blindpirate / spring-rce-2022-03-hotfix
☆15Updated 2 years ago
Related projects: ⓘ
- spring-cloud-function SpEL RCE, Vultarget & Poc☆133Updated 2 years ago
- The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment wher…☆84Updated 2 years ago
- log4j2-vaccine☆85Updated 2 years ago
- A JVM agent that automatically forces a proxy for HTTP(S) connections and trusts MitM certificates, for all major JVM HTTP clients☆69Updated 3 months ago
- A list for Spring Security☆117Updated 8 months ago
- CVE-2022-22965 : about spring core rce☆51Updated 2 years ago
- 通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩,可以做一些破解、加密验证的绕过等操作☆96Updated 3 months ago
- 用于检测maven项目的第三方依赖组件是否存在安全漏洞。☆99Updated 2 years ago
- 一款使用Yaml定义搜索规则来搜索Class的工具☆103Updated last year
- 一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-442…☆121Updated 2 years ago
- Debug CVEs!☆31Updated last year
- Bypass JVM Class ByteCode Verifier , 对抗反编译器☆106Updated 11 months ago
- 基于污点分析和模拟栈帧技术的JSP Webshell检测☆43Updated 4 months ago
- Java implementation of an AJP13 protocol client (aka Apache JServ), allowing to send requests to a servlet container using this protocol.☆30Updated 5 months ago
- 利用agent hock指定的class,在jar运行周期内,用于跟踪被执行的方法,辅助做一些事情,比如挖洞啊☆126Updated 4 years ago
- ☆123Updated this week
- rmi、jndi、ldap、jrmp、jmx、jms一些demo测试☆306Updated 2 years ago
- JDK CVE-2023-21939☆97Updated last year
- 记录各语言、框架中危险的sink,个人代码审计、漏洞研究使用。☆114Updated 2 years ago
- dubbo快速利用exp,基本上老版本覆盖100%。☆103Updated 8 months ago
- 注入JVM进程 动态获取目标进程连接的数据库☆306Updated 2 years ago
- shiro-cve-2020-17523 漏洞的两种绕过姿势分析 以及配套的漏洞环境☆112Updated 3 years ago
- Java Remote Debug through Websocket Proxy.☆61Updated 7 years ago
- Java agent without file 无文件的Java agent☆77Updated 2 years ago
- A neo4j procedure for tabby☆111Updated 3 months ago
- analysis java dependence and store in neo4j☆18Updated 5 years ago
- Java Exp FrameWork☆105Updated 3 years ago
- Unofficial Dockerfile and scripts for building CodeQL databases for the OpenJDK☆47Updated 8 months ago
- Google V8 with OpenRASP builtins☆55Updated 3 years ago
- ☆2Updated 2 years ago