jas502n / SHIRO-721View external linksLinks
RememberMe Padding Oracle Vulnerability RCE
☆72Nov 14, 2019Updated 6 years ago
Alternatives and similar repositories for SHIRO-721
Users that are interested in SHIRO-721 are comparing it to the libraries listed below
Sorting:
- Apache Log4j 1.2.X存在反序列化远程代码执行漏洞☆78Dec 25, 2019Updated 6 years ago
- Nagios XI远程命令执行漏洞 <v5.6.9☆23Jan 8, 2020Updated 6 years ago
- Shiro_721 exp 纯手工实现Padding Oracle整个过程☆67Nov 20, 2019Updated 6 years ago
- Shiro RememberMe 1.2.4 反序列化 漏洞☆56Oct 25, 2019Updated 6 years ago
- webuploader-v-0.1.15未授权-任意文件上传☆52Sep 6, 2019Updated 6 years ago
- java web 压缩文件 安全 漏洞☆20Mar 17, 2020Updated 5 years ago
- Shiro-721 RCE Via RememberMe Padding Oracle Attack☆269Oct 29, 2020Updated 5 years ago
- Office Anywhere网络智能办公系统☆152Mar 20, 2020Updated 5 years ago
- RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl☆210Mar 10, 2019Updated 6 years ago
- phpweb 前台任意文件上传☆16Jan 9, 2020Updated 6 years ago
- mstsc.exe Path Traversal to RCE POC☆91May 23, 2019Updated 6 years ago
- tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484…☆212May 19, 2020Updated 5 years ago
- 内网渗透中常用的c#程序整合成cs脚本,直接内存加载。持续更新~☆498Feb 13, 2020Updated 6 years ago
- autoType enable☆36Sep 21, 2019Updated 6 years ago
- CVE-2019-2725 命令回显☆436May 8, 2023Updated 2 years ago
- ☆85Dec 6, 2019Updated 6 years ago
- fastjson_rce工具,不用搭建HTTP服务,不受JDK版本限制☆10Nov 25, 2019Updated 6 years ago
- fastjson 1.2.68 版本 autotype bypass☆142Jun 17, 2022Updated 3 years ago
- shiro反序列化检测(只是个玩具23333)☆10Jan 16, 2024Updated 2 years ago
- Redis RCE 的几种方法☆90Jun 5, 2024Updated last year
- 通过 Redis 主从写出无损文件☆719May 25, 2020Updated 5 years ago
- JCE - JSP/JPSX CodeEncode - 用于 Webshell 逃避静态查杀的辅助脚本☆258Oct 29, 2021Updated 4 years ago
- 利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码☆711May 10, 2021Updated 4 years ago
- 用于辅助安全工程师漏洞挖掘、测试、复现,集合了mock、httplog、dns tools、xss,可用于测试各类无回显、无法直观判断或特定场景下的漏洞。☆868Jul 21, 2019Updated 6 years ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆484Dec 9, 2020Updated 5 years ago
- 帮助java环境下任意文件下载情况自动化读取源码的小工具☆167Apr 5, 2019Updated 6 years ago
- Shiro RCE (Padding Oracle Attack)☆148Nov 15, 2019Updated 6 years ago
- CVE-2020-10199、CVE-2020-10204、CVE-2020-11444☆35Apr 9, 2020Updated 5 years ago
- Apache Solr Exploits 🌟☆348Oct 13, 2020Updated 5 years ago
- fastjson-1.2.58-rce with h2 database☆34Aug 5, 2019Updated 6 years ago
- 增强版WeblogicScan、检测结果更精确、插件化、添加CVE-2019-2618,CVE-2019-2729检测,Python3支持☆968Jun 16, 2024Updated last year
- 基于亚马逊S3\阿里云OSS\腾讯COS通信隧道的远程管理工具☆327Oct 10, 2020Updated 5 years ago
- CVE-2019-8449 Exploit for Jira v2.1 - v8.3.4☆68Feb 3, 2020Updated 6 years ago
- Fastjson vulnerability quickly exploits the framework(fastjson漏洞快速利用框架)☆1,388Dec 16, 2022Updated 3 years ago
- 👻Behold3r -- 收集指定网站的子域名,并可监控指定网站的子域名更新情况,发送变更报告至指定邮箱☆33Jan 3, 2020Updated 6 years ago
- Cobalt Strike插件 - RDP日志取证&清除☆363Dec 23, 2019Updated 6 years ago
- 超硬核!使用图数据技术发现软件漏洞☆185Sep 1, 2021Updated 4 years ago
- 从wooyun中提取的payload,以及burp插件☆840Jun 17, 2022Updated 3 years ago
- 一个各种方式突破Disable_functions达到命令执行的shell☆1,198Oct 17, 2023Updated 2 years ago