yaklang / syntaxflow
Lessons for syntaxflow zero to hero
☆44Updated 2 months ago
Related projects ⓘ
Alternatives and complementary repositories for syntaxflow
- A Java Route Collection Tool☆86Updated 3 months ago
- Some ReadObject Sink With JDBC☆192Updated 6 months ago
- SpringBootAdmin-thymeleaf-SSTI which can cause RCE☆77Updated last year
- 是一些比赛中的好题,加上自己出的一些。。。☆44Updated 2 years ago
- Abandoned - fastjson 1.2.24-1.2.80 poc & vulns env & how to check vul☆86Updated last year
- java-web 自动化鉴权绕过☆247Updated 2 months ago
- 《漏洞全解》该项目不提供任何的POC与EXP,仅仅分享各种机缘巧合下所产生的漏洞的分析。☆24Updated last year
- 一款让你不只在dubbo-sample、vulhub或��者其他测试环境里检测和利用成功的Apache Dubbo 漏洞检测工具。☆161Updated last year
- fastjson 80 远程代码执行漏洞复现☆184Updated 2 years ago
- Java代码审计案例☆22Updated 3 years ago
- 自己积累的一些Java反序列化利用链☆87Updated last year
- ☆80Updated 7 months ago
- CodeQL分析闭源Jar包脚本,基于Apache Ant构建CodeQL数据库☆29Updated 2 years ago
- evil-mysql-server is a malicious database written to target jdbc deserialization vulnerabilities and requires ysoserial.☆84Updated 2 years ago
- Java命令行文件监控小工具(代码审计)☆97Updated 2 years ago
- Java表达式语句生成器☆179Updated last year
- 目标是成为当下最完善的API挖掘工具,实现自动提取响应敏感信息、URI信息,并且对URI进行自动|手动递归检查☆155Updated 3 weeks ago
- 当死去的记忆突然开始攻击我,我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。☆78Updated 2 years ago
- 所有碰到过的默认口令☆103Updated 8 months ago
- codeqlpy☆26Updated last year
- 本工具的定位是快速生成Java安全相关的Payload,如内存马、反序列化链、JNDI url、Fastjson等,动态生成相关Payload,并附带相应的文档。☆90Updated 2 years ago
- proof-of-concept for generating Java deserialization payload | Proxy MemShell☆176Updated 5 months ago
- Extract React router info from React based website within browser☆25Updated 7 months ago
- 代码审计总结☆80Updated 3 years ago
- check hikvision/ys7 api☆64Updated last year
- 内网集权系统渗透测试笔记☆9Updated last month
- Web Cache Poisoning Vulnerability Scanner☆33Updated 2 months ago
- 用来将Tai-e改造为开箱即用的静态代码安全分析框架的一些demo☆33Updated 7 months ago