jweny/shiro-cve-2020-17523 external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

jweny/shiro-cve-2020-17523

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/jweny/shiro-cve-2020-17523)

Close

jweny / shiro-cve-2020-17523View on GitHubMore

• External links
• Readme badge

shiro-cve-2020-17523 漏洞的两种绕过姿势分析 以及配套的漏洞环境

☆119Feb 7, 2021Updated 5 years ago

Alternatives and similar repositories for shiro-cve-2020-17523

Users that are interested in shiro-cve-2020-17523 are comparing it to the libraries listed below

• LandGrey / spring-boot-upload-file-lead-to-rce-tricks

  View on GitHub
  spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧
  ☆754Apr 14, 2021Updated 4 years ago
• iSafeBlue / fastjson-autotype-bypass-demo

  View on GitHub
  fastjson 1.2.68 版本 autotype bypass
  ☆142Jun 17, 2022Updated 3 years ago
• Y4er / WebLogic-Shiro-shell

  View on GitHub
  WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞，一键注册蚁剑filter内存shell
  ☆535Aug 25, 2020Updated 5 years ago
• ce-automne / OrderbyHunter

  View on GitHub
  一款辅助探测Orderby注入漏洞的BurpSuite插件
  ☆25Oct 19, 2021Updated 4 years ago
• Veraxy00 / Jumpserver-EXP

  View on GitHub
  JumpServer远程代码执行漏洞检测利用脚本
  ☆204Feb 9, 2021Updated 5 years ago
• keven1z / weblogic_memshell

  View on GitHub
  适用于weblogic和Tomcat的无文件的内存马(memshell)
  ☆270Mar 4, 2022Updated 4 years ago
• welk1n / FastjsonPocs

  View on GitHub
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Oct 29, 2019Updated 6 years ago
• flowerwind / AutoGenerateXalanPayload

  View on GitHub
  cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具，可根据不同的Jdk生成出其所对应的xslt文件
  ☆93Jan 17, 2023Updated 3 years ago
• jweny / MemShellDemo

  View on GitHub
  内存马Demo合集 memshell demo for java / php / python
  ☆425May 31, 2021Updated 4 years ago
• Imanfeng / Apache-Solr-RCE

  View on GitHub
  Apache Solr Exploits 🌟
  ☆348Oct 13, 2020Updated 5 years ago
• BeichenDream / Chunk-Proxy

  View on GitHub
  ☆295May 7, 2022Updated 3 years ago
• jas502n / FinalShellDecodePass

  View on GitHub
  FinalShellDecodePass 加密解密
  ☆83Dec 1, 2021Updated 4 years ago
• feihong-cs / Java-Rce-Echo

  View on GitHub
  Java RCE 回显测试代码
  ☆1,015Oct 15, 2020Updated 5 years ago
• 7BitsTeam / LearningAgentShell

  View on GitHub
  7bits安全团队-《Java安全-记一次实战使用memoryshell》代码样例
  ☆19Nov 13, 2022Updated 3 years ago
• Ares-X / shiro-exploit

  View on GitHub
  Shiro反序列化利用工具，支持新版本(AES-GCM)Shiro的key爆破，配合ysoserial，生成回显Payload
  ☆896May 28, 2021Updated 4 years ago
• woodpecker-appstore / jexpr-encoder-utils

  View on GitHub
  Java表达式语句生成器
  ☆194Oct 9, 2023Updated 2 years ago
• Ppsoft1991 / CodeReviewTools

  View on GitHub
  通过正则搜索、批量反编译特定Jar包中的class名称
  ☆321Dec 9, 2021Updated 4 years ago
• depycode / fastjson-c3p0

  View on GitHub
  fastjson不出网利用、c3p0
  ☆256Jul 30, 2021Updated 4 years ago
• threedr3am / ZhouYu

  View on GitHub
  （周瑜）Java - SpringBoot 持久化 WebShell（不仅仅是SpringBoot，适合任何符合JavaEE规范的服务）
  ☆614Dec 29, 2021Updated 4 years ago
• r00t4dm / aLIEz

  View on GitHub
  ☆197Sep 26, 2024Updated last year
• jweny / HTTP-Request-Smuggling-Checker

  View on GitHub
  A tool to quickly check HTTP-Request-Smuggling, written by python3
  ☆12Jun 17, 2020Updated 5 years ago
• NS-Sp4ce / TongDaOA-Fake-User

  View on GitHub
  通达OA 任意用户登录漏洞
  ☆359Aug 27, 2020Updated 5 years ago
• LandGrey / ClassHound

  View on GitHub
  利用任意文件下载漏洞循环下载反编译 Class 文件获得网站 Java 源代码
  ☆712May 10, 2021Updated 4 years ago
• su18 / JDBC-Attack

  View on GitHub
  JDBC Connection URL Attack
  ☆441Sep 10, 2021Updated 4 years ago
• dr0op / shiro-550-with-NoCC

  View on GitHub
  Shiro-550 不依赖CC链利用工具
  ☆450Jun 19, 2024Updated last year
• pmiaowu / BurpFastJsonScan

  View on GitHub
  一款基于BurpSuite的被动式FastJson检测插件
  ☆1,237Oct 1, 2022Updated 3 years ago
• NS-Sp4ce / MoAn_Honey_Pot_Urls

  View on GitHub
  X安蜜罐用的一些存在JSonp劫持的API
  ☆93May 28, 2021Updated 4 years ago
• SummerSec / LookupInterface

  View on GitHub
  CodeQL 寻找 JNDI利用 Lookup接口
  ☆166Apr 10, 2022Updated 3 years ago
• YYHYlh / Apache-Dubbo-CVE-2023-23638-exp

  View on GitHub
  Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
  ☆230Aug 8, 2023Updated 2 years ago
• horizon3ai / vRealizeLogInsightRCE

  View on GitHub
  POC for RCE using vulnerabilities described in VMSA-2023-0001
  ☆148Jan 31, 2023Updated 3 years ago
• r35tart / RedisWriteFile

  View on GitHub
  通过 Redis 主从写出无损文件
  ☆718May 25, 2020Updated 5 years ago
• ydnzol / memshell

  View on GitHub
  Tomcat 冰蝎内存马。
  ☆214Sep 14, 2020Updated 5 years ago
• samsbp / java-file-ftp

  View on GitHub
  POC for leaking java version through file and ftp protocols
  ☆24Nov 1, 2020Updated 5 years ago
• jas502n / jackson-CVE-2020-8840

  View on GitHub
  FasterXML/jackson-databind 远程代码执行漏洞
  ☆73Feb 21, 2020Updated 6 years ago
• QAX-A-Team / WeblogicEnvironment

  View on GitHub
  Weblogic环境搭建工具
  ☆796Apr 23, 2020Updated 5 years ago
• hayasec / reGeorg-Weblogic

  View on GitHub
  reGeorg的特殊版本，适用于老版本weblogic。
  ☆151Apr 30, 2020Updated 5 years ago
• iSafeBlue / redis-rce

  View on GitHub
  Redis RCE 的几种方法
  ☆90Jun 5, 2024Updated last year
• 5up3rc / weblogic_cmd

  View on GitHub
  weblogic t3 deserialization rce
  ☆268Jul 13, 2017Updated 8 years ago
• wuppp / releaseBehinderShell

  View on GitHub
  卸载冰蝎内存马
  ☆68Apr 13, 2021Updated 4 years ago