cckuailong / YarnRpcRCE
☆81Updated 3 years ago
Alternatives and similar repositories for YarnRpcRCE:
Users that are interested in YarnRpcRCE are comparing it to the libraries listed below
- 一个Spring4Shell 被动式检测的Burp插件☆93Updated 2 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated last year
- CodeQL 寻找 JNDI利用 Lookup接口☆163Updated 2 years ago
- 卸载冰蝎内存马☆67Updated 3 years ago
- 基于SerializationDumper的Shiro Cookie序列化数据解密小工具☆52Updated 4 years ago
- 利用RPC服务,批量探测内网Windows出网情 况☆115Updated 3 years ago
- ☆68Updated 3 years ago
- 支持自动化的切换请求方式、自动化的请求重试、以完整的扫描Springboot路径☆3Updated 3 years ago
- 一款探测fastjson漏洞的BurpSuite插件☆61Updated 3 years ago
- XxlJob<=2.1.2配置不当情况下反序列化RCE☆92Updated 4 years ago
- AutoScan 有多个目标时,多线程调用xray+rad进行自动扫描☆88Updated 2 years ago
- Java漏洞分析汇合☆142Updated 3 years ago
- log4j2 RCE漏洞(CVE-2021-44228)内网扫描器,可用于在不出网的条件下进行漏洞扫描,帮助企业内部快速发现Log4jShell漏洞。☆36Updated 3 years ago
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go☆113Updated 2 years ago
- Java命令行文件监控小工具(代码审计)☆101Updated 3 years ago
- burp被动扫描自动转发和手动重发插件☆52Updated 4 years ago
- 在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 3 years ago
- 内网渗透相关总结☆37Updated 3 years ago
- 一些结合第三方组件的Fastjson POC,在1.2.48以后版本中陆续被添加至黑名单。☆56Updated 5 years ago
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆87Updated last year
- GUI Exploit Tool For RedTeam☆7Updated 3 years ago
- 用于windows反弹shell的yaml-payload☆71Updated 3 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆90Updated 2 years ago
- SMTP Netcat , test SMTP protocol☆105Updated 3 years ago
- ☆117Updated last year
- PoC for pocsuite3 and nuclei☆55Updated 2 years ago
- Spring Cloud Gateway 远程代码执行漏洞Exp Spring_Cloud_Gateway_RCE_Exp-CVE-2022-22947☆76Updated 2 years ago
- cve-2020-1472 复现利用及其exp☆109Updated 4 years ago
- 修改版FRP☆69Updated 3 years ago
- Godzilla java Decode,哥斯拉jsp(内存马)流量解密☆105Updated 3 years ago