luelueking / Deserial_Sink_With_JDBCLinks
Some ReadObject Sink With JDBC
☆235Updated last year
Alternatives and similar repositories for Deserial_Sink_With_JDBC
Users that are interested in Deserial_Sink_With_JDBC are comparing it to the libraries listed below
Sorting:
- Java Js Engine Payloads All in one☆277Updated 2 years ago
- Java表达式语句生成器☆193Updated last year
- Java web路由内存分析工具☆434Updated 3 months ago
- 基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)☆305Updated 8 months ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆200Updated last year
- 无需文件落地Agent内存马生成器☆245Updated last year
- A Java Route Collection Tool☆101Updated last year
- CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!☆97Updated 9 months ago
- javaDeserializeLabs☆69Updated 2 years ago
- ☆226Updated 2 months ago
- 不那么一样的 Java Agent 内存马☆285Updated last year
- fastjson 80 远程代码执行漏洞复现☆198Updated 2 years ago
- java-web 自动化鉴权绕 过☆329Updated 4 months ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆283Updated last year
- 是一些比赛中的好题,加上自己出的一些。。。☆43Updated 3 years ago
- JavaSec☆39Updated last year
- ☆243Updated last year
- CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段☆259Updated 8 months ago
- ☆336Updated last year
- evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.☆94Updated 2 years ago
- 2023白帽补天大会部分代码☆127Updated last year
- CodeQL分析闭源Jar包脚本,基于Apache Ant构建CodeQL数据库☆38Updated 3 years ago
- shiro加fastjson环境☆134Updated 2 years ago
- 命令执行不回显但DNS协议出网的命令回显场景解决方案(修改为使用ceye接收请求,添加自定义DNS服务器)☆293Updated 2 years ago
- 记录一些代码审计过的源码☆172Updated 6 months ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆61Updated last month
- A neo4j procedure for tabby☆128Updated 3 months ago
- 一款支持自定义的 Java 回显载荷生成工具|A customizable Java echo payload generation tool.☆444Updated 7 months ago
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆226Updated 2 years ago
- Java应用的一些配置文件字典,来源于公开的字典与平时收集☆314Updated last year