cbwang505 / TcpServerChannelRce
一款基于James Forshaw的.NET Remoting反序列化工具升级版在TypeFilterLevel.Low模式无文件payload任意代码执行poc的开发心得
☆29Updated 3 months ago
Alternatives and similar repositories for TcpServerChannelRce:
Users that are interested in TcpServerChannelRce are comparing it to the libraries listed below
- Exchange ProxyRelay POC☆36Updated 2 years ago
- Spring-Kafka-Deserialization-Remote-Code-Execution☆30Updated last year
- CIA UAC bypass implementation that utilizes elevated COM object to write to System32 and an auto-elevated process to execute as administr…☆14Updated last year
- 在spring-aop中新发现的反序列化gadget-chain☆32Updated this week
- PoC of Spring AMQP Deserialization Vulnerability (CVE-2023-34050)☆12Updated 11 months ago
- redshift-jdbc-RCE proof☆1Updated 2 years ago
- CVE-2021-38003 exploits extracted from https://twitter.com/WhichbufferArda/status/1609604183535284224☆34Updated 2 years ago
- Py写的tsh的流量加解密过程。☆28Updated 2 years ago
- Windows & linux Echo to file command converter☆23Updated 3 years ago
- Load CLR to get RWX 通过加载clr在自身内存中产生rwx空间☆22Updated 2 years ago
- Poc of CVE-2022-22980☆32Updated 2 years ago
- Use the Netlogon Remote Protocol (MS-NRPC) to dump the target hash.☆19Updated 9 months ago
- resource-based constrained delegation RBCD☆43Updated 3 years ago
- ☆45Updated 6 months ago
- 内存分析中玩贪吃蛇☆15Updated last year
- ☆31Updated 7 months ago
- CVE-2021-42287/CVE-2021-42278 exploits in powershell☆37Updated 2 years ago
- ☆33Updated 2 years ago
- CVE-2020-4464 / CVE-2020-4450☆32Updated 3 years ago
- WebGuard是根据 风起师傅的RedGuard 和 mgeeky师傅的RedWarden结合出来的http请求过滤器go包,亦在帮助采用go编写C2 http监听器做流量过滤和规则匹配☆31Updated 2 years ago
- ☆30Updated last year
- CVE-2023-21742 Poc☆14Updated last year
- Oracle Access Manager Unauthenticated Attacker Vulnerability CVE-2021-35587☆40Updated 2 years ago
- MSSQL CLR for pentest.☆54Updated last year
- 7bits安全团队-《Java安全-记一次实战使用memoryshell》代码样例☆18Updated 2 years ago
- 就是一个练习RMI反序列化的最简单环境☆30Updated 3 years ago
- ☆19Updated last year
- AiCSA,Move to https://github.com/hktalent/AiCSA☆10Updated last year
- Automatic credential collection☆22Updated 2 years ago