hughink / CVE-2022-40684Links
☆10Updated 2 years ago
Alternatives and similar repositories for CVE-2022-40684
Users that are interested in CVE-2022-40684 are comparing it to the libraries listed below
Sorting:
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆81Updated 2 years ago
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆168Updated 2 years ago
- fastjson 80 远程代码执行漏洞复现☆196Updated 2 years ago
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆225Updated 2 years ago
- JDBC Attack Tricks☆142Updated last year
- A Java Route Collection Tool☆100Updated last year
- 在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 3 years ago
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆82Updated 2 years ago
- CVE-2021-34371.jar☆27Updated 3 years ago
- springboot跨线程注入内存马☆122Updated 3 years ago
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆92Updated 2 years ago
- Java命令行文件监控小工具(代码审计)☆102Updated 3 years ago
- Java 内存马生成插件☆54Updated 2 years ago
- CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!☆96Updated 9 months ago
- Java漏洞分析汇合☆142Updated 3 years ago
- The purpose of this script is to bypass disablefund, provide some useful information, and dig the hook function of PHP extension.☆14Updated 4 years ago
- 利用代理驱动绕过JDBC Attack检测☆123Updated last month
- dubbo快速利用exp,基本上老版本覆盖100%。☆153Updated last month
- pyyso is a Python package that generate java serialized poc. Including CommonsCollections1-7, JDK7u21, JDK8u20, ldap for jndi, shiro-550,…☆53Updated 2 years ago
- 禅道相关poc☆169Updated last year
- JDK CVE-2023-21939☆96Updated last year
- Java表达式语句生成器☆192Updated last year
- 基于dbcp的fastjson rce 回显☆194Updated 4 years ago
- Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul☆94Updated last year
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆198Updated last year
- check hikvision/ys7 api☆72Updated 2 years ago
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆109Updated 2 years ago
- 自己积累的一些Java反序列化利用链☆89Updated 2 years ago
- Assassin是一款精简的基于命令行的webshell管理工具,它有着多种payload发送方式和编码方式,以及精简的payload代码,使得它成为隐蔽的暗杀者,难以被很好的防御。☆120Updated 3 years ago
- 一个以fuzz为中心思想的被动扫描工具☆157Updated last year