Giter Site home page Giter Site logo

whoopsunix / javarce Goto Github PK

View Code? Open in Web Editor NEW
294.0 5.0 35.0 516 KB

实战场景较通用的 Java Rce 相关漏洞的利用方式 | Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios

Home Page: https://github.com/Whoopsunix/JavaRce

Java 98.95% C++ 0.09% PLpgSQL 0.04% C 0.08% Python 0.75% CSS 0.01% JavaScript 0.01% FreeMarker 0.08%
command expression jdbc memshell rceecho serialization java inject sec jndi

javarce's Introduction

👋 This is Whoopsunix

🔥 I'm a DevOps ATT&DEF, focusing on security issues related to DevOps, most about Java, and transforming the research into security products such as RASP, IAST, DAST, SAST, SCA, SPM, etc. WIKI link

iconiconiconiconiconicon

🪜 Repositories

Project description State
JavaRce Common Exploitation Techniques for Java RCE Vulnerabilities in Real-World Scenarios 🍀 Active Development
PPPYSO proof-of-concept for generating Java deserialization payload | Proxy MemShell 🍀 Active Development
PPPRASP JavaRce complements project - use RASP to prevent vulnerabilities 🍀 Active Development
PPPVULNS Java CVE Vulnerability Environment 🪴 Intermittent Updates
utf-8-overlong-encoding 抽离出 utf-8-overlong-encoding 的序列化逻辑,实现 2 3 字节加密序列化数组 🌲 Completed
nacosScan nacos api bypass & jwt bypass & get all configs 🌲 Completed

🚩 Status

Profile details card

javarce's People

Contributors

whoopsunix avatar

Stargazers

avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar avatar

Watchers

avatar avatar avatar avatar avatar

Forkers

lemono0 c0olw wilsonleeee testitok apsry laowang1026 sec-fork crackercat qiudaxia134 tghook checkdock tdcoming mssky9527 kekukele201 anfutest java-sec nyx2022 leew66884 senhaxor atlassion cream-sec skrstop poc2022 anqisec devilmaycrying lay0us1 h30gyan itsssm3 hunt3rkun dummykitty wha000tif h1d3r 75acol mskky

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.