7 results found Sort:

vulhub
java-chains vulhub
117
1.5k
unknown
14
vulhub Vulnerability Reproduction Designated Platform
java vulhub payload redteam log4j-rce javasecurity jndi-exploit vulnerability jndi-injection java-vulnerability deserialization-vulnerability
Created 2024-11-02
55 commits to main branch, last one 19 days ago
a1phaboy
FastjsonScan a1phaboy
98
1.0k
mit
15
Fastjson扫描器,可识别版本、依赖库、autoType状态等。A tool to distinguish fastjson ,version and dependency
fastjson scanner-web fastjson-rce deserialization-vulnerability
Created 2022-09-05
20 commits to master branch, last one 2 years ago
SummerSec
JavaLearnVulnerability SummerSec
95
931
unknown
21
Java漏洞学习笔记 Deserialization Vulnerability
java weblogic fastjson-rce vulnerability shiro-security jackson-databind java-refilection weblogc-security commons-collections3 commons-collections4 deserialization-vulnerability
Created 2020-04-22
151 commits to master branch, last one 3 years ago
j0lt-github
python-deserialization-attack-payload-generator j0lt-github
23
112
gpl-3.0
1
Peas create serialized payload for deserialization RCE attack on python driven applications where pickle ,pyYAML, ruamel.yaml or jsonpickle module is used for deserialization of serialized data. I wil...
cmd rce yaml prick pickle pysyck python pyyaml ruamel hacking backdoor msfvenom ruamelyaml serial-data attack-vectors deserialization deserialization-rce-attack python-driven-applications deserialization-vulnerability
Created 2019-01-17
32 commits to master branch, last one 5 years ago
tweedge
springcore-0day-en tweedge
36
108
unknown
4
Everything I needed to understand what was going on with "Spring4Shell" - translated source materials, exploit, links to demo apps, and more.
0day java exploit springcore spring4shell deserialization-vulnerability
Created 2022-03-30
53 commits to main branch, last one 3 years ago
H4cking2theGate
ysogate H4cking2theGate
8
98
unknown
1
Java反序列化/JNDI注入/恶意类生成工具,支持多种高版本bypass,支持回显/内存马等多种扩展利用。
rmi java jrmp ldap bypass ysoserial jndi-exploit payload-generator deserialization-vulnerability
Created 2023-10-21
58 commits to master branch, last one 2 months ago
GhostTroops
AiCSA GhostTroops
4
60
unknown
2
GPT AiCSA(Code security audit),SAST(Static Application Security Testing,静态应用程序安全测试),JAR security analysis, static vulnerability and vulnerability analysis of various programming language codes
ai sast gpt-4 chatgpt gpt-security code-security-audit jar-vulnerability-analysis deserialization-vulnerability
Created 2023-04-01
29 commits to main branch, last one about a year ago