 远程命令执行漏洞☆44Jul 8, 2022Updated 3 years ago
- 通达OA系列检测EXP☆35Nov 23, 2021Updated 4 years ago
- ☆37Dec 26, 2021Updated 4 years ago
- ☆37Sep 28, 2021Updated 4 years ago
- System level encryption algorithm Hook from Frida☆37May 31, 2020Updated 5 years ago
- Android 隐私政策合规检查方案☆39Sep 1, 2022Updated 3 years ago
- vRealize RCE + Privesc (CVE-2021-21975, CVE-2021-21983, CVE-0DAY-?????)☆39Apr 7, 2021Updated 4 years ago
- CVE-2021-43297 POC,Apache Dubbo<= 2.7.13时可以实现RCE☆38Jan 24, 2022Updated 4 years ago
- log4j2-vaccine☆84Dec 11, 2021Updated 4 years ago
- 通过网络资产线索(如:域名,IP地址,资产名称等),利用FOFA访问网络空间测绘数据☆11Apr 23, 2024Updated last year
- 基于Java ASM技术和GadgetInspector的原理,尝试实现一个自动Java代码审计工具。目前做到了可控参数分析和数据流跟踪分析☆39Oct 26, 2021Updated 4 years ago
- 实现轻量级RPC框架,网络通信框架Netty、注册中心(Zookeeper、Nacos)、Java基础(注解、反射、多线程、Future、SPI 、动态代理)、自定义传输协议、多种序列化(ProtoBuf / Kyro / Hessian)、Gzip压缩、轮询、随机、一致性…☆14May 7, 2022Updated 3 years ago
- CVE-2022-26135☆11Jul 12, 2022Updated 3 years ago
- ETL management platform based on Kettle☆11Jan 3, 2019Updated 7 years ago
- 攻击Java Web应用-[Java Web安全]☆12Dec 10, 2019Updated 6 years ago
- java版微服务常用技术完全整合架构。通过maven添加依赖即用。完全满足开发到发布到k8s的整个devops流程。框架不会有具体的业务实现代码,不过在开发的时候留附带的demo以便校验。框架大部分技术已用到真实业务系统,以确保可行性和正确性。☆10Jul 22, 2023Updated 2 years ago
- A tiny runtime hot patch tool for JAVA☆14Dec 22, 2024Updated last year
- ☆46Dec 5, 2023Updated 2 years ago
- fastjson不出网利用、c3p0☆256Jul 30, 2021Updated 4 years ago