There are no reviews yet. Be the first to send feedback to the community and the maintainers!
ysoserial
ysoserial修改版,着重修改ysoserial.payloads.util.Gadgets.createTemplatesImpl使其可以通过引入自定义class的形式来执行命令、内存马、反序列化回显。WebLogic-Shiro-shell
WebLogic利用CVE-2020-2883打Shiro rememberMe反序列化漏洞,一键注册蚁剑filter内存shelldotnet-deserialization
dotnet 反序列化学习笔记CVE-2020-2551
Weblogic IIOP CVE-2020-2551fastjson-bypass-autotype-1.2.68
fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.CVE-2020-2883
Weblogic coherence.jar RCECVE-2020-2555
Weblogic com.tangosol.util.extractor.ReflectionExtractor RCEyaml-payload
Spring Cloud SnakeYAML 反序列化一键注入cmdshell和reGeorgopenam-CVE-2021-35464
openam-CVE-2021-35464 tomcat 执行命令回显CVE-2020-14645
Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()javaagent-tomcat-memshell
使用java agent反序列化注入内存shellCVE-2021-35215
SolarWinds Orion Platform ActionPluginBaseView 反序列化RCEY4er
READMELove Open Source and this site? Check out how you can help us