基于dbcp的fastjson rce 回显
☆197Jun 28, 2021Updated 4 years ago
Alternatives and similar repositories for fastjson-local-echo
Users that are interested in fastjson-local-echo are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- fastjson不出网利用、c3p0☆257Jul 30, 2021Updated 4 years ago
- springboot跨线程注入内存马☆123Apr 10, 2022Updated 4 years ago
- JNDI在java高版本的利用工具,FUZZ利用链☆601Oct 8, 2022Updated 3 years ago
- (批量化改造)sharpwmi是一个基于rpc的横向移动工具,具有上传文件和执行命令功能。☆109Jan 8, 2021Updated 5 years ago
- ☆528Sep 16, 2022Updated 3 years ago
- Wordpress hosting with auto-scaling - Free Trial Offer • AdFully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
- 🚀 一款为了学习go而诞生的漏洞利用工具☆451Jun 14, 2022Updated 3 years ago
- fastjson 被动扫描、不出网payload生成☆368Nov 19, 2021Updated 4 years ago
- Java RCE 回显测试代码☆1,013Oct 15, 2020Updated 5 years ago
- A memory shell for ruoyi☆267Apr 28, 2023Updated 3 years ago
- fastjson漏洞burp插件,检测fastjson<1.2.68基于dnslog,fastjson<=1.2.24和1.2.33<=fatjson<=1.2.47的不出网检测和TomcatEcho,SpringEcho回显方案。☆126May 14, 2021Updated 5 years ago
- 自己的JNDI 利用工具,添加一些人性化功能☆130Sep 4, 2022Updated 3 years ago
- 解决FastJson、Jackson、Log4j2、原生JNDI注入漏洞的高版本JDKBypass利用,探测本地可用反序列化gadget达到命令执行、回显命令执行、内存马注入☆775Jan 26, 2022Updated 4 years ago
- 帆软/致远密码解密工具☆363Jul 29, 2021Updated 4 years ago
- AK资源管理工具,阿里云/腾讯云/华为云/AWS/UCLOUD/京东云/百度云/七牛云存储/火山引擎 AccessKey AccessKeySecret,利用AK获取资源信息和操作资源,ECS/CVM/E2/UHOST/ECI/BCC执行命令,OSS/COS/S3/BOS…☆784Feb 13, 2025Updated last year
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- 命令执行不回显但DNS协议出网的命令回显场景解决方案☆277Jan 10, 2023Updated 3 years ago
- Fastjson姿势技巧集合☆1,848Oct 20, 2023Updated 2 years ago
- rmi打内存马工具,适用于目标用不了ldap的情况☆254Jul 12, 2023Updated 2 years ago
- ☆247Apr 15, 2026Updated last month
- ☆298May 7, 2022Updated 4 years ago
- JDBC Connection URL Attack☆451Sep 10, 2021Updated 4 years ago
- 命令执行不回显但DNS协议出网的命令回显场景解决方案(修改为使用ceye接收请求,添加自定义DNS服务器)☆292Aug 20, 2023Updated 2 years ago
- 改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能☆281Nov 28, 2023Updated 2 years ago
- 域控安全one for all☆739Sep 9, 2024Updated last year
- Open source password manager - Proton Pass • AdSecurely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,018May 21, 2024Updated 2 years ago
- Ecloud是一款基于http/1.1协议传输TCP流量工具,适用于内网不出网时通过web代理脚本转发tcp流量☆112Aug 24, 2021Updated 4 years ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆290Nov 20, 2023Updated 2 years ago
- 获取 alibaba druid 一些 sessions , sql , urls☆325Apr 4, 2025Updated last year
- 各种数据库的利用姿势☆1,034Jan 3, 2025Updated last year
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆757Apr 14, 2021Updated 5 years ago
- fastjson 80 远程代码执行漏洞复现☆199Sep 7, 2022Updated 3 years ago
- DNSLOG平台 golang☆441Dec 30, 2021Updated 4 years ago
- frp0.38.1 支持域前置、远程加载配置文件、配置文件自删除、流量特征修改☆134Apr 26, 2022Updated 4 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Nacos JRaft Hessian 反序列化 RCE 加载字节码 注入内存马 不出网利用☆851Jul 7, 2023Updated 2 years ago
- 一款针对Vcenter的综合利用工具,包含目前最主流的CVE-2021-21972、CVE-2021-21985以及CVE-2021-22005、One Access的CVE-2022-22954、CVE-2022-22972/31656以及log4j,提供一键上传webs…☆1,472Apr 25, 2024Updated 2 years ago
- 用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件☆212Apr 18, 2023Updated 3 years ago
- ☆312Feb 27, 2025Updated last year
- DNSLOG、httplog、rmilog、ldaplog、jndi 等都支持,完全匿名 产品(fuzz.red),Alphalog与传统DNSLog不同,更快、更安全。☆460Aug 20, 2025Updated 9 months ago
- 内网域渗透小工具☆732Apr 20, 2021Updated 5 years ago
- Java命令行文件监控小工具(代码审计)☆104Nov 29, 2021Updated 4 years ago