langligelang/maobugs external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

langligelang/maobugs

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/langligelang/maobugs)

Close

langligelang / maobugsView on GitHubMore

• External links
• Readme badge

java 漏洞平台包含各种CVE

☆23Jun 17, 2022Updated 3 years ago

Alternatives and similar repositories for maobugs

Users that are interested in maobugs are comparing it to the libraries listed below

• pwntester / XStreamPOC

  View on GitHub
  POC for XStream RCE
  ☆13Dec 23, 2013Updated 12 years ago
• Ant-FG-Lab / non_RCE

  View on GitHub
  ☆41Mar 10, 2021Updated 4 years ago
• EdoardoVignati / java-deserialization-of-untrusted-data-poc

  View on GitHub
  Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data
  ☆26Jul 12, 2021Updated 4 years ago
• timwhitez / Doge-Persistence-Platform

  View on GitHub
  后渗透持久化控制平台; Windows Persistence Platform;
  ☆46Sep 16, 2021Updated 4 years ago
• UnicodeSec / Blogs

  View on GitHub
  宽字节安全团队的博客
  ☆31Mar 29, 2021Updated 4 years ago
• mogwailabs / deserialization-filter-blacklists

  View on GitHub
  Native Java serialization filter blacklist for common gadgets
  ☆20Sep 12, 2019Updated 6 years ago
• longofo / javaweb-sec

  View on GitHub
  攻击Java Web应用-[Java Web安全]
  ☆12Dec 10, 2019Updated 6 years ago
• knqyf263 / CVE-2018-1273

  View on GitHub
  Environment for CVE-2018-1273 (Spring Data Commons)
  ☆10Aug 15, 2018Updated 7 years ago
• mogwailabs / rmi-deserialization

  View on GitHub
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆101Sep 20, 2019Updated 6 years ago
• rootklt / gmssl

  View on GitHub
  国密SM2/SM3/SM4加解密工具
  ☆14May 9, 2022Updated 3 years ago
• iflody / codeql-workshop

  View on GitHub
  ☆12Aug 5, 2021Updated 4 years ago
• briskinfosec / ANSE-SCANNER

  View on GitHub
  ☆12May 9, 2017Updated 8 years ago
• EXP-Docs / CVE-2020-13933

  View on GitHub
  CVE-2020-13933 靶场： shiro 认证绕过漏洞
  ☆14Apr 9, 2023Updated 2 years ago
• 0r3ak / CallBackDump

  View on GitHub
  能过卡巴、核晶、defender等杀软的dump lsass进程工具
  ☆12Sep 25, 2022Updated 3 years ago
• heyzm / Discuz3.x-Code-injection

  View on GitHub
  Discuz3.x代码注入
  ☆11Jul 14, 2019Updated 6 years ago
• Ramos-dev / graph4code

  View on GitHub
  超硬核！使用图数据技术发现软件漏洞
  ☆186Sep 1, 2021Updated 4 years ago
• iSafeBlue / redis-rce

  View on GitHub
  Redis RCE 的几种方法
  ☆90Jun 5, 2024Updated last year
• langligelang / CAS_EXP

  View on GitHub
  CAS 硬编码 远程代码执行漏洞
  ☆125Jun 4, 2021Updated 4 years ago
• iSafeBlue / fastjson-autotype-bypass-demo

  View on GitHub
  fastjson 1.2.68 版本 autotype bypass
  ☆142Jun 17, 2022Updated 3 years ago
• Afant1 / JavaSearchTools

  View on GitHub
  ☆61Sep 21, 2020Updated 5 years ago
• keven1z / weblogic_memshell

  View on GitHub
  适用于weblogic和Tomcat的无文件的内存马(memshell)
  ☆269Mar 4, 2022Updated 4 years ago
• Bort-Millipede / WLT3Serial

  View on GitHub
  Native Java-based deserialization exploit for WebLogic T3 (and T3S) listeners.
  ☆35Mar 2, 2020Updated 6 years ago
• vgo0 / nginx-backdoor

  View on GitHub
  Example nginx backdoor via malicious plugin
  ☆48Mar 3, 2022Updated 4 years ago
• kanav99 / github-java-ctf

  View on GitHub
  Winning submission for the GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition
  ☆19Jun 25, 2020Updated 5 years ago
• hack2012 / xssblind

  View on GitHub
  使用docker-compose一键快速搭建ezXSS环境
  ☆19Aug 26, 2020Updated 5 years ago
• c1y2m3 / Tailorbox

  View on GitHub
  redteam Build platform
  ☆19Nov 13, 2023Updated 2 years ago
• threedr3am / tomcat-cluster-session-sync-exp

  View on GitHub
  tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包， 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
  ☆212May 19, 2020Updated 5 years ago
• 5wimming / gadgetinspector

  View on GitHub
  利用链、漏洞检测工具
  ☆373Jul 31, 2024Updated last year
• g0dA / PenetrationStack

  View on GitHub
  渗透技术栈
  ☆20May 28, 2019Updated 6 years ago
• m3ssap0 / spring-break_cve-2017-8046

  View on GitHub
  This is a Java program that exploits Spring Break vulnerability (CVE-2017-8046).
  ☆17Jun 4, 2021Updated 4 years ago
• comwrg / masscan-cgo

  View on GitHub
  masscan cgo demo
  ☆20Jul 23, 2021Updated 4 years ago
• yaklang / yakit-store

  View on GitHub
  ☆44Oct 23, 2022Updated 3 years ago
• veracode-research / actuator-testbed

  View on GitHub
  A vulnerable application exposing Spring Boot Actuators
  ☆123Feb 25, 2019Updated 7 years ago
• threedr3am / log-agent

  View on GitHub
  利用agent hock指定的class，在jar运行周期内，用于跟踪被执行的方法，辅助做一些事情，比如挖洞啊
  ☆125Jul 17, 2020Updated 5 years ago
• b1ngz / spring-boot-actuator-cloud-vul

  View on GitHub
  Spring Boot Actuator + Spring Cloud Vul Env
  ☆19Dec 25, 2019Updated 6 years ago
• threedr3am / GuanYu

  View on GitHub
  JVM runtime class loading protection agent.（JVM类加载保护agent）
  ☆48Mar 25, 2021Updated 4 years ago
• atorralba / GHSL_CTF_4

  View on GitHub
  My solution for GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition
  ☆19Jun 10, 2020Updated 5 years ago
• ceclin / 0ctf-2021-finals-soln-buggy-loader

  View on GitHub
  solution to buggyLoader of 0CTF/TCTF 2021 Finals
  ☆20Sep 27, 2021Updated 4 years ago
• Litch1-v / ysoserial

  View on GitHub
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆183Apr 23, 2021Updated 4 years ago