kyo-w / Spel-research
Spel-research
☆26Updated 2 years ago
Alternatives and similar repositories for Spel-research:
Users that are interested in Spel-research are comparing it to the libraries listed below
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆33Updated 4 months ago
- 一个简单的批量反编译jar包的小脚本☆35Updated 2 years ago
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆55Updated 5 months ago
- ☆13Updated 2 years ago
- java☆54Updated 2 years ago
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆50Updated last year
- 如何将Java反序列化Payload极致缩小☆48Updated 3 years ago
- Java 内存马生成插件☆50Updated last year
- 某软最新公开gadgegt,新加入不出网利用。☆61Updated 6 months ago
- ☆50Updated 2 years ago
- CVE-2015-4852、CVE-2016-0638、CVE-2016-3510、CVE-2019-2890漏洞POC☆17Updated 4 years ago
- burpsuite插件-被动无感识别指纹-主动poc扫描☆25Updated 6 months ago
- 基于ysoserial 扩展命令执行结果回显,生成冰蝎内存马☆87Updated last year
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆90Updated 2 years ago
- 用Go+Fyne开发的,展示JAVA序列化流以及集成一键插入脏数据,UTF过长编码绕WAF(Utf OverLoad Encoding),修改类SerializeVersionUID功能的图形化工具。☆94Updated last month
- Java命令行文件监控小工具(代码审计)☆100Updated 3 years ago
- 在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 3 years ago
- MemShell List☆79Updated last year
- 利用shiro反序列化注入冰蝎内存马☆35Updated 3 years ago
- woodpecker 漏洞插件开发的简单示范,用于插件的快速上手☆23Updated 3 years ago
- Apache Dubbo漏洞测试Demo及其POC☆61Updated last year
- ☆35Updated 3 years ago
- 多组件客户端☆74Updated 6 months ago
- springboot跨线程注入内存马☆116Updated 2 years ago
- 安服面经☞渗透测试/代码审计/安全研究☆27Updated 2 years ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆40Updated 5 months ago
- 本工具的定位是快速生成Java安全相关的Payload,如内存马、反序列化链、JNDI url、Fastjson等,动态生成相关Payload,并附带相应的文档。☆91Updated 2 weeks ago
- nacos api bypass & jwt bypass & get all configs☆38Updated last year
- ☆35Updated 2 years ago
- 《JNDI-深入理解Java万恶之源》☆37Updated last year