☆101Oct 7, 2023Updated 2 years ago
Alternatives and similar repositories for my-presentation-slide
Users that are interested in my-presentation-slide are comparing it to the libraries listed below
Sorting:
- codemillx is a tool for CodeQL, extract the comments in the code and generate codeql module. 强化Go开源项目安全检测(内含开源项目漏洞挖掘方法)☆205Mar 19, 2022Updated 3 years ago
- ☆143Jan 21, 2021Updated 5 years ago
- fastjson 1.2.68 版本 autotype bypass☆142Jun 17, 2022Updated 3 years ago
- Java RCE 回显测试代码☆1,016Oct 15, 2020Updated 5 years ago
- 渗透测试复盘总结☆15Jul 16, 2020Updated 5 years ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆484Dec 9, 2020Updated 5 years ago
- ☆231Jan 3, 2022Updated 4 years ago
- ☆835Jun 7, 2022Updated 3 years ago
- java内存对象搜索辅助工具☆823Sep 23, 2022Updated 3 years ago
- ☆420Jan 5, 2022Updated 4 years ago
- Spring Cloud SnakeYAML 反序列化一键注入cmdshell和reGeorg☆136Sep 24, 2020Updated 5 years ago
- (周瑜)Java - SpringBoot 持久化 WebShell(不仅仅是SpringBoot,适合任何符合JavaEE规范的服务)☆615Dec 29, 2021Updated 4 years ago
- GreHack 2021 CodeQL for Java workshop☆73Nov 19, 2021Updated 4 years ago
- CVE-2020-2546,CVE-2020-2915 CVE-2020-2801 CVE-2020-2798 CVE-2020-2883 CVE-2020-2884 CVE-2020-2950 WebLogic T3 payload exploit poc pyth…☆133Mar 5, 2023Updated 3 years ago
- xss漏洞模糊测试payload的最佳集合 2020版☆511May 25, 2020Updated 5 years ago
- ☆295May 7, 2022Updated 3 years ago
- xray社区高级版证书生成,仅供学习研究,正常使用请支持正版。removed due to Chaitin requirements & support to version 1.4.4 & learning purpose☆443Nov 11, 2020Updated 5 years ago
- Shiro-550 不依赖CC链利用工具☆451Jun 19, 2024Updated last year
- 利用agent hock指定的class,在jar运行周期内,用于跟踪被执行的方法,辅助做一些事情,比如挖洞啊☆125Jul 17, 2020Updated 5 years ago
- 一个简单的现代化公司域名使用规律预测及生成工具☆388Feb 24, 2022Updated 4 years ago
- 总结了免杀webshell的方法论☆48Jul 23, 2020Updated 5 years ago
- X安蜜罐用的一些存在JSonp劫持的API☆93May 28, 2021Updated 4 years ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆269Mar 4, 2022Updated 4 years ago
- tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484…☆212May 19, 2020Updated 5 years ago
- A helpful Java Deserialization exploit framework.☆1,240Feb 17, 2025Updated last year
- 宽字节安全团队的博客☆31Mar 29, 2021Updated 4 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,404Jan 18, 2022Updated 4 years ago
- An exquisite dns&http log server for verify SSRF/XXE/RFI/RCE vulnerability☆469Sep 16, 2023Updated 2 years ago
- Apache Tomcat + MongoDB Remote Code Execution☆113Jan 15, 2021Updated 5 years ago
- fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.☆229Oct 12, 2022Updated 3 years ago
- 基于亚马逊S3\阿里云OSS\腾讯COS通信隧道的远程管理工具☆327Oct 10, 2020Updated 5 years ago
- DVPNET 公开漏洞知识库☆94Jun 10, 2021Updated 4 years ago
- git lfs based bytecode-viewer and follow dependencies. Based on https://github.com/Konloch/bytecode-viewer and https://github.com/ThexXTU…☆16Apr 14, 2021Updated 4 years ago
- JCE - JSP/JPSX CodeEncode - 用于 Webshell 逃避静态查杀的辅助脚本☆258Oct 29, 2021Updated 4 years ago
- Behinder3.0 Beta4 源码(Decompile and Fixed)☆207Sep 1, 2020Updated 5 years ago
- An awesome reverse engine for xray poc. | 一个自动化根据 xray poc 生成对应靶站的工具☆422Mar 22, 2023Updated 2 years ago
- WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞��,一键注册蚁剑filter内存shell☆535Aug 25, 2020Updated 5 years ago
- ☆275Oct 28, 2021Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.优化了一些东西。☆214Jan 17, 2022Updated 4 years ago