pyn3rd / my-presentation-slideLinks
☆101Updated last year
Alternatives and similar repositories for my-presentation-slide
Users that are interested in my-presentation-slide are comparing it to the libraries listed below
Sorting:
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆102Updated 5 years ago
- ☆143Updated 6 years ago
- 又一款敏感文件泄漏检测工具☆104Updated 5 years ago
- MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload☆13Updated 5 years ago
- fastjson-1.2.47☆66Updated 5 years ago
- ☆58Updated 5 years ago
- Shiro_721 exp 纯手工实现Padding Oracle整个过程☆67Updated 5 years ago
- SpringBoot_Actuator_RCE☆96Updated 5 years ago
- bypass JEP290 RaspHook code☆62Updated 4 years ago
- ☆62Updated 5 years ago
- RMI 反序列化环境 一步步☆210Updated 4 years ago
- ☆58Updated 5 years ago
- Shiro RCE (Padding Oracle Attack)☆143Updated 5 years ago
- 总结了免杀webshell的方法论☆48Updated 4 years ago
- ☆81Updated 7 years ago
- Apache Solr远程代码执行漏洞(CVE-2019-0193) Exploit☆66Updated 4 years ago
- Redis RCE 的几种方法☆90Updated 11 months ago
- 知识星球《漏洞百出》最新 20条 Topic☆113Updated 3 years ago
- fastjson-1.2.58-rce with h2 database☆34Updated 5 years ago
- 一款用于攻击spring boot actuator的集成环境,目前集成三种攻击方式,支持1.x、2.x☆86Updated 3 years ago
- django 漏洞:CVE-2020-7471 Potential SQL injection via StringAgg(delimiter) 的漏洞环境和 POC☆104Updated 5 years ago
- VulHint是辅助代码审计的 sublime text 3 插件☆67Updated 6 years ago
- 一个Burp插件,实现用AES算法透明加密原版菜刀Caidao.exe与服务器端交互的http数据流☆80Updated 6 years ago
- fastjson 1.2.68 版本 autotype bypass☆141Updated 2 years ago
- 使用java agent反序列化注入内存shell☆67Updated 4 years ago
- 🐸fingerprint detect framework 批量深度指纹识别框架☆120Updated 2 years ago
- DSO-Lab 漏洞研究成果整理☆82Updated 2 years ago
- A JSP backdoor that enables under Tomcat hiding arbitrary JSP files, in addition to their access logs.☆214Updated 6 years ago
- SerialWriter is an incomplete implementation of Java serialization for study of Java deserialization vulnerabilities.☆104Updated 7 years ago
- tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484…☆213Updated 5 years ago