threedr3am / dubbo-expLinks
dubbo快速利用exp,基本上老版本覆盖100%。
☆106Updated last year
Alternatives and similar repositories for dubbo-exp
Users that are interested in dubbo-exp are comparing it to the libraries listed below
Sorting:
- fastjson 80 远程代码执行漏洞复现☆194Updated 2 years ago
- Apache Dubbo漏洞测试Demo及其POC☆61Updated 2 years ago
- Java命令行文件监控小工具(代码审计)☆102Updated 3 years ago
- Java漏洞分析汇合☆142Updated 3 years ago
- Java表达式语句生成器☆190Updated last year
- 在原有yso基础上实现依赖分离,内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆68Updated 3 years ago
- 一款让你不只在dubbo-sample、vulhub或者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆168Updated last year
- A malicious LDAP server for JNDI injection attacks☆52Updated 2 years ago
- Shiro-721 Padding Oracle Attack☆72Updated 4 years ago
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆80Updated 2 years ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆77Updated 2 years ago
- xxl-job未授权命令执行☆109Updated 3 years ago
- 基于dbcp的fastjson rce 回显☆192Updated 3 years ago
- 这是一个用于IP和域名碰撞匹配访问的小工具,旨意用来匹配出渗透过程中需要绑定hosts才能访问的弱主机或内部系统。https://github.com/fofapro/Hosts_scan implement in Go☆113Updated 2 years ago
- Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit☆108Updated 2 years ago
- springboot跨线程注入内存马☆119Updated 3 years ago
- A Go library for generating Java deserialization payloads.☆155Updated 8 months ago
- 支持自动化的切换请求方式、自动化的请求重试、以完整的扫描Springboot路径☆3Updated 3 years ago
- ☆81Updated 3 years ago
- 自己积累的一些Java反序列化利用链☆89Updated 2 years ago
- ☆69Updated 4 years ago
- Spring Actuator端点的BurpSuite被动扫描插件。☆197Updated 2 years ago
- ☆117Updated last year
- 一款探测fastjson漏洞的BurpSuite插件☆61Updated 3 years ago
- 一个Spring4Shell 被动式检测的Burp插件☆93Updated 3 years ago
- Spring Cloud SnakeYAML 反序列化一键注入cmdshell和reGeorg☆135Updated 4 years ago
- 自己的JNDI 利用工具,添加一些人性化功能☆130Updated 2 years ago
- Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul☆91Updated last year
- 检测查杀java内存马☆79Updated last year
- 基于ysoserial扩展命令执行结果回显,生成冰蝎内存马☆89Updated last year