jweny / shiro-cve-2020-17523
shiro-cve-2020-17523 漏洞的两种绕过姿势分析 以及配套的漏洞环境
☆112Updated 3 years ago
Related projects: ⓘ
- 用于WebLogic poc及exp测试的基础脚本,后续将集成各版本poc库☆94Updated 3 years ago
- 杀内存马的工具,欢迎code review,提出更好的意见☆181Updated 8 months ago
- SpringBoot Actuator未授权自动化利用,支持信息泄漏/RCE☆233Updated 3 years ago
- 一款高效的参数fuzz工具|A faster param fuzzing test tool☆100Updated 3 years ago
- ☆171Updated 2 weeks ago
- Weblogic Vuln POC EXP cve-2020-2551 cve-2020-2555 cve-2020-2883 ,。。。☆90Updated 2 years ago
- Spring Cloud SnakeYAML 反序列化一键注入cmdshell和reGeorg☆128Updated 3 years ago
- Web端POC-EXP 整理☆99Updated 3 years ago
- ☆137Updated this week
- GUI Exploit Tool For RedTeam☆7Updated 3 years ago
- WIP: Demo for Attacking Apereo CAS☆83Updated 4 years ago
- ☆193Updated this week
- DSO-Lab 漏洞研究成果整理☆83Updated 2 years ago
- Apache Shiro 反序列化漏洞检测与利用工具,一键注入内存马☆138Updated 3 years ago
- 🐸Unauthorized Detection Framework未授权访问检测框架☆157Updated 9 months ago
- RMI 反序列化环境 一步步☆211Updated 4 years ago
- ☆118Updated this week
- This tool generates gopher link for exploiting SSRF and gaining RCE in redis with password.用于生成附带密码认证的gopher内容,用于SSRF等利用。☆108Updated 5 years ago
- 中国蚁剑JSP一句话Payload☆117Updated 3 years ago
- fastjson不出网利用、c3p0☆245Updated 3 years ago
- 个人整理的一些域渗透Tricks,可能有一些错误。☆243Updated 3 years ago
- Java漏洞分析汇合☆140Updated 2 years ago
- ☆145Updated 3 years ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆264Updated 2 years ago
- 《Shiro漏洞研究》☆51Updated last year
- 利用字符集编码绕过waf的burpsuite插件☆116Updated 3 years ago
- 一款通过污点追踪发现Jsp webshell的工具(A tool to find Jsp Webshell through stain tracking)☆174Updated 2 years ago
- ☆124Updated this week
- 2020年~2021年 网站CMS、中间件、框架系统漏洞集合☆98Updated 3 years ago
- Shiro-721 Padding Oracle Attack☆68Updated 3 years ago