boundaryx / cloudrasp-log4j2
一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-44228) defense.
☆123Updated 3 years ago
Alternatives and similar repositories for cloudrasp-log4j2:
Users that are interested in cloudrasp-log4j2 are comparing it to the libraries listed below
- RMI 反序列化环境 一步步☆210Updated 4 years ago
- ☆142Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆182Updated 4 years ago
- fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.☆226Updated 2 years ago
- attackRmi☆254Updated 4 years ago
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆177Updated 3 years ago
- fastjson 1.2.68 版本 autotype bypass☆140Updated 2 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆102Updated 5 years ago
- ☆96Updated last year
- 使用java agent反序列化注入内存shell☆67Updated 4 years ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆266Updated 3 years ago
- bypass JEP290 RaspHook code☆62Updated 4 years ago
- ☆107Updated 3 years ago
- struts2 漏洞环境源代码☆75Updated 2 years ago
- 又一款敏感文件泄漏检测工具☆104Updated 5 years ago
- Java Exp FrameWork☆104Updated 4 years ago
- SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE☆231Updated 4 years ago
- 个人使用CodeQL编写的一些规则☆176Updated 3 years ago
- 可在Windows下执行系统命令的Redis模块,可用于Redis主从复制攻击。☆257Updated 2 years ago
- ☆184Updated 7 months ago
- WIP: Demo for Attacking Apereo CAS☆91Updated 4 years ago
- Tomcat 冰蝎内存马。☆211Updated 4 years ago
- 记录各语言、框架中危险的sink,个人代码审计�、漏洞研究使用。☆116Updated 3 years ago
- 主流供应商的一些攻击性漏洞汇总☆106Updated 3 years ago
- weblogic t3 deserialization rce☆271Updated 7 years ago
- 解密weblogic AES或DES加密方法☆229Updated 4 years ago
- Redis RCE 的几种方法☆90Updated 11 months ago
- Java漏洞分析汇合☆142Updated 3 years ago
- 利用agent hock指定的class,在jar运行周期内,用于跟踪被执行的方法,辅助做一些事情,比如挖洞啊☆126Updated 4 years ago
- Java agent without file 无文件的Java agent☆78Updated 3 years ago