luelueking / CVE-2022-25845-In-Spring
CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!
☆57Updated this week
Related projects ⓘ
Alternatives and complementary repositories for CVE-2022-25845-In-Spring
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆47Updated last year
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆30Updated this week
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆51Updated 3 weeks ago
- ☆46Updated 2 months ago
- 多组件客户端☆68Updated 2 months ago
- Java 内存马生成插件☆49Updated last year
- Spel-research☆24Updated 2 years ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆35Updated last month
- A Java Route Collection Tool☆85Updated 3 months ago
- JDBC Attack Tricks☆135Updated last year
- 支持常见中间件无文件落地冰蝎内存马注入&&文件上传agent冰蝎马注入☆32Updated last year
- ☆53Updated 11 months ago
- CVE-2023-22515☆49Updated last year
- ☆80Updated 6 months ago
- ☆37Updated 2 years ago
- java-swing-gui-stater | Java Swing GUI Maven 项目模板 | 简单的教程☆32Updated last week
- 使用 agent 实现反序列化 utf8 overlong☆67Updated 6 months ago
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆77Updated last year
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆84Updated last year
- MemShell List☆77Updated last year
- 用友的一些反序列化链子以及1day,二开了狼组的YongYouNcTool,改了一下逻辑以及poc☆73Updated last month
- burp手工检测fastjson辅助☆80Updated 8 months ago
- 抽离出 utf-8-overlong-encoding 的序列化逻辑,实现 2 3 字节加密序列化数组☆109Updated 8 months ago
- ☆134Updated last year
- 一款办公应用云凭证利用工具☆85Updated 5 months ago
- Nacos JRaft Hessian 反序列化 RCE EXP☆65Updated last year
- Confluence未授权添加管理员用户(CVE-2023-22515)漏洞利用工具☆107Updated last year
- EndpointSearch 是一个探测云服务端点的扫描器。Endpoint Search is a sophisticated reconnaissance utility designed to discreetly identify and enumerate end…☆65Updated this week
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆90Updated 2 years ago