lz2y / DubboPOC
Apache Dubbo漏洞测试Demo及其POC
☆62Updated last year
Related projects: ⓘ
- Spel-research☆24Updated 2 years ago
- Java 内存马生成插件☆48Updated last year
- 一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service☆31Updated 2 months ago
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆76Updated last year
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆78Updated 2 years ago
- 在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 3 years ago
- Apache Dubbo Hessian2 CVE-2021-43297 demo☆46Updated 2 years ago
- A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily☆26Updated 2 months ago
- 检测查杀java内存马☆73Updated 9 months ago
- ☆67Updated this week
- ☆47Updated this week
- MemShell List☆77Updated last year
- 《FanZhi-攻击与反制的艺术》☆59Updated 9 months ago
- Shiro内存马注入环境☆56Updated 3 years ago
- ☆4Updated last year
- Java命令行文件监控小工具(代码审计)☆92Updated 2 years ago
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆68Updated last year
- 一个简单的批量反编译jar包的小脚本☆30Updated 2 years ago
- 如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过☆44Updated last year
- Kunlun-M 的GUI程序☆50Updated last year
- [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload☆90Updated 2 years ago
- java☆54Updated last year
- 《ASPX安全-只有ASPX安全才能拯救.NET》Only ASPX Security Can Save The NET.☆33Updated last year
- 本工具的定位是快速生成Java安全相关的Payload,如内存马、反序列化链、JNDI url、Fastjson等,动态生成相关Payload,并附带相应的文档。☆88Updated last year
- 《Spring漏洞研究》☆44Updated 2 years ago
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆84Updated last year
- 通过jsp注入valve内存马,可以忽略框架影响,通用tomcat789☆90Updated 2 years ago
- 利用shiro反序列化注入冰蝎内存马☆33Updated 2 years ago
- ☁️Tencent Cloud AccessKey tools☆16Updated 2 months ago
- CVE-2021-43297 POC,Apache Dubbo<= 2.7.13时可以实现RCE☆38Updated 2 years ago