yuligesec / watchvuln

Related projects ⓘ

Alternatives and complementary repositories for watchvuln

• KpLi0rn / DeserializeAll
  一个简单的批量反编译jar包的小脚本
  ☆30Updated 2 years ago
• lz2y / DubboPOC
  Apache Dubbo漏洞测试Demo及其POC
  ☆61Updated last year
• Firebasky / ScanShiro
  一个批量扫描shiro漏洞的工具,支持AES/CMG
  ☆78Updated last year
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆67Updated last year
• Le1a / CVE-2023-33246
  Apache RocketMQ 远程代码执行漏洞(CVE-2023-33246) Exploit
  ☆76Updated last year
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆50Updated last year
• l3yx / Java-RASP-Research-Env
  之前方便自己研究RASP原理和绕过时顺手写的，用于快速启动和重置RASP环境
  ☆51Updated last month
• wh1t3p1g / tabby-intellij-plugin
  A IntelliJ Plugin for Tabby to Find Vulnerabilities Easily
  ☆30Updated last week
• kyo-w / Spel-research
  Spel-research
  ☆24Updated 2 years ago
• unam4 / fineldapc
  某软最新公开gadgegt,新加入不出网利用。
  ☆49Updated 2 months ago
• Ar3h / utf8-overlong-agent
  使用 agent 实现反序列化 utf8 overlong
  ☆68Updated 6 months ago
• Y4Sec-Team / no-templates
  如果反序列化过程中使用resolveClass拉黑了TemplatesImpl如何绕过
  ☆47Updated last year
• cckuailong / YarnRpcRCE
  ☆81Updated 3 years ago
• xiaopan233 / GenerateNoHard
  本工具的定位是快速生成Java安全相关的Payload，如内存马、反序列化链、JNDI url、Fastjson等，动态生成相关Payload，并附带相应的文档。
  ☆90Updated 2 years ago
• Roboterh / JNDI-injector
  ☆36Updated last year
• S9MF / ShiroScan2
  基于BurpShiroPassiveScan修改增加了Xray回显链生成
  ☆53Updated 2 years ago
• r00tuser111 / SerializationDumper-Shiro
  基于SerializationDumper的Shiro Cookie序列化数据解密小工具
  ☆52Updated 4 years ago
• ax1sX / MemShell
  MemShell List
  ☆78Updated last year
• turn1tup / JvmRaspBypass
  ☆4Updated 2 years ago
• keven1z / simpleIAST
  simpleIAST- 基于污点追踪的灰盒漏洞扫描工具。
  ☆13Updated last week
• hosch3n / FastjsonVulns
  [fastjson 1.2.80] CVE-2022-25845 aspectj fileread & groovy remote classload
  ☆90Updated 2 years ago
• yyhuni / shiroMemshell
  利用shiro反序列化注入冰蝎内存马
  ☆33Updated 2 years ago
• wh1t3p1g / tabby-vul-finder
  A vul-finder for loading CPG and automated finding vul-call-chains
  ☆35Updated last month
• kuang-zy / 2023-Weaver-pocs
  2023泛微0A漏洞poc检测工具
  ☆38Updated last year
• godzeo / go-gin-vul
  GO语言漏洞靶场 GIN框架 支持docker一键启动
  ☆75Updated last year
• 0xrumble / BytecodeScreen
  ☆51Updated 2 years ago
• woodpecker-appstore / yonyou-nc-decrypter
  用友 nc 系列密码解密
  ☆58Updated last year
• lz520520 / encrypt-js
  ☆36Updated 2 years ago
• A7cc / Vulnerabilities_Server
  一个Golang的web实战化靶场 | A Golang-based web combat range
  ☆37Updated 2 months ago