pyn3rd / CVE-2023-34040View external linksLinks
Spring-Kafka-Deserialization-Remote-Code-Execution
☆32Oct 8, 2023Updated 2 years ago
Alternatives and similar repositories for CVE-2023-34040
Users that are interested in CVE-2023-34040 are comparing it to the libraries listed below
Sorting:
- c3p0 new gadget☆28Apr 1, 2025Updated 10 months ago
- linux ebpf backdoor demo☆12Nov 20, 2024Updated last year
- Some ReadObject Sink With JDBC☆243May 8, 2024Updated last year
- JDBC Attack Tricks☆154Sep 3, 2023Updated 2 years ago
- ☆146Jan 16, 2023Updated 3 years ago
- That guy uses python to bypass anti-virus, goddamn!基于python pyd的shellcode免杀绕过☆65Jun 27, 2023Updated 2 years ago
- Java bytecode line number restoration tool☆134Aug 31, 2025Updated 5 months ago
- 2023白帽补天大会部分代码☆129Dec 26, 2023Updated 2 years ago
- Java表达式语句生成器☆194Oct 9, 2023Updated 2 years ago
- ☆250Feb 25, 2024Updated last year
- 之前方便自己研究RASP原理和绕过时顺手写的,用于快速启动和重置RASP环境☆71Oct 13, 2024Updated last year
- 根据攻防以及域信息收集经验dump快而有用的域信息☆103Aug 15, 2023Updated 2 years ago
- Java 内存马生成插件☆54Jun 10, 2023Updated 2 years ago
- Java Js Engine Payloads All in one☆289Aug 21, 2023Updated 2 years ago
- 用java实现构造openwire协议,利用activeMQ < 5.18.3 RCE 回显利用 内存马注入☆288Nov 20, 2023Updated 2 years ago
- CVE-2024-0012 PAN-OS: Authentication Bypass in the Management Web Interface (PAN-SA-2024-0015) RCE POC☆20Nov 19, 2024Updated last year
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆86Jul 18, 2023Updated 2 years ago
- ☆65Sep 27, 2023Updated 2 years ago
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆93Jan 17, 2023Updated 3 years ago
- A vul-finder for loading CPG and automated finding vul-call-chains☆71Jul 22, 2025Updated 6 months ago
- 通过正则搜索、批量反编译特定Jar包中的class名称☆320Dec 9, 2021Updated 4 years ago
- 收录go语言编写的项目、框架和组件出现的cve,或者一些相关的利用方式的文章☆47Nov 23, 2022Updated 3 years ago
- CVE-2022-37042 Zimbra Auth Bypass leads to RCE☆30Dec 9, 2022Updated 3 years ago
- ☆24Jan 7, 2025Updated last year
- 《深入JDBC安全:特殊URL构造与不出网反序列化利用技术揭秘》对应研究总结项目 "Deep Dive into JDBC Security: Special URL Construction and Non-Networked Deserialization Explo…☆569Updated this week
- Decrypt passwords/cookies/history/bookmarks from the browser. 一款可全平台运行的浏览器数据导出解密工具。☆11Nov 28, 2022Updated 3 years ago
- JavaAgent内存马实现、检测、修复demo☆11Dec 7, 2022Updated 3 years ago
- Exploit for CVE-2024-0402 in Gitlab☆15Mar 18, 2025Updated 10 months ago
- 用于若依和Jeecg数据库中密码的爆破☆23Jul 19, 2025Updated 6 months ago
- Extract entire function source code based on giving line number using Javaparser☆20Jul 15, 2025Updated 6 months ago
- 利用agent hock指定的class,在jar运行周期内,用于跟踪被执行的方法,辅助做一些事情,比如挖洞啊☆125Jul 17, 2020Updated 5 years ago
- Netty/WebFlux 内存马☆26Nov 19, 2023Updated 2 years ago
- 一键出网探测工具☆73Feb 25, 2023Updated 2 years ago
- CVE-2022-25845(fastjson1.2.80) exploit in Spring Env!☆106Nov 7, 2024Updated last year
- ☆294May 7, 2022Updated 3 years ago
- 使用JNI加密字节码,通过JVMTI解密字节码以保护代码,支持自定义包名和密钥,使用魔法禁止黑客dump字节码☆181Dec 4, 2024Updated last year
- Apache Dubbo (CVE-2023-23638)漏洞利用的工程化实践☆231Aug 8, 2023Updated 2 years ago
- 用友NC系列漏洞检测利用工具,支持一键检测、命令执行回显、文件落地、一键打入内存马、文件读取等☆580Aug 19, 2023Updated 2 years ago
- Some of the presentations, workshops, and labs I gave at public conferences.☆34Oct 24, 2025Updated 3 months ago