A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.
☆325Jun 2, 2024Updated last year
Alternatives and similar repositories for php_filter_chains_oracle_exploit
Users that are interested in php_filter_chains_oracle_exploit are comparing it to the libraries listed below
Sorting:
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆237Oct 8, 2024Updated last year
- Exploits for CNEXT (CVE-2024-2961), a buffer overflow in the glibc's iconv()☆504Sep 30, 2024Updated last year
- ☆1,005Jan 23, 2023Updated 3 years ago
- lightyear is a tool to dump files in tedious (blind) conditions using PHP filters☆112Jun 23, 2025Updated 8 months ago
- ☆349Jan 24, 2023Updated 3 years ago
- 专为CTF设计的Jinja2 SSTI全自动绕WAF脚本 | A Jinja2 SSTI cracker for bypassing WAF, designed for CTF☆1,244Updated this week
- ☆95Sep 2, 2024Updated last year
- exec BashCommand with only ! # $ ' ( ) < \ { } just 10 charset used in Bypass or CTF☆265Aug 14, 2024Updated last year
- some fun php exploits☆82Nov 12, 2024Updated last year
- A Online PHP FilterChain Generator.☆17Aug 3, 2024Updated last year
- Automatically converts Python source code to Pickle opcode☆164Jan 2, 2025Updated last year
- Pickle decompiler plugin for Radare2☆18Aug 6, 2023Updated 2 years ago
- CTF-Java-Gadget专注于收集CTF中Java赛题的反序列化片段☆282Dec 13, 2024Updated last year
- PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.☆3,768Sep 29, 2025Updated 5 months ago
- 一款支持自定义的 Java 内存马生成工具|A customizable Java in-memory webshell generation tool.☆2,165Aug 21, 2025Updated 7 months ago
- ZKar is a Java serialization protocol analysis tool implement in Go.☆649Feb 15, 2025Updated last year
- A helpful Java Deserialization exploit framework.☆1,242Feb 17, 2025Updated last year
- This tool generates gopher link for exploiting SSRF and gaining RCE in various servers☆3,324Apr 18, 2023Updated 2 years ago
- ctf awd比赛快速hook java题,提供一键流量转发,无痛修复☆56Mar 17, 2025Updated last year
- 自动化的 Python 沙�箱逃逸 payload bypass 框架 / Automated Python Sandbox Escape Payload Bypass Framework☆99Dec 24, 2024Updated last year
- Some ReadObject Sink With JDBC☆243May 8, 2024Updated last year
- Java Vulnerability Exploitation Platform☆1,998Jan 6, 2026Updated 2 months ago
- MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize☆1,362Nov 18, 2021Updated 4 years ago
- Jar Analyzer - 一个 JAR 包 GUI 分析工具,方法调用关系搜索,方法调用链 DFS 算法分析,模拟 JVM 的污点分析验证 DFS 结果,字符串搜索,Java Web 组件入口分析,CFG 程序分析,JVM 栈帧分析,自定义表达式搜索,紧跟 AI 技术发…☆1,948Updated this week
- Hacking GraalVM Espresso - Abusing Continuation API to Make ROP-like Attack☆36Aug 27, 2025Updated 6 months ago
- A rouge mysql server supports reading files from most mysql libraries of multiple programming languages.☆757Dec 2, 2022Updated 3 years ago
- Flask Session Cookie Decoder/Encoder☆768Feb 8, 2025Updated last year
- A powerful JNDI injection exploitation framework that supports RMI, LDAP and LDAPS protocols, including various bypass methods for high-v…☆572Feb 4, 2026Updated last month
- 一款专注于 Java 主流 Web 中间件的内存马��快速生成工具,致力于简化安全研究人员和红队成员的工作流程,提升攻防效率☆1,355Mar 4, 2026Updated 2 weeks ago
- A tool designed to exploit bad implementations of decryption mechanisms in Laravel applications.☆137Dec 23, 2025Updated 2 months ago
- 通过jar包快速生成patch模版☆52Jul 29, 2023Updated 2 years ago
- Finding Java gadget chains with CodeQL☆185Jan 14, 2025Updated last year
- cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具,可根据不同的Jdk生成出其所对应的xslt文件☆93Jan 17, 2023Updated 3 years ago
- ☆2,205Nov 24, 2023Updated 2 years ago
- AoiAWD-专为比赛设计,便携性好,低权限运行的EDR系统。☆1,082Aug 5, 2024Updated last year
- A CAT called tabby ( Code Analysis Tool )☆1,641Jan 17, 2026Updated 2 months ago
- 构造字节在ASCII范围内的jar☆139Feb 14, 2022Updated 4 years ago
- PWNable pyjail☆13Jan 13, 2025Updated last year
- dotnet 反序列化学习笔记☆513Oct 19, 2023Updated 2 years ago