hex0wn/learn-java-bug external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

hex0wn/learn-java-bug

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/hex0wn/learn-java-bug)

Close

hex0wn / learn-java-bugView on GitHubMore

• External links
• Readme badge

☆73Jun 21, 2022Updated 3 years ago

Alternatives and similar repositories for learn-java-bug

Users that are interested in learn-java-bug are comparing it to the libraries listed below

• waderwu / attackRmi

  View on GitHub
  attackRmi
  ☆258Oct 14, 2020Updated 5 years ago
• Ramos-dev / R9000

  View on GitHub
  ☆57Apr 27, 2020Updated 5 years ago
• R17a-17 / JavaVulnSummary

  View on GitHub
  Java漏洞分析汇合
  ☆142Dec 14, 2021Updated 4 years ago
• uknowsec / SharpSQLDump

  View on GitHub
  内网渗透中快速获取数据库所有库名，表名，列名。具体判断后再去翻数据，节省时间。适用于mysql，mssql。
  ☆197Nov 11, 2019Updated 6 years ago
• lalajun / RMIDeserialize

  View on GitHub
  RMI 反序列化环境 一步步
  ☆213Aug 31, 2020Updated 5 years ago
• AV1080p / polymarket-trading-bot

  View on GitHub
  ☆111Jan 26, 2026Updated last month
• r00tuser111 / ActuatorExploitTools

  View on GitHub
  一款用于攻击spring boot actuator的集成环境，目前集成三种攻击方式，支持1.x、2.x
  ☆86Jul 26, 2021Updated 4 years ago
• March110 / javaweb-sec

  View on GitHub
  攻击Java Web应用-[Java Web安全]
  ☆15Dec 9, 2020Updated 5 years ago
• Ch1ngg / JCE

  View on GitHub
  JCE - JSP/JPSX CodeEncode - 用于 Webshell 逃避静态查杀的辅助脚本
  ☆258Oct 29, 2021Updated 4 years ago
• mstxq17 / cve-2020-1472

  View on GitHub
  cve-2020-1472 复现利用及其exp
  ☆112Sep 16, 2020Updated 5 years ago
• grayddq / EBurst

  View on GitHub
  这个脚本主要提供对Exchange邮件服务器的账户爆破功能，集成了现有主流接口的爆破方式。
  ☆339May 22, 2023Updated 2 years ago
• iSafeBlue / redis-rce

  View on GitHub
  Redis RCE 的几种方法
  ☆90Jun 5, 2024Updated last year
• c0ny1 / java-object-searcher

  View on GitHub
  java内存对象搜索辅助工具
  ☆823Sep 23, 2022Updated 3 years ago
• lufeirider / CVE-2019-2725

  View on GitHub
  CVE-2019-2725 命令回显
  ☆436May 8, 2023Updated 2 years ago
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,016Oct 15, 2020Updated 5 years ago
• kingkaki / Struts2-Vulenv

  View on GitHub
  struts2 漏洞环境源代码
  ☆75Jul 8, 2022Updated 3 years ago
• threedr3am / JSP-WebShells

  View on GitHub
  Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势
  ☆1,404Jan 18, 2022Updated 4 years ago
• hktalent / CVE-2020-2551

  View on GitHub
  how detect CVE-2020-2551 poc exploit python Weblogic RCE with IIOP
  ☆211Mar 5, 2023Updated 2 years ago
• Mochazz / Struts2-Vuln

  View on GitHub
  关于Struts2框架的历史漏洞个人分析文章
  ☆54Jun 17, 2020Updated 5 years ago
• l3m0n / Bypass_Disable_functions_Shell

  View on GitHub
  一个各种方式突破Disable_functions达到命令执行的shell
  ☆1,198Oct 17, 2023Updated 2 years ago
• zema1 / ysoserial

  View on GitHub
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆357Sep 20, 2022Updated 3 years ago
• c0ny1 / FastjsonExploit

  View on GitHub
  Fastjson vulnerability quickly exploits the framework（fastjson漏洞快速利用框架）
  ☆1,389Dec 16, 2022Updated 3 years ago
• 5wimming / gadgetinspector

  View on GitHub
  利用链、漏洞检测工具
  ☆373Jul 31, 2024Updated last year
• Airboi / CVE-2020-17144-EXP

  View on GitHub
  Exchange2010 authorized RCE
  ☆157Dec 24, 2020Updated 5 years ago
• Y4er / CVE-2020-2551

  View on GitHub
  Weblogic IIOP CVE-2020-2551
  ☆339Apr 7, 2020Updated 5 years ago
• Afant1 / RemoteObjectInvocationHandler

  View on GitHub
  bypass JEP290 RaspHook code
  ☆63Sep 21, 2020Updated 5 years ago
• feihong-cs / jre8u20_gadget

  View on GitHub
  jre8u20 gadget
  ☆34May 23, 2021Updated 4 years ago
• su18 / rasp-vuln

  View on GitHub
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆87Jul 21, 2022Updated 3 years ago
• heroanswer / XSS_Cheat_Sheet_2020_Edition

  View on GitHub
  xss漏洞模糊测试payload的最佳集合 2020版
  ☆511May 25, 2020Updated 5 years ago
• Cryin / JavaID

  View on GitHub
  java source code static code analysis and danger function identify prog
  ☆534Feb 18, 2019Updated 7 years ago
• LandGrey / ClassHound

  View on GitHub
  利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
  ☆711May 10, 2021Updated 4 years ago
• jweny / shiro-cve-2020-17523

  View on GitHub
  shiro-cve-2020-17523 漏洞的两种绕过姿势分析 以及配套的漏洞环境
  ☆119Feb 7, 2021Updated 5 years ago
• sie504 / Struts-S2-xxx

  View on GitHub
  整理收集Struts2漏洞环境
  ☆270Jan 9, 2018Updated 8 years ago
• wh1t3p1g / ysomap

  View on GitHub
  A helpful Java Deserialization exploit framework.
  ☆1,240Feb 17, 2025Updated last year
• threedr3am / ZhouYu

  View on GitHub
  （周瑜）Java - SpringBoot 持久化 WebShell（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
  ☆615Dec 29, 2021Updated 4 years ago
• hosch3n / ProxyVulns

  View on GitHub
  [ProxyLogon] CVE-2021-26855 & CVE-2021-27065 Fixed RawIdentity Bug Exploit. [ProxyOracle] CVE-2021-31195 & CVE-2021-31196 Exploit Chains.…
  ☆177Oct 21, 2022Updated 3 years ago
• SummerSec / JavaLearnVulnerability

  View on GitHub
  Java漏洞学习笔记 Deserialization Vulnerability
  ☆945Jun 14, 2023Updated 2 years ago
• PatchFuzz / patchfuzz

  View on GitHub
  PatchFuzz: Fuzzing for JavaScript Engine Incomplete Security Patches
  ☆19Dec 17, 2025Updated 2 months ago
• t3ls / mipsAudit

  View on GitHub
  IDA MIPS静态扫描脚本，汇编审计辅助脚本
  ☆17Dec 18, 2020Updated 5 years ago