leihehehe / Java-deserialization-vulnerabilityLinks
Personal notes for Java Deserialization Vulnerability. 对应Java反序列化漏洞利用链集合详解、个人笔记
☆19Updated 3 years ago
Alternatives and similar repositories for Java-deserialization-vulnerability
Users that are interested in Java-deserialization-vulnerability are comparing it to the libraries listed below
Sorting:
- 本工具的定位是快速生成Java安全相关的Payload,如内存马、反序列化链、JNDI url、Fastjson等,动态生成相关Payload,并附带相应的文档。☆93Updated 4 months ago
- 一个Spring4Shell 被动式检测的Burp插件☆94Updated 3 years ago
- burpsuite wildcard 插件维护分支☆1Updated 2 years ago
- god_param☆41Updated last year
- 基于BurpShiroPassiveScan修改增加了Xray回显链生成☆54Updated 2 years ago
- ☆35Updated 3 years ago
- Java命令行文件监控小工具(代码审计)☆102Updated 3 years ago
- 一款探测fastjson漏洞的BurpSuite插件☆61Updated 3 years ago
- 一个批量扫描shiro漏洞的工具,支持AES/CMG☆79Updated 2 years ago
- 一款BurpSuite插件,辅助手工测试☆72Updated last year
- 安服面经☞渗透测试/代码审计/安全研究☆27Updated 3 years ago
- 支持自动化的切换请求方式、自动化的请求重试、以完整的扫描Springboot路径☆3Updated 3 years ago
- 根据域名生成备份文件字典(不扫描)☆23Updated 2 years ago
- 2023泛微0A漏洞poc检测工具☆38Updated last year
- Java安全学习历程☆41Updated 2 years ago
- Hadoop Yan ResourceManager unauthorized RCE☆37Updated 3 years ago
- burp插件:python版,token防重放绕过☆21Updated 4 years ago
- 基于SerializationDumper的Shiro Cookie序列化数据解密小工具☆53Updated 4 years ago
- 使用java编写的CRLF-Injection-burp被动扫描插件☆47Updated 2 years ago
- ☆69Updated 4 years ago
- 对接JNDIMonitor的Burp Suite被动扫描插件☆26Updated 3 years ago
- java反序列化学习笔记☆15Updated 3 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated 2 years ago
- 右键检测图片是否存在Exif漏洞☆31Updated 2 years ago
- 详见公众号☆39Updated 2 years ago
- Spring Cloud Gateway Actuator API SpEL表达式注入命令执行(CVE-2022-22947) 注入哥斯拉内存马☆53Updated 3 years ago
- golang写的批量对目标网站进行截图的小工具,适合目标资产比较多时,快速定位薄弱点。☆32Updated 2 years ago
- Spring Cloud Function Spel命令执行漏洞☆38Updated 3 years ago
- lbb是一个企业信息查询工具,可以帮助企业查询自身对外公开的应用、新媒体,网站等。☆43Updated 3 years ago
- woodpecker 漏洞插件开发的简单示范,用于插件的快速上手☆24Updated 4 years ago