Java反序列化漏洞学习笔记
☆16Nov 17, 2019Updated 6 years ago
Alternatives and similar repositories for javaDeserializeNotes
Users that are interested in javaDeserializeNotes are comparing it to the libraries listed below
Sorting:
- Java反序列化漏洞学习☆14Jul 1, 2021Updated 4 years ago
- Personal notes for Java Deserialization Vulnerability. 对应Java反序列化漏洞利用链集合详解、个人笔记☆18Jan 10, 2022Updated 4 years ago
- CVE-2020-26259: XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process…☆25Dec 13, 2020Updated 5 years ago
- The next-generation AI Agent framework driven by Intent Engineering. Move beyond turn-based Function Calling to embrace code-level intent…☆65Jan 11, 2026Updated last month
- awvs-scan 是一款调用 AWVS 13.x API 的自动化工具☆26Oct 20, 2022Updated 3 years ago
- ☆37Jun 9, 2023Updated 2 years ago
- SCTF2020☆86Jul 10, 2020Updated 5 years ago
- 魔改的冰蝎,仅供测试连接内存webshell使用☆38Aug 26, 2020Updated 5 years ago
- 本来要自己写个脚本存放poc,发现有大佬已经写了个轮子,使用J2ExpSuite,后期添加POC☆12Feb 17, 2023Updated 3 years ago
- 存放投稿里的一些文件☆11Oct 31, 2020Updated 5 years ago
- ☆41Apr 26, 2020Updated 5 years ago
- AtExec SMB remote execution command (using SCHTASKS)☆12May 24, 2021Updated 4 years ago
- Recursively extract urls from a web page for reconnaissance.☆12Jun 9, 2024Updated last year
- BurpSuite 插件,自动格式化 response 中的 json/jsonp 数据,同时也会对 Unicode 进行解码☆10Feb 19, 2020Updated 6 years ago
- study_summary☆10Aug 8, 2022Updated 3 years ago
- A CLI tool for query keyword in China MIIT ICP Website to get ICP Record☆16Jan 18, 2026Updated last month
- ☆10Jul 21, 2022Updated 3 years ago
- The burp extension to forward the request☆10Oct 21, 2024Updated last year
- woodpecker框架专用bcel库☆12Apr 30, 2021Updated 4 years ago
- 把jsp的cmdshell升级为冰蝎一句话☆11Sep 23, 2019Updated 6 years ago
- burpsuite插件 方便替换cookies方式测试越权☆12Jun 12, 2021Updated 4 years ago
- Mac版PHP手册,可离线查看php文档☆18Jul 5, 2014Updated 11 years ago
- Bytekit is a PHP extension that provides a userspace representation of the opcodes generated by the Zend engine compiler built into PHP.☆19May 21, 2011Updated 14 years ago
- ☆13Jul 24, 2023Updated 2 years ago
- cidrgen is based on cidr's subnet IP list generator☆15Aug 21, 2020Updated 5 years ago
- JAVA Vul Code JAVA常见漏洞与防御代码示例☆10Sep 18, 2018Updated 7 years ago
- 在学习Java反序列化漏洞的过程中,用来理解Java RMI程序的执行流程,演示如何攻击Java RMI程序的几个示例。☆11May 6, 2020Updated 5 years ago
- my-nuclei-templates☆12Dec 9, 2021Updated 4 years ago
- zhttp是一个对net/http标准库的封装,参考了python中著名的requests库☆14Apr 19, 2024Updated last year
- GDB functions for debugging and analyzing the PHP heap☆18Feb 3, 2011Updated 15 years ago
- 本指南现已提供:ebpf指南、移动安全指南、风控指南;移动安全指南-owasp MASTG中文译文,后期会对内容进行进行大幅更新,和本土优化;风控指南-搬运的是risk-management-note,后期会对内容进行进行大幅更新,和本土优化;TODO网络安全指南;TODO…☆18Jul 23, 2025Updated 7 months ago
- ☆11Oct 20, 2022Updated 3 years ago
- ysoserial for su18☆11Jun 19, 2022Updated 3 years ago
- Direct system calls by nim☆14Mar 15, 2022Updated 3 years ago
- 基于MobSF API测试安卓app权限的工具,用于app合规检查,查看敏感权限是否在隐私政策中说明☆12Sep 2, 2022Updated 3 years ago
- ☆16Oct 7, 2020Updated 5 years ago
- A gadget for converting PE files to shellcode.☆14Jan 9, 2020Updated 6 years ago
- ☆15Apr 16, 2022Updated 3 years ago
- 渗透测试常规操作记录☆11Dec 11, 2020Updated 5 years ago