leihehehe / Java-deserialization-vulnerability
Personal notes for Java Deserialization Vulnerability. 对应Java反序列化漏洞利用链集合详解、个人笔记
☆18Updated 2 years ago
Related projects: ⓘ
- ☆35Updated 2 years ago
- Spring core bean 日志 getshell 和 Spring Cloud Function SpEL 命令执行。☆35Updated 2 years ago
- burpsuite wildcard 插件维护分支☆1Updated last year
- 安服面经☞渗透测试/代码审计/安全研究☆26Updated 2 years ago
- god_param☆39Updated 9 months ago
- FofaMap云查询版是基于C/S架构打造的Fofa数据采集器,仅需配置好一个服务 端,即可实现多个客户端同时在线查询,其客户端支持FofaMap国庆版全部功能。☆39Updated last year
- ☆51Updated this week
- ☆17Updated this week
- 2023泛微0A漏洞poc检测工具☆38Updated last year
- burp插件:python版,token防重放绕过☆19Updated 3 years ago
- java反序列化学习笔记☆15Updated 2 years ago
- 一个Spring4Shell 被动式检测的Burp插件☆93Updated 2 years ago
- 一款BurpSuite插件,辅助手工测试☆71Updated last year
- 一个简单的批量反编译jar包的小脚本☆30Updated 2 years ago
- 一个针对shiro反序列化漏洞(CVE-2016-4437)的快速利用工具/A simple tool targeted at shiro framework attacks with ysoserial.☆23Updated 2 years ago
- ☆33Updated this week
- jmx未授权访问 弱口令批量检测 GUI工具☆31Updated last year
- burpsuite插件-被动无感识别指纹-主动poc扫描☆20Updated last week
- 一款扫描js中敏感api的burp插件☆32Updated last year
- CVE-2023-46604☆62Updated 10 months ago
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆84Updated last year
- 基于BurpShiroPassiveScan修改增加了Xray回显链生成☆53Updated 2 years ago
- ☁️Tencent Cloud AccessKey tools☆16Updated 2 months ago
- 一款探测fastjson漏洞的BurpSuite插件☆60Updated 2 years ago
- 若依后台定时任务一键利用☆17Updated 2 years ago
- 一个批量扫描shiro漏洞的工具,支持AES/CMG☆77Updated last year
- Tomcat内存马、XStream、Fastjson、Weblogic T3安全笔记☆40Updated 3 years ago
- ☆37Updated this week
- CVE-2022-22947_EXP,CVE-2022-22947_RCE,CVE-2022-22947反弹shell,CVE-2022-22947 getshell☆34Updated 2 years ago
- ☆15Updated last year