dschadow / Java-Web-Security
Java-Web-Security - Sichere Webanwendungen mit Java entwickeln
☆215Updated last week
Related projects ⓘ
Alternatives and complementary repositories for Java-Web-Security
- SerialWriter is an incomplete implementation of Java serialization for study of Java deserialization vulnerabilities.☆102Updated 6 years ago
- QAQ Just study unserialize vulnerabilities in Java :)☆196Updated 6 years ago
- 一个用于识别目标网站是否采用Struts2框架开发的工具demo☆162Updated 6 years ago
- Some codes for bypassing Oracle WebLogic CVE-2018-2628 patch☆114Updated 6 years ago
- Java Security Documents☆79Updated 5 years ago
- A Java runtime information-gathering tool which uses the Java Attach API for information acquisition☆204Updated 3 years ago
- Spring messaging STOMP protocol RCE☆114Updated 6 years ago
- Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization with Spring Framework 4.2.4☆116Updated 5 years ago
- Weblogic Upload Vuln(Need username password)-CVE-2019-2618☆172Updated 5 years ago
- web模糊测试 - 将漏洞可能性放大☆148Updated 5 years ago
- JRE8u20_RCE_Gadget☆251Updated 8 years ago
- Web App Monitor☆228Updated 6 years ago
- RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl☆209Updated 5 years ago
- Struts2-045 Scanner☆73Updated 7 years ago
- A plugin to check xss by using chrome_headless☆52Updated 6 years ago
- ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6☆217Updated 7 years ago
- XSS_Filter_Evasion_Cheat_Sheet 中文版☆78Updated 10 years ago
- i`m a cat ~ find fish☆92Updated 3 years ago
- 又一个Java Web代码审计工具☆99Updated 6 years ago
- ☆1Updated 3 years ago
- tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484…☆213Updated 4 years ago
- 整理收集Struts2漏洞环境☆261Updated 6 years ago
- ☆26Updated 6 years ago
- 🐱💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱💻☆149Updated 5 years ago
- ******本软件仅限用于学习交流禁止用于任何非法行为****** 本版本支持elasticsearch java语言远程命令执行及文件上传 elasticsearchgroov语言远程命令执行及文件上传 struts2-005、struts2-009、struts2-01…☆110Updated 7 years ago