safe6Sec / JavaDeserialization
java反序列化学习笔记
☆15Updated 3 years ago
Alternatives and similar repositories for JavaDeserialization:
Users that are interested in JavaDeserialization are comparing it to the libraries listed below
- golang写的批量对目标网站进行截图的小工具,适合目标资产比较多时,快速定位薄弱点。☆32Updated 2 years ago
- 基于BurpShiroPassiveScan修改增加了Xray回显链生成☆54Updated 2 years ago
- Java反序列化漏洞学习☆14Updated 3 years ago
- CVE-2022-24990信息泄露+RCE 一条龙☆39Updated 3 years ago
- CobaltStrike profile by 风起☆37Updated 3 years ago
- Learning JAVA for Security☆31Updated 2 years ago
- 对接JNDIMonitor的Burp Suite被动扫描插件☆24Updated 3 years ago
- ☆38Updated 4 months ago
- ☆31Updated 3 years ago
- windows 添加管理员--Rust版本☆44Updated 2 years ago
- 安服面经☞渗透测试/代码审计/安全研究☆27Updated 2 years ago
- ☆35Updated 3 years ago
- 该项目是通过go语言实现防止rmi利用被反�置的问题。☆44Updated 3 years ago
- 利用shiro反序列化注入冰蝎内存马☆35Updated 3 years ago
- 可以从公开仓库直接拖取镜像的一个小工具 方便直接解包审计代码☆13Updated 2 years ago
- 若依后台定时任务一键利用☆17Updated 3 years ago
- 批量处理url链接,获取多级路径并打印☆45Updated last year
- woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。☆67Updated 2 years ago
- WebReport V9 Poc & Exp☆29Updated 3 years ago
- Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小☆65Updated 9 months ago
- 重点系统指纹识别的工具☆33Updated 3 years ago
- 用友 nc 系列密码解密☆59Updated 2 years ago
- 蓝凌oa�无回显rce漏洞poc脚本Updated 2 years ago
- 解密DBeaver数据库软件保存的密码☆29Updated last year
- A Large killer focused on intranet scanning☆28Updated 3 years ago
- 一个针对shiro反序列化漏洞(CVE-2016-4437)的快速利用工具/A simple tool targeted at shiro framework attacks with ysoserial.☆23Updated 2 years ago
- Hession-Deserialize-RCE 反序列化命令执行☆22Updated 5 years ago
- 陆续补充一些自己写的cobaltstrike插件☆46Updated 3 years ago
- payloads☆15Updated 4 years ago
- Breaking fastjson with forward shell☆22Updated 2 years ago