Struts2漏洞实例源码
☆209Dec 25, 2020Updated 5 years ago
Alternatives and similar repositories for Struts2-Vuln-Demo
Users that are interested in Struts2-Vuln-Demo are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Java RCE 回显测试代码☆1,017Oct 15, 2020Updated 5 years ago
- 通过 Redis 主从写出无损文件☆717May 25, 2020Updated 5 years ago
- Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势☆1,405Jan 18, 2022Updated 4 years ago
- Weblogic环境搭建工具☆795Apr 23, 2020Updated 5 years ago
- WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shell☆534Aug 25, 2020Updated 5 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- Shiro漏洞实例源码☆26Jul 1, 2021Updated 4 years ago
- 用于帮助企业内部快速扫描log4j2的jndi漏洞的burp插件☆212Apr 18, 2023Updated 3 years ago
- 分享几个直接可用的内存马,记录一下学习过程中看过的文章☆982Mar 23, 2022Updated 4 years ago
- Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…☆2,696Mar 14, 2024Updated 2 years ago
- 整理收集Struts2漏洞环境☆271Jan 9, 2018Updated 8 years ago
- spring boot Fat Jar 任意写文件漏洞到稳定 RCE 利用技巧☆753Apr 14, 2021Updated 5 years ago
- 适用于weblogic和Tomcat的无文件的内存马(memshell)☆271Mar 4, 2022Updated 4 years ago
- 高危漏洞精准检测与深度利用框架☆1,461Jan 8, 2023Updated 3 years ago
- Shiro反序列化利用工具,支持新版本(AES-GCM)Shiro的key爆破,配合ysoserial,生成回显Payload☆896May 28, 2021Updated 4 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- weblogic t3 deserialization rce☆268Jul 13, 2017Updated 8 years ago
- java内存对象搜索辅助工具☆823Sep 23, 2022Updated 3 years ago
- (周瑜)Java - SpringBoot 持久化 WebShell(不仅仅是SpringBoot,适合任何符合JavaEE规范的服务)☆615Dec 29, 2021Updated 4 years ago
- Java漏洞学习笔记 Deserialization Vulnerability☆944Jun 14, 2023Updated 2 years ago
- ☆145Jan 21, 2021Updated 5 years ago
- Fastjson姿势技巧集合☆1,838Oct 20, 2023Updated 2 years ago
- JNDI服务利用工具 RMI/LDAP,支持部分场景回显、内存shell,高版本JDK场景下利用等,fastjson rce命令执行,log4j rce命令执行 漏洞检测辅助工具☆2,017May 21, 2024Updated last year
- Share Things Related to Java - Java安全漫谈笔记相关内容☆2,004Apr 9, 2025Updated last year
- Flask 内存马☆314Mar 26, 2021Updated 5 years ago
- Managed Kubernetes at scale on DigitalOcean • AdDigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
- 关于Struts2框架的历史漏洞个人分析文章☆55Jun 17, 2020Updated 5 years ago
- xray社区高级版证书生成,仅供学习研究,正常使用请支持正版。removed due to Chaitin requirements & support to version 1.4.4 & learning purpose☆444Nov 11, 2020Updated 5 years ago
- ServerScan一款使用Golang开发的高并发网络扫描、服务探测工具。☆1,638Jun 16, 2024Updated last year
- Getting started with java code auditing 代码审计入门的小项目☆930Feb 22, 2023Updated 3 years ago
- ☆232Jan 3, 2022Updated 4 years ago
- 各种数据库的利用姿势☆1,034Jan 3, 2025Updated last year
- 从wooyun中提取的payload,以及burp插件☆839Jun 17, 2022Updated 3 years ago
- 记录各语言、框架中危险的sink,个人代码审计、漏洞研究使用。☆119Dec 30, 2021Updated 4 years ago
- 一款基于BurpSuite的被动式shiro检测插件☆1,798Dec 14, 2022Updated 3 years ago
- Serverless GPU API endpoints on Runpod - Get Bonus Credits • AdSkip the infrastructure headaches. Auto-scaling, pay-as-you-go, no-ops approach lets you focus on innovating your application.
- 给woodpecker框架量身定制的ysoserial☆615Oct 26, 2022Updated 3 years ago
- 对目标域名进行快速的存活扫描、简单的指纹识别、目录扫描☆914Dec 8, 2022Updated 3 years ago
- MySQL Fake Server use to help MySQL Client File Reading and JDBC Client Java Deserialize☆1,367Nov 18, 2021Updated 4 years ago
- rmi、jndi、ldap、jrmp、jmx、jms一些demo测试☆311Jun 17, 2022Updated 3 years ago
- SpringBoot 相关漏洞学习资料,利用方法和技巧合集,黑盒安全评估 check list☆6,129Mar 10, 2021Updated 5 years ago
- fastjson 1.2.68 版本 autotype bypass☆142Jun 17, 2022Updated 3 years ago
- 一些Java编写的小工具。☆318Aug 5, 2021Updated 4 years ago