kezibei / fastjson_payloadLinks

☆228

Alternatives and similar repositories for fastjson_payload

Users that are interested in fastjson_payload are comparing it to the libraries listed below

Sorting:

Lonely-night / fastjsonVul
fastjson 80 远程代码执行漏洞复现
☆200Updated 3 years ago
kezibei / Urldns
☆338Updated last month
depycode / fastjson-c3p0
fastjson不出网利用、c3p0
☆255Updated 4 years ago
f0ng / JavaFileDict
Java应用的一些配置文件字典，来源于公开的字典与平时收集
☆320Updated last year
lz2y / yaml-payload-for-ruoyi
A memory shell for ruoyi
☆259Updated 2 years ago
YYHYlh / Apache-Dubbo-CVE-2023-23638-exp
Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践
☆229Updated 2 years ago
SummerSec / AgentInjectTool
改造BeichenDream/InjectJDBC加入shiro获取key和修改key功能
☆280Updated 2 years ago
depycode / fastjson-local-echo
基于dbcp的fastjson rce 回显
☆197Updated 4 years ago
yuyan-sec / druid_sessions
获取 alibaba druid 一些 sessions , sql , urls
☆287Updated 8 months ago
A0WaQ4 / HexDnsEchoT
命令执行不回显但DNS协议出网的命令回显场景解决方案（修改为使用ceye接收请求，添加自定义DNS服务器）
☆294Updated 2 years ago
yuanhaiGreg / Fuzz-Dict
一些常见字典
☆171Updated 4 years ago
whwlsfb / SpringSpider
Spring Actuator端点的BurpSuite被动扫描插件。
☆202Updated 3 years ago
woodpecker-appstore / jexpr-encoder-utils
Java表达式语句生成器
☆193Updated 2 years ago
sv3nbeast / DnslogCmdEcho
命令执行不回显但DNS协议出网的命令回显场景解决方案
☆277Updated 2 years ago
l3yx / jdwp-codeifier
基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本（动态执行Java/Js代码并获得回显）
☆318Updated 11 months ago
safe6Sec / MemoryShell
内存马学习
☆172Updated 3 years ago
minhangxiaohui / DecodeSomeJSPWebshell
冰蝎、哥斯拉 jsp webshell通信流量解密器
☆145Updated 2 years ago
Ppsoft1991 / CodeReviewTools
通过正则搜索、批量反编译特定Jar包中的class名称
☆317Updated 3 years ago
0x00007c00 / JundeadShell
Java内存马注入工具
☆250Updated 2 years ago
safe6Sec / ShiroAndFastJson
shiro加fastjson环境
☆143Updated 3 years ago
A-D-Team / attackRmi
☆231Updated 3 years ago
r00t4dm / aLIEz
☆196Updated last year
j2ekim / YonyouNC_Tip
☆169Updated 3 years ago
jayus0821 / Armor
Armor 浏览器反蜜罐插件 honeypot
☆180Updated 4 years ago
ruyueattention / java-memshell-scanner
通过jsp脚本扫描并查杀Tomcat内存马，当前支持Servlet-api、Tomcat-Value、Timer、Websocket 、Upgrade 、ExecutorShell内存马的查杀逻辑。
☆65Updated 2 years ago
r00tSe7en / JNDIMonitor
一个LDAP请求监听器，摆脱dnslog平台
☆293Updated 2 years ago
keven1z / weblogic_memshell
适用于weblogic和Tomcat的无文件的内存马(memshell)
☆269Updated 3 years ago
corener / JavaPassDump
JavaPassDump
☆271Updated 3 years ago
f1tz / BCELCodeman
BCEL encode/decode manager for fastjson payloads
☆152Updated 3 years ago
threedr3am / dubbo-exp
dubbo快速利用exp，基本上老版本覆盖100%。
☆160Updated 5 months ago