sunird / shiro_exp
shiro_rememberme 反序列化漏洞 利用EXP
☆30Updated 5 years ago
Alternatives and similar repositories for shiro_exp:
Users that are interested in shiro_exp are comparing it to the libraries listed below
- 禅道8.2 - 9.2.1前台Getshell☆79Updated 5 years ago
- Web ExternalC2 Demo☆51Updated 4 years ago
- Apache Solr远程代码执行漏洞(CVE-2019-0193) Exploit☆64Updated 4 years ago
- 可以直接反弹shell☆47Updated last year
- 资产扫描工具☆46Updated 4 years ago
- sqlmap分块传输代理☆51Updated 5 years ago
- 过各waf注入上传等☆26Updated 6 years ago
- 通过burp代理流量寻找shiro站点☆60Updated 4 years ago
- Shiro RememberMe 1.2.4 反序列化 漏洞☆53Updated 5 years ago
- Shiro_721 exp 纯手工实现Padding Oracle整个过程☆68Updated 5 years ago
- 便捷地使用PostgreSQL自定义函数来执行系统命令,适用于数据库管理员知道postgres密码却不知道ssh或RDP密码的时候在服务器执行系统命令。☆54Updated 4 years ago
- ☆41Updated 4 years ago
- CommonsBeanutils1,CommonsCollectionsK1☆58Updated 4 years ago
- autoType enable☆36Updated 5 years ago
- CVE-2020-10199、CVE-2020-10204、CVE-2020-11444☆35Updated 4 years ago
- 此脚本用于测试 Rdies 未授权访问,在没权限写ssh私钥和定时任务又不知道web绝对路径的情况下,进行WEB目录探测☆73Updated 5 years ago
- 子域名后续的信息收集工具☆29Updated 4 years ago
- xray社区高级版证书生成,支持到 1.2.0 版本☆35Updated 4 years ago
- java web 压缩文件 安全 漏洞☆20Updated 4 years ago
- webuploader-v-0.1.15未授权-任意文件上传☆51Updated 5 years ago
- Java version of Tomcat-AJP-EXP, for practice☆42Updated 4 years ago
- CNVD-C-2019-48814 Weblogic wls9_async_response 反序列化利用工具☆38Updated 5 years ago
- "打一枪换一个地方" 一个HTTP代理☆41Updated 4 years ago
- 注入检测工具☆45Updated 5 years ago
- 于几年前二次开发自 http://www.zcgonvh.com/post/CSharp_smb_version_Detection.html☆23Updated 5 years ago
- python3 写的一些权限维持脚本☆34Updated 5 years ago
- CVE-2019-12384 漏洞测试环境☆20Updated 2 years ago
- 集成快速端口扫描服务识别和暴力破解☆44Updated 4 years ago
- 利用递归,通过匹配网页源码里的子域内容收集所有的子域信息,可收集四级五级等多级子域名。☆33Updated 6 years ago
- 简单的分离免杀demo☆42Updated 3 years ago