nnewkin/fastjson_rce_tool external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

nnewkin/fastjson_rce_tool

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/nnewkin/fastjson_rce_tool)

Close

nnewkin / fastjson_rce_toolView on GitHubMore

• External links
• Readme badge

fastjson_rce工具，不用搭建HTTP服务，不受JDK版本限制

☆10Nov 25, 2019Updated 6 years ago

Alternatives and similar repositories for fastjson_rce_tool

Users that are interested in fastjson_rce_tool are comparing it to the libraries listed below

• TuuuNya / nmap_scripts

  View on GitHub
  nmap默认的scripts和自己收集的一些scripts
  ☆21Feb 22, 2018Updated 8 years ago
• NoOne-hub / debug-with-glibc-symbols

  View on GitHub
  让ELF以特定libc链接运行,带符号版本
  ☆14Mar 10, 2020Updated 5 years ago
• euphrat1ca / CobaltstrikeWiki

  View on GitHub
  collect
  ☆17Aug 29, 2019Updated 6 years ago
• jas502n / phpweb

  View on GitHub
  phpweb 前台任意文件上传
  ☆16Jan 9, 2020Updated 6 years ago
• jas502n / SHIRO-721

  View on GitHub
  RememberMe Padding Oracle Vulnerability RCE
  ☆72Nov 14, 2019Updated 6 years ago
• ab1gale / phpcms-2008-CVE-2018-19127

  View on GitHub
  ☆41Nov 9, 2018Updated 7 years ago
• tom0li / security_circle

  View on GitHub
  ☆20Nov 20, 2017Updated 8 years ago
• boy-hack / vulhub-downloader

  View on GitHub
  vulhub下载器，可则需下载对应环境
  ☆23Sep 19, 2018Updated 7 years ago
• p1r06u3 / phishing

  View on GitHub
  The Security Practices of Party A Phishing
  ☆20Nov 9, 2019Updated 6 years ago
• theLSA / vbulletin5-rce

  View on GitHub
  CVE-2019-16759 vbulletin 5.0.0 till 5.5.4 pre-auth rce
  ☆20Aug 11, 2020Updated 5 years ago
• imagemlt / LoggedProxy

  View on GitHub
  记录流量的http(s)代理+分布式被动漏洞扫描
  ☆24Jun 30, 2019Updated 6 years ago
• iSafeBlue / redis-rce

  View on GitHub
  Redis RCE 的几种方法
  ☆90Jun 5, 2024Updated last year
• FunnyWolf / ghostmirror

  View on GitHub
  通过webshell实现的内网穿透工具
  ☆49Nov 19, 2019Updated 6 years ago
• c0ny1 / burp-cookie-porter

  View on GitHub
  一个可快速“搬运”cookie的Burp Suite插件
  ☆25Apr 13, 2018Updated 7 years ago
• LuckyC4t / shiro-urldns

  View on GitHub
  shiro反序列化检测(只是个玩具23333)
  ☆10Jan 16, 2024Updated 2 years ago
• virink / xray-weblisten-ui

  View on GitHub
  Xray 被动扫描管理
  ☆59May 1, 2020Updated 5 years ago
• L-codes / ctf-scripts

  View on GitHub
  Some of CTF scripts
  ☆35Nov 12, 2022Updated 3 years ago
• kingkaki / ysoserial

  View on GitHub
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆103Mar 10, 2020Updated 5 years ago
• 02bx / crawlergo-to-xray

  View on GitHub
  crawlergo-to-xray，可以把0Kee-Team crawlergo爬虫爬取的链接推送给长亭xray分析，xray分析后自动调用webhook接口利用server酱实时推送漏洞预警到微信，让你躺着挖漏洞。支持多线程。
  ☆30Jun 5, 2020Updated 5 years ago
• tobechenghuai / Shiro_721_Padding_Oracle_RCE

  View on GitHub
  Shiro_721 exp 纯手工实现Padding Oracle整个过程
  ☆67Nov 20, 2019Updated 6 years ago
• threedr3am / fastjson-blacklist

  View on GitHub
  打CTF实在厌倦了找利用链，就知道一个fastjson的版本，一堆依赖找啊找，头都疼。为了解决这个烦恼，用了卓卓师傅的fastjson黑名单工具和库，自己改造了一下。
  ☆32Jan 3, 2020Updated 6 years ago
• Lucifer1993 / awesome-hacking

  View on GitHub
  awesome hacking chinese version
  ☆24Apr 10, 2017Updated 8 years ago
• Wfzsec / ysoserial-poc

  View on GitHub
  记录调试分析ysoserial系列的学习过程，主要包含手动构造的一些poc，便于加深对漏洞和工具的理解
  ☆30Jun 15, 2020Updated 5 years ago
• jas502n / CVE-2019-6340

  View on GitHub
  Drupal8's REST RCE, SA-CORE-2019-003, CVE-2019-6340
  ☆71Jun 10, 2020Updated 5 years ago
• NS-Sp4ce / PHPStudy_BackDoor_Exp

  View on GitHub
  PHPStudy_BackDoor_EXP PHPstudy后门利用脚本
  ☆68Sep 24, 2019Updated 6 years ago
• anntsmart / QQ

  View on GitHub
  ☆23Oct 29, 2019Updated 6 years ago
• w4iting4 / FindIcmpP

  View on GitHub
  解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具
  ☆31Apr 22, 2022Updated 3 years ago
• ggg4566 / PocStart

  View on GitHub
  轻量级漏洞验证和利用框架
  ☆32May 10, 2022Updated 3 years ago
• ekgg / Caidao-AES-Version

  View on GitHub
  一个Burp插件，实现用AES算法透明加密原版菜刀Caidao.exe与服务器端交互的http数据流
  ☆79Jan 19, 2019Updated 7 years ago
• cobolbaby / php-cookbook

  View on GitHub
  PHP技巧
  ☆10Oct 25, 2019Updated 6 years ago
• jas502n / Burp_AES_Plugin

  View on GitHub
  Burpsuite Plugin For AES Crack
  ☆37Jun 17, 2020Updated 5 years ago
• victorAmazing99 / chat-ollama

  View on GitHub
  ☆15Apr 23, 2025Updated 10 months ago
• Ruil1n / after-deserialization-attack

  View on GitHub
  Java After-Deserialization Attack
  ☆79Apr 26, 2021Updated 4 years ago
• jas502n / JWT_Brute

  View on GitHub
  JWT_Brute
  ☆32Oct 10, 2019Updated 6 years ago
• jra89 / CVE-2019-19634

  View on GitHub
  This is a filter bypass exploit that results in arbitrary file upload and remote code execution in class.upload.php <= 2.0.4
  ☆36Dec 8, 2019Updated 6 years ago
• fairyming / CVE-2020-8840

  View on GitHub
  CVE-2020-8840：FasterXML/jackson-databind 远程代码执行漏洞
  ☆37Feb 24, 2020Updated 6 years ago
• iwhgao / PyTextScan

  View on GitHub
  利用python脚本对文本内容进行敏感信息的识别与过滤
  ☆38Jan 12, 2016Updated 10 years ago
• TheCyberGeek / CVE-2019-19268

  View on GitHub
  New Found 0-days!
  ☆36Dec 4, 2019Updated 6 years ago
• threedr3am / tomcat-cluster-session-sync-exp

  View on GitHub
  tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包， 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
  ☆212May 19, 2020Updated 5 years ago