ccdr4gon / Dr4gonSword
☆96Updated last year
Alternatives and similar repositories for Dr4gonSword:
Users that are interested in Dr4gonSword are comparing it to the libraries listed below
- ☆142Updated 4 years ago
- ☆208Updated 6 months ago
- ☆107Updated 3 years ago
- fastjson 80 远程代码执行漏洞复现☆191Updated 2 years ago
- SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE☆231Updated 4 years ago
- fastjson不出网利用、c3p0☆251Updated 3 years ago
- Java表达式语句生成器☆184Updated last year
- 可在Windows下执行系统命令的Redis模块,可用于Redis主从复制攻击。☆257Updated 2 years ago
- RMI 反序列化环境 一步步☆210Updated 4 years ago
- 在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 3 years ago
- BCEL encode/decode manager for fastjson payloads☆145Updated 2 years ago
- springboot跨线程注入内存马☆116Updated 2 years ago
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆175Updated 3 years ago
- 基于dbcp的fastjson rce 回显☆191Updated 3 years ago
- fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.☆223Updated 2 years ago
- Java漏洞分析汇合☆142Updated 3 years ago
- 一个可以伪装上线Cobaltstrike的脚本☆132Updated 2 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆90Updated 2 years ago
- ☆219Updated 3 years ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆266Updated 3 years ago
- attackRmi☆252Updated 4 years ago
- Some ReadObject Sink With JDBC☆205Updated 10 months ago
- 个人使用CodeQL编写的一些规则☆176Updated 2 years ago
- A tool specifically designed for Kubernetes environments aims to efficiently and automatically discover hidden vulnerable APIs within clu…☆72Updated 4 months ago
- CodeQL 寻找 JNDI利用 Lookup接口☆163Updated 2 years ago
- shiro反序列化批量ip快速检测脚本☆78Updated 4 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆78Updated 2 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆181Updated 3 years ago
- ☆167Updated 2 years ago
- javaDeserializeLabs☆66Updated last year