bit4woo / Java_deserialize_vuln_labLinks
Java 反序列化学习的实验代码 Java_deserialize_vuln_lab
☆87Updated 6 years ago
Alternatives and similar repositories for Java_deserialize_vuln_lab
Users that are interested in Java_deserialize_vuln_lab are comparing it to the libraries listed below
Sorting:
- SerialWriter is an incomplete implementation of Java serialization for study of Java deserialization vulnerabilities.☆104Updated 7 years ago
- ☆1Updated 6 years ago
- kibana < 6.6.0 未授权远程代码命令执行 (Need Timelion And Canvas),CVE-2019-7609☆89Updated 5 years ago
- 参考《利用分块传输吊打所有WAF》修改的requests的Adapter☆98Updated 6 years ago
- ☆82Updated 7 years ago
- ☆62Updated 5 years ago
- VulHint是辅助代码审计的 sublime text 3 插件☆67Updated 6 years ago
- fastjson-1.2.58-rce with h2 database☆34Updated 6 years ago
- fastjson-1.2.47☆66Updated 6 years ago
- python security audit tool,用于python源码的代码审计,支持命令注入,sql注入☆62Updated 10 years ago
- Shiro_721 exp 纯手工实现Padding Oracle整个过程☆67Updated 5 years ago
- Spring Data Commons RCE 远程命令执行漏洞☆57Updated 6 years ago
- DNSLog 是一款监控 DNS 解析记录和 HTTP 访问记录的工具。☆45Updated 4 years ago
- ☆58Updated 5 years ago
- Java Security Documents☆80Updated 5 years ago
- fastjson-1.2.61-RCE☆33Updated 5 years ago
- ☆19Updated 4 years ago
- ☆28Updated 5 years ago
- A burp extender that recalculate signature value automatically after you modified request parameter value.☆60Updated 2 years ago
- Some debug notes and exploit(not blind)☆40Updated 6 years ago
- ☆143Updated 7 years ago
- 可以直接反弹shell☆47Updated 2 years ago
- A list of interesting payloads, tips and tricks for bug bounty hunters.☆24Updated 5 years ago
- 基于burpsuite headless 的代理式被动扫描系统☆96Updated 5 years ago
- Remote Command Execution Over Spark☆97Updated 7 years ago
- 用于演示Java Web项目中,漏洞的成因及修复方案,可用于黑盒测试和白盒测试,部分修复方案可用于生产环境。☆43Updated 7 years ago
- flash 劫持轮子,CSRF,劫持,跳转,swf 有需求可以提issues ,src挖掘,劫持response☆86Updated 5 years ago
- Struts2 vuln env☆43Updated 2 years ago
- Xray 被动扫描管理☆57Updated 5 years ago
- some java code i met or i used☆29Updated 6 years ago