tangxiaofeng7 / JavaSecInterview
打造最强的Java安全研究与安全开发面试题库,包含问题和详细的答案,帮助师傅们找到满意的工作
☆14Updated 2 years ago
Alternatives and similar repositories for JavaSecInterview:
Users that are interested in JavaSecInterview are comparing it to the libraries listed below
- 自己积累的一些Java反序列化利用链☆89Updated last year
- Java命令行文件监控小工具(代码审计)☆100Updated 3 years ago
- 内网集权系统渗透测试笔记☆10Updated 3 months ago
- 自己的JNDI 利用工具,添加一些人性化功能☆131Updated 2 years ago
- check hikvision/ys7 api☆65Updated last year
- 本工具的定位是快速生成Java安全相关的Payload,如内存马、反序列化链、JNDI url、Fastjson等,动态生成相关Payload,并附带相应的文档。☆90Updated 2 years ago
- A Java Route Collection Tool☆89Updated 5 months ago
- Nacos Derby命令执行漏洞利用脚本☆90Updated 5 months ago
- 泛微 eoffice10 前台 getshell☆59Updated 2 years ago
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆167Updated last year
- 哥斯拉nacos后渗透插件 maketoken adduser☆144Updated last year
- Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul☆87Updated last year
- 一个Spring4Shell 被动式检测的Burp插件☆93Updated 2 years ago
- 用友NC反序列化漏洞payload生成☆71Updated 2 years ago
- java实现反序列化建立socket连接☆54Updated 3 weeks ago
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆86Updated last year
- 公众号的上使用到的工具☆54Updated last year
- Struts2漏洞扫描 Burp插件☆127Updated last year
- 一款办公应用云凭证利用工具☆90Updated 7 months ago
- 一键获取nacos中的配置文件信息和绘制密码本☆115Updated 6 months ago
- jeecg-boot密码离线爆破☆59Updated last month
- evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.☆87Updated 2 years ago
- CVE-2023-22527 内存马注入工具☆74Updated 10 months ago
- springboot跨线程注入内存马☆115Updated 2 years ago
- JavaSec☆28Updated 10 months ago
- ☆19Updated 10 months ago
- 一款探测fastjson漏洞的BurpSuite插件☆60Updated 2 years ago