cn-panda / logbackRceDemoLinks
The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment where there are arbitrary file uploads, and then use the `scan` attribute in the loghack configuration file to cooperate with the logback vulnerability to implement RCE.
☆87Updated 3 years ago
Alternatives and similar repositories for logbackRceDemo
Users that are interested in logbackRceDemo are comparing it to the libraries listed below
Sorting:
- ☆17Updated 5 years ago
- Intentionally Vulnerable to Spring4Shell☆52Updated 3 years ago
- spring-cloud-function SpEL RCE, Vultarget & Poc☆134Updated 3 years ago
- CVE-2020-36179~82 Jackson-databind SSRF&RCE☆81Updated 4 years ago
- Java web and command line applications demonstrating various security topics☆237Updated this week
- https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet☆51Updated 3 years ago
- Native Java serialization filter blacklist for common gadgets☆20Updated 5 years ago
- CVE-2020-8840:FasterXML/jackson-databind 远程代码执行漏洞☆36Updated 5 years ago
- Ready to use docker image for CodeQL☆90Updated last year
- Sample Spring application to Demonstrate the Gateway Actuator☆48Updated 3 years ago
- ☆87Updated 3 years ago
- ☆72Updated 3 years ago
- bypass JEP290 RaspHook code☆62Updated 4 years ago
- fastjson auto type derivation search☆21Updated 4 years ago
- My CodeQL queries collection☆98Updated 2 years ago
- CVE-2020-36188 &&Jackson-databind RCE☆11Updated 4 years ago
- Apache Log4j 1.2.X存在反序列化远程代码执行漏洞☆78Updated 5 years ago
- ☆20Updated 4 years ago
- WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar☆80Updated 4 years ago
- Spring Cloud Netflix Hystrix Dashboard template resolution vulnerability CVE-2021-22053☆37Updated 2 years ago
- 知识星球《漏洞百出》最新 20条 Topic☆113Updated 3 years ago
- log4j2-vaccine☆84Updated 3 years ago
- CVE-2019-12384 漏洞测试环境☆21Updated 2 years ago
- Template Injection in Email Templates leads to code execution on Jira Service Management Server☆48Updated 3 years ago
- Log4j_dos_CVE-2021-45105☆13Updated 3 years ago
- A project demonstrating an app that is vulnerable to Spring Security authorization bypass CVE-2022-31692☆36Updated 2 years ago
- Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.☆18Updated 6 years ago
- GreHack 2021 CodeQL for Java workshop☆75Updated 3 years ago
- CVE-2020-9547:FasterXML/jackson-databind 远程代码执行漏洞☆23Updated 5 years ago
- Java Exp FrameWork☆105Updated 4 years ago