bigsizeme / fastjson-checkLinks
fastjson 被动扫描、不出网payload生成
☆370Updated 3 years ago
Alternatives and similar repositories for fastjson-check
Users that are interested in fastjson-check are comparing it to the libraries listed below
Sorting:
- fastjson不出网利用、c3p0☆253Updated 4 years ago
- SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE☆231Updated 4 years ago
- Shiro-550 不依赖CC链利用工具☆452Updated last year
- JCE - JSP/JPSX CodeEncode - 用于 Webshell 逃避静态查杀的辅助脚本☆259Updated 3 years ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆270Updated 3 years ago
- 一个LDAP请求监听器,摆脱dnslog平台☆293Updated 2 years ago
- ☆231Updated 3 years ago
- 这个脚本主要提供对Exchange邮件服务器的账户爆破功能,集成了现有主流接口的爆破方式。☆338Updated 2 years ago
- Apache Shiro 反序列化漏洞检测与利用工具,一键注入内存马☆138Updated 4 years ago
- 通达OA一些漏洞点☆161Updated 5 years ago
- 将域名转为ip段权重☆214Updated 2 years ago
- woodpecker框架weblogic信息探测插件☆184Updated 3 years ago
- 下架☆141Updated 3 years ago
- 脚写HW爆出来的漏洞的GUI工具☆67Updated 4 years ago
- Armor 浏览器反蜜罐插件 honeypot☆180Updated 4 years ago
- BCEL encode/decode manager for fastjson payloads☆149Updated 3 years ago
- 改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能☆280Updated last year
- ☆284Updated 3 years ago
- 基于dbcp的fastjson rce 回显☆197Updated 4 years ago
- 个人整理的一些域渗透Tricks,可能有一些错误。☆255Updated 4 years ago
- Java应用的一些配置文件字典,来源于公开的字典与平时收集☆315Updated last year
- 一个全新的敏感文件发现工具☆269Updated 4 years ago
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆178Updated 3 years ago
- Web端POC-EXP 整理☆99Updated 4 years ago
- 通过正则搜索、批量反编译特定Jar包中的class名称☆315Updated 3 years ago
- CVE-2022-22947☆220Updated 3 years ago
- shiro反序列化批量ip快速检测脚本☆78Updated 5 years ago
- ☆116Updated 4 years ago
- 根据WebBatchRequest图形化二次开发:增加了指纹识别模块,可识别大概上千条指纹,增加了IP段处理,支持C段和B段处理,增加了301处理,增加了去重空节点的功能,可节省内存消耗,推荐勾选此选项☆68Updated 4 years ago
- ThinkPHP全日志扫描工具,命令行版和BurpSuite插件版☆131Updated 4 years ago