codeplutos / java-security-manager-bypass
☆148Updated 5 years ago
Alternatives and similar repositories for java-security-manager-bypass:
Users that are interested in java-security-manager-bypass are comparing it to the libraries listed below
- ☆131Updated 2 years ago
- MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload☆13Updated 5 years ago
- fastjson-1.2.47☆66Updated 5 years ago
- JRE8u20_RCE_Gadget☆251Updated 8 years ago
- ☆58Updated 5 years ago
- Java After-Deserialization Attack☆79Updated 4 years ago
- SerialWriter is an incomplete implementation of Java serialization for study of Java deserialization vulnerabilities.☆104Updated 7 years ago
- bypass JEP290 RaspHook code☆62Updated 4 years ago
- ☆71Updated 2 years ago
- Use java instrument API without JAR file☆45Updated 2 years ago
- ☆1Updated 3 years ago
- Java Security Documents☆80Updated 5 years ago
- Java通用漏洞修复安全组件☆59Updated 7 years ago
- Java 反序列化学习的实验代码 Java_deserialize_vuln_lab☆87Updated 6 years ago
- struts2 漏洞环境源代码☆75Updated 2 years ago
- ☆1Updated 6 years ago
- 一个针对防御 log4j2 CVE-2021-44228 漏洞的 RASP 工具。 A Runtime Application Self-Protection module specifically designed for log4j2 RCE (CVE-2021-442…☆123Updated 3 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆102Updated 5 years ago
- ☆143Updated 6 years ago
- 总结了一下2019年在JVM环境中使用XXE攻击的知识☆57Updated 5 years ago
- 个人用于在自动化挖掘gadget时,方便查找gadget chains中class所在jar包,以助于便捷审计测试gadget有效性的那么一个小工具。☆60Updated 5 years ago
- ☆41Updated 4 years ago
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆100Updated 5 years ago
- Web Server that serves a single file and keeps the connection open until user releases it.☆72Updated 11 years ago
- ☆81Updated 7 years ago
- ☆62Updated 5 years ago
- RememberMe Padding Oracle Vulnerability RCE☆71Updated 5 years ago
- 基于JVM-Sandbox实现RASP安全监控防护☆52Updated last year
- My Real World CTF challenges☆114Updated 5 years ago
- My CodeQL queries collection☆96Updated last year