Additional materials for RootedCON 2015 Apache Struts talk
☆30Mar 6, 2015Updated 11 years ago
Alternatives and similar repositories for rooted2k15
Users that are interested in rooted2k15 are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆34Sep 19, 2022Updated 3 years ago
- ☆22Nov 3, 2022Updated 3 years ago
- PaddingZip is a tool that you can craft a zip file that contains the padding characters between the file content.☆81Aug 14, 2022Updated 3 years ago
- Show the application of fuzzy in penetration test~☆13Mar 11, 2022Updated 4 years ago
- 静态程序分析工具 主要生成方法的CFG和.java文件的AST☆136Jul 12, 2023Updated 2 years ago
- GPUs on demand by Runpod - Special Offer Available • AdRun AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
- 在原版nps的基础上,增加了nps探测,以及对应的利用方式(如获取cookie,页面等),进行一些简��单的二开。未经过大量测试,可能存在bug。☆22Aug 5, 2025Updated 10 months ago
- ☆16Dec 26, 2021Updated 4 years ago
- Code audit (code review) with VIM.☆17Jan 3, 2025Updated last year
- Invanti VPN Vulnerabilities for Jan - Feb 2024 - Links to Keep it all Organized☆16Feb 15, 2024Updated 2 years ago
- A Burp Extender plugin, that will take deserialized AMF objects and encode them in XML using the Xtream library☆27Apr 14, 2015Updated 11 years ago
- Java After-Deserialization Attack☆78Apr 26, 2021Updated 5 years ago
- Fuzzing web services in style with nodejs☆10Aug 10, 2019Updated 6 years ago
- A declarative static analysis tool for jvm bytecode based Datalog like CodeQL☆342Jan 6, 2024Updated 2 years ago
- 大模型辅助SAST静态代码分析的Demo系统☆13Feb 19, 2025Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- exploit dev. stuff☆20Aug 7, 2012Updated 13 years ago
- Just mindmapping according to official document ( useful for further study )☆28May 20, 2022Updated 4 years ago
- payloads☆15Mar 17, 2021Updated 5 years ago
- common methods that used by my burp extension projects☆53Apr 12, 2024Updated 2 years ago
- A list for Spring Security☆130Jan 16, 2024Updated 2 years ago
- springboot getRequestURI acl bypass☆37Oct 13, 2020Updated 5 years ago
- woodpecker-framework sdk☆10May 19, 2021Updated 5 years ago
- 构造字节在ASCII范围内的jar☆142Feb 14, 2022Updated 4 years ago
- 星火实验室GUI工具框架☆30Jul 19, 2023Updated 2 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Exploit ONLYOFFICE Implementations☆28Nov 25, 2022Updated 3 years ago
- 补天自动化脚本提交☆19Jan 23, 2022Updated 4 years ago
- nativeRasp that can hook native methods☆23Apr 24, 2023Updated 3 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆123Jan 9, 2018Updated 8 years ago
- Java agent without file 无文件的Java agent☆82Apr 7, 2022Updated 4 years ago
- CodeQL extractor for java, which don't need to compile java source☆347Nov 25, 2022Updated 3 years ago
- Use java instrument API without JAR file☆47Jun 19, 2022Updated 3 years ago
- ☆95Nov 2, 2023Updated 2 years ago
- ☆147Jan 16, 2023Updated 3 years ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- 云原生安全漏洞收集☆17Jul 9, 2025Updated 11 months ago
- 不那么一样的 Java Agent 内存马☆288Nov 27, 2023Updated 2 years ago
- Primefaces <= 5.2.21, 5.3.8 or 6.0 - Remote Code Execution Exploit☆94Feb 27, 2024Updated 2 years ago
- 通过JavaAgent与Javassist技术对JVM加载的类对象进行动态插桩,可以做一些破解、加密验证的绕过等操作☆118Jun 18, 2024Updated last year
- Download all files and XML list in a public Amazon AWS S3 bucket.☆21Sep 11, 2023Updated 2 years ago
- Same Origin XSS challenge☆63Apr 7, 2022Updated 4 years ago
- Burp Suite AMF Extension☆49Sep 24, 2018Updated 7 years ago