Movatterモバイル変換

Skip to content

R17a-17/JavaVulnSummaryPublic

NotificationsYou must be signed in to change notification settings
Fork26
Star142

Java漏洞分析汇合

142 stars 26 forks Branches Tags Activity

You must be signed in to change notification settings

Folders and files

Name		Name	Last commit message	Last commit date
Latest commit History 6 Commits
.idea		.idea
common		common
confluence		confluence
fastjson		fastjson
jboss		jboss
jenkins		jenkins
jndi		jndi
log4j		log4j
owasp		owasp
struts2		struts2
weblogic		weblogic
xstream		xstream
ysoserial		ysoserial
JavaVulnSummary.iml		JavaVulnSummary.iml
README.md		README.md
pom.xml		pom.xml

Repository files navigation

JavaVulnSummary

用来练习Java代码审计的集合。

分析文章	代码地址
由JDK7u21反序列化漏洞引起的对TemplatesImpl的深入学习	https://github.com/R17a-17/JavaVulnSummary/tree/main/ysoserial/src/main/java/com/r17a/ysoserial/jdk7u21
关于JDK7u21 Gadgets两个问题的探讨	https://github.com/R17a-17/JavaVulnSummary/tree/main/ysoserial/src/main/java/com/r17a/ysoserial/jdk7u21
WebLogic CVE-2021-2135分析及POC构造遇到的问题	https://github.com/R17a-17/JavaVulnSummary/blob/main/weblogic/src/main/java/com/r17a/weblogic/cve/CVE_2021_2135.java
反序列化入口PriorityQueue分析及相关Gadget总结	https://github.com/R17a-17/JavaVulnSummary/blob/main/weblogic/src/main/java/com/r17a/weblogic/ https://github.com/R17a-17/JavaVulnSummary/tree/main/ysoserial/src/main/java/com/r17a/ysoserial/
Java反序列化和集合之间的渊源	https://github.com/R17a-17/JavaVulnSummary/tree/main/ysoserial/src/main/java/com/r17a/ysoserial/
Jenkins Nested View插件XXE漏洞（CVE-2021-21680）分析
Java XXE漏洞实验及总结	https://github.com/R17a-17/JavaVulnSummary/tree/main/owasp/src/main/java/com/r17a/commonvuln/securitymissconfig/xxe
Jenkins Code Coverage API 插件漏洞分	https://github.com/R17a-17/JavaVulnSummary/blob/main/jenkins/src/main/java/com/r17a/jenkins/CVE_2021_21677.java
Java命令执行总结	https://github.com/R17a-17/JavaVulnSummary/tree/main/owasp/src/main/java/com/r17a/commonvuln/injection/command
Java文件操作类漏洞总结	https://github.com/R17a-17/JavaVulnSummary/tree/main/owasp/src/main/java/com/r17a/commonvuln/file
Java SSRF漏洞总结	https://github.com/R17a-17/JavaVulnSummary/blob/main/owasp/src/main/java/com/r17a/commonvuln/ssrf/Ssrf.java
[URL跳转和重定向](https://r17a-17.github.io/2021/09/21/Java URL跳转总结/)
Java SecurityManager学习	https://github.com/R17a-17/JavaVulnSummary/tree/main/owasp/src/main/java/com/r17a/commonvuln/securitymissconfig/securitymanager
一文读懂OGNL漏洞 Java表达式注入	https://github.com/R17a-17/JavaVulnSummary/tree/main/owasp/src/main/java/com/r17a/commonvuln/injection/expression

About

Java漏洞分析汇合

Resources

Stars

Watchers

Forks

Report repository

Releases

No releases published

Packages

No packages published

Languages

[8]ページ先頭

©2009-2025 Movatter.jp