proudwind/struts2_vulns external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

proudwind/struts2_vulns

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/proudwind/struts2_vulns)

Close

proudwind / struts2_vulnsView on GitHubMore

• External links
• Readme badge

Struts2 vuln env

☆43Dec 6, 2022Updated 3 years ago

Alternatives and similar repositories for struts2_vulns

Users that are interested in struts2_vulns are comparing it to the libraries listed below

• mogwailabs / deserialization-filter-blacklists

  View on GitHub
  Native Java serialization filter blacklist for common gadgets
  ☆20Sep 12, 2019Updated 6 years ago
• Wfzsec / ysoserial-poc

  View on GitHub
  记录调试分析ysoserial系列的学习过程，主要包含手动构造的一些poc，便于加深对漏洞和工具的理解
  ☆30Jun 15, 2020Updated 5 years ago
• l3m0n / WebFuzzAttack

  View on GitHub
  web模糊测试 - 将漏洞可能性放大
  ☆145Apr 23, 2019Updated 6 years ago
• Lonely-night / fastjson_gadgets_scanner

  View on GitHub
  ☆131Jun 17, 2022Updated 3 years ago
• LeadroyaL / java_xxe_2019

  View on GitHub
  总结了一下2019年在JVM环境中使用XXE攻击的知识
  ☆58Oct 31, 2019Updated 6 years ago
• Passer6y / CrawlerVuln

  View on GitHub
  一个NodeJS实现的漏扫动态爬虫
  ☆81Dec 11, 2022Updated 3 years ago
• kingkaki / ysoserial

  View on GitHub
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆103Mar 10, 2020Updated 5 years ago
• pyn3rd / my-presentation-slide

  View on GitHub
  ☆101Oct 7, 2023Updated 2 years ago
• gitrobtest / Java-Security

  View on GitHub
  Java Security Documents
  ☆81Sep 19, 2019Updated 6 years ago
• SecurityCN / Vulnerability-analysis

  View on GitHub
  ☆62Mar 25, 2020Updated 5 years ago
• wafinfo / SyscallLoader

  View on GitHub
  SyscallLoader
  ☆11Sep 13, 2021Updated 4 years ago
• JoyChou93 / md5-extension-attack

  View on GitHub
  MD5长度扩展攻击
  ☆40Jun 8, 2016Updated 9 years ago
• zerothoughts / jndipoc

  View on GitHub
  Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls
  ☆42Jan 22, 2016Updated 10 years ago
• niexinming / python_hook

  View on GitHub
  ☆51Aug 16, 2018Updated 7 years ago
• lufeirider / SqlChecker

  View on GitHub
  注入检测工具
  ☆44Aug 12, 2019Updated 6 years ago
• 0xedh / mstsc-path-traversal

  View on GitHub
  mstsc.exe Path Traversal to RCE POC
  ☆91May 23, 2019Updated 6 years ago
• threedr3am / tomcat-cluster-session-sync-exp

  View on GitHub
  tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包， 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
  ☆212May 19, 2020Updated 5 years ago
• Cryin / JavaID

  View on GitHub
  java source code static code analysis and danger function identify prog
  ☆534Feb 18, 2019Updated 7 years ago
• threedr3am / ysoserial

  View on GitHub
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。
  ☆214Jan 17, 2022Updated 4 years ago
• welk1n / JNDI-Injection-Bypass

  View on GitHub
  Some payloads of JNDI Injection in JDK 1.8.0_191+
  ☆484Dec 9, 2020Updated 5 years ago
• kingkaki / ciscn_sshop

  View on GitHub
  参赛所用的sshop平台
  ☆11Jun 26, 2018Updated 7 years ago
• naozibuhao / iGuardForPython

  View on GitHub
  ☆13Apr 16, 2020Updated 5 years ago
• VictorJiangXin / JAVA-Pointer-Analyse

  View on GitHub
  JAVA指针分析
  ☆13Jul 23, 2019Updated 6 years ago
• l-iberty / Overflow

  View on GitHub
  二进制学习笔记
  ☆12Oct 14, 2020Updated 5 years ago
• Adrninistrator / java-behavior-control

  View on GitHub
  Monitor and prevent unexpected behavior of Java programs.
  ☆14Jul 6, 2021Updated 4 years ago
• codeplutos / MySQL-JDBC-Deserialization-Payload

  View on GitHub
  MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload
  ☆13Feb 8, 2020Updated 6 years ago
• iSafeBlue / fastjson-autotype-bypass-demo

  View on GitHub
  fastjson 1.2.68 版本 autotype bypass
  ☆142Jun 17, 2022Updated 3 years ago
• guimaizi / get_domain

  View on GitHub
  ☆404Feb 28, 2020Updated 6 years ago
• pwntester / JRE8u20_RCE_Gadget

  View on GitHub
  JRE8u20_RCE_Gadget
  ☆255Jul 1, 2016Updated 9 years ago
• shengqi158 / fastjson-remote-code-execute-poc

  View on GitHub
  fastjson remote code execute poc 直接用intellij IDEA打开即可 首先编译得到Test.class，然后运行Poc.java
  ☆403Dec 16, 2022Updated 3 years ago
• TheCjw / XposedModules

  View on GitHub
  Some xposed modules
  ☆16Nov 27, 2018Updated 7 years ago
• airman604 / jdbc-backdoor

  View on GitHub
  A fake JDBC driver that allows OS command execution.
  ☆125Oct 2, 2022Updated 3 years ago
• kevien / javacode

  View on GitHub
  some java code i met or i used
  ☆29May 7, 2019Updated 6 years ago
• Slzdude / behinder_source

  View on GitHub
  Behinder3.0 Beta4 源码（Decompile and Fixed）
  ☆207Sep 1, 2020Updated 5 years ago
• silience / sql

  View on GitHub
  ☆13Apr 11, 2018Updated 7 years ago
• fupinglee / Struts2_Bugs

  View on GitHub
  ☆11Mar 30, 2017Updated 8 years ago
• nobleXu / jenkins

  View on GitHub
  jenkins payload
  ☆17May 3, 2017Updated 8 years ago
• uknowsec / SharpToolsAggressor

  View on GitHub
  内网渗透中常用的c#程序整合成cs脚本，直接内存加载。持续更新~
  ☆498Feb 13, 2020Updated 6 years ago
• SeriousAlpha / py-security-audit-tool

  View on GitHub
  python security audit tool，用于python源码的代码审计，支持命令注入，sql注入
  ☆63Jun 4, 2015Updated 10 years ago