luelueking / Deserial_Sink_With_JDBCLinks
Some ReadObject Sink With JDBC
☆241Updated last year
Alternatives and similar repositories for Deserial_Sink_With_JDBC
Users that are interested in Deserial_Sink_With_JDBC are comparing it to the libraries listed below
Sorting:
- Java Js Engine Payloads All in one☆281Updated 2 years ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆212Updated last year
- Java表达式语句生成器☆193Updated 2 years ago
- 基于 jdwp-shellifier 的进阶JDWP漏洞利用脚本(动态执行Java/Js代码并获得回显)☆315Updated 10 months ago
- 无需文件落地Agent内存马生成器☆248Updated last year
- Java web路由内存分析工具☆439Updated 5 months ago
- 不那么一样的 Java Agent 内存马☆287Updated last year
- CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!☆99Updated last year
- A Java Route Collection Tool☆102Updated last year
- javaDeserializeLabs☆70Updated 2 years ago
- ☆228Updated 5 months ago
- 是一些比赛中的好题,加上自己出的一些。。。☆43Updated 3 years ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马�注入☆285Updated last year
- CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段☆269Updated 11 months ago
- fastjson 80 远程代码执行漏洞复现☆200Updated 3 years ago
- java-web 自动化鉴权绕过☆367Updated 7 months ago
- ☆338Updated last month
- evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.☆96Updated 3 years ago
- JavaSec☆40Updated last year
- 2023白帽补天大会部分代码☆129Updated last year
- ☆246Updated last year
- 一款支持自定义的 Java 回显载荷生成工具|A customizable Java echo payload generation tool.☆453Updated 10 months ago
- shiro加fastjson环境☆141Updated 3 years ago
- JDBC Attack Tricks☆153Updated 2 years ago
- 记录一些代码审计过的源码☆176Updated 8 months ago
- dubbo快速利用exp,基本上老版本覆盖100%。☆160Updated 4 months ago
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆229Updated 2 years ago
- 通过jsp脚本扫描并查杀Tomcat内存马,当前支持Servlet-api、Tomcat-Value、Timer、Websocket 、Upgrade 、ExecutorShell内存马的查杀逻辑。☆63Updated 2 years ago
- Java应用的一些配置文件字典,来源于公开的字典与平时收集☆320Updated last year
- CodeQL分析闭源Jar包脚本,基于Apache Ant构建CodeQL数据库☆39Updated 3 years ago