safe6Sec / JavaDeserialization
java反序列化学习笔记
☆15Updated 3 years ago
Alternatives and similar repositories for JavaDeserialization:
Users that are interested in JavaDeserialization are comparing it to the libraries listed below
- golang写的批量对目标网站进行截图的小工具,适合目标资产比较多时,快速定位薄弱点。☆32Updated 2 years ago
- ☆37Updated 2 months ago
- ☆31Updated 3 years ago
- 若依后台定时任务一键利用☆17Updated 2 years ago
- Learning JAVA for Security☆31Updated 2 years ago
- 基于BurpShiroPassiveScan修改增加了Xray回显链生成☆54Updated 2 years ago
- CobaltStrike profile by 风起☆37Updated 3 years ago
- Java反序列化漏洞学习☆14Updated 3 years ago
- 该项目是通过go语言实现防止rmi利用被反置的问题。☆44Updated 3 years ago
- 对接JNDIMonitor的Burp Suite被动扫描插件☆23Updated 3 years ago
- Burp-Plugin-study☆16Updated 3 years ago
- 可以从公开仓库直接拖取镜像的一个小工具 方便直接解包审计代码☆13Updated 2 years ago
- 2023泛微0A漏洞poc检测工具☆38Updated last year
- payloads☆15Updated 3 years ago
- CVE-2022-24990信息泄露+RCE 一条龙☆39Updated 2 years ago
- 各类域名数据处理☆12Updated 6 months ago
- 安服面经☞渗透测试/代码审计/安全研究☆26Updated 2 years ago
- CNVD-2021-30167 用友NC BeanShell远程代码执行☆30Updated 3 years ago
- 蓝凌oa无回显rce漏洞poc脚本Updated 2 years ago
- Hession-Deserialize-RCE 反序列化命令执行☆22Updated 5 years ago
- CVE-2023-46604☆63Updated last year
- 内存马持久化☆58Updated 2 years ago
- ExpFuzz字典☆21Updated 8 months ago
- CVE-2015-4852、CVE-2016-0638、CVE-2016-3510、CVE-2019-2890漏洞POC☆17Updated 4 years ago
- 陆续补充一些自己写的cobaltstrike插件☆46Updated 3 years ago
- 批量无损检测CVE-2022-22965☆37Updated 2 years ago
- Alibaba Nacos存在默认token.secret.key,导致远程攻击者可以绕过密钥认证接管Nacos☆18Updated last year
- 记录学习codeql的过程☆9Updated 3 years ago
- 用友 nc 系列密码解密☆59Updated last year
- druid数据库密码解密☆31Updated last year