codeplutos / java-security-manager-bypass
☆141Updated 5 years ago
Related projects ⓘ
Alternatives and complementary repositories for java-security-manager-bypass
- ☆130Updated 2 years ago
- MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload☆13Updated 4 years ago
- JRE8u20_RCE_Gadget☆252Updated 8 years ago
- SerialWriter is an incomplete implementation of Java serialization for study of Java deserialization vulnerabilities.☆104Updated 6 years ago
- Java After-Deserialization Attack☆79Updated 3 years ago
- ☆69Updated 5 years ago
- Use java instrument API without JAR file☆44Updated 2 years ago
- ☆58Updated 4 years ago
- java xxe defense demo☆46Updated 5 years ago
- 个人用于在自动化挖掘gadget时,方便查找gadget chains中class所在jar包,以助于便捷审计测试gadget有效性的那么一个小工具。☆60Updated 4 years ago
- Java Security Documents☆79Updated 5 years ago
- bypass JEP290 RaspHook code☆62Updated 4 years ago
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆101Updated 5 years ago
- Java 反序列化学习的实验代码 Java_deserialize_vuln_lab☆87Updated 5 years ago
- 一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-442…☆122Updated 2 years ago
- fastjson-1.2.47☆66Updated 5 years ago
- ☆143Updated 6 years ago
- 利用agent hock指定的class,在jar运行周期内,用于跟踪被执行的方法,辅助做一些事情,比如挖洞啊☆126Updated 4 years ago
- ☆72Updated 2 years ago
- ☆41Updated 3 years ago
- 基于JVM-Sandbox实现RASP安全监控防护☆51Updated last year
- Java通用漏洞修复安全组件☆58Updated 7 years ago
- CTF stuff☆40Updated last year
- Struts2 vuln env☆43Updated last year
- A modified reGeorg for One-line PHP Shell.☆86Updated 6 years ago
- My Real World CTF challenges☆115Updated 5 years ago