inspiringz / Shiro-721
Shiro-721 RCE Via RememberMe Padding Oracle Attack
☆257Updated 4 years ago
Alternatives and similar repositories for Shiro-721:
Users that are interested in Shiro-721 are comparing it to the libraries listed below
- ☆319Updated 3 years ago
- weblogic t3 deserialization rce☆268Updated 7 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆355Updated 2 years ago
- 解密weblogic AES或DES加密方法☆229Updated 4 years ago
- Apache Solr Exploits 🌟☆337Updated 4 years ago
- CVE-2020-14882_ALL综合利用工具,支持命令回显检测、批量命令回显、外置xml无回显命令执行等功能。☆144Updated 2 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。☆215Updated 3 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆181Updated 3 years ago
- 域渗透脑图中文翻译版☆275Updated 3 years ago
- 🧬 辅助生成 XRay YAML POC☆263Updated 2 years ago
- ☆212Updated 6 months ago
- CVE-2019-2725命令回显+webshell上传+最新绕过☆190Updated 5 years ago
- SQL 注入利用工具,存在waf的情况下自定义编写tamper脚本 dump数据☆287Updated 4 years ago
- AntSword 自定义编(解)码器分享☆245Updated 4 years ago
- fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.☆223Updated 2 years ago
- Unicode To Chinese -- U2C : A burpsuite Extender That Convert Unicode To Chinese 【Unicode编码转中文的burp插件】☆244Updated 3 years ago
- 利用链、漏洞检测工具☆367Updated 7 months ago
- FilterBased/ServletBased in memory shell for Tomcat and some other middlewares☆363Updated 4 years ago
- burpsuite extension for check unauthorized vulnerability☆231Updated 4 years ago
- a burp extension to find where use fastjson☆163Updated 4 years ago
- JDBC Connection URL Attack☆405Updated 3 years ago
- CVE-2017-12149 jboss反序列化 可回显☆205Updated 6 years ago
- Shiro-550 不依赖CC链利用工具☆447Updated 9 months ago
- SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE☆231Updated 4 years ago
- ☆234Updated 5 years ago
- Shiro反序列化回显利用、内存shell、检查 Burp插件☆216Updated 2 years ago
- Struts2漏洞实例源码☆205Updated 4 years ago
- fastjson 被动扫描、不出网payload生成☆366Updated 3 years ago
- 这个脚本主要提供对Exchange邮件服务器的账户爆破功能,集成了现有主流接口的爆破方式。☆332Updated last year
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆175Updated 3 years ago