luelueking / Java-CVE-Lists
☆17Updated last year
Alternatives and similar repositories for Java-CVE-Lists:
Users that are interested in Java-CVE-Lists are comparing it to the libraries listed below
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆59Updated 5 months ago
- 一个简单的批量反编译jar包的小脚本☆35Updated 3 years ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆47Updated 6 months ago
- Write Up Code of HITB Sec-Sin 2021 Make JDBC Attacks Brilliant Again☆11Updated last year
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆33Updated 4 months ago
- 如果反序列化过程中�使用resolveClass拉黑了TemplatesImpl如何绕过☆50Updated last year
- idea插件,快速生成反序列化中常用的方法,比如setFieldValue、createTemplatesImpl等☆16Updated 6 months ago
- Spel-research☆26Updated 2 years ago
- 一些总结出来的gadget的flow,后续合适和加入新的flow☆16Updated 4 months ago
- 某软最新公开gadgegt,新加入不出网利用。☆61Updated 7 months ago
- ☆23Updated last month
- 使用 agent 实现反序列化 utf8 overlong☆75Updated 11 months ago
- ☆28Updated last year
- Java 内存马生成插件☆50Updated last year
- A Java Route Collection Tool☆91Updated 8 months ago
- CVE-2023-46604☆28Updated last year
- 如何将Java反序列化Payload极致缩小☆49Updated 3 years ago
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆78Updated last year
- Hessian UTF-8 Overlong Encoding☆17Updated last year
- CodeQL分析闭源Jar包脚本,基于Apache Ant构建CodeQL数据库☆34Updated 2 years ago
- Extract React router info from React based website within browser☆27Updated last year
- Tomcat的SPI后门☆8Updated last year
- java实现反序列化建立socket连接☆58Updated 3 months ago
- ☆18Updated 3 months ago
- CVE-2023-46604☆62Updated last year
- Java命令行文件监控小工具(代码审计)☆101Updated 3 years ago
- 一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service☆31Updated 6 months ago
- Fastjson姿势技巧集合☆13Updated 2 years ago
- CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!☆89Updated 5 months ago
- API Highlighter 是一个用于 BurpSuite 的插件,主要用于 web 应用迭代安全测试时高亮指定的新增接口,该插件最初用 Python 编写,现重构为 Java 版本。☆34Updated last month