Pinned Repositories
AndroidSystemServiceFuuzzer
BufferOveflowDemo
C does not check bound of an array,if write data over the array's bound can cause buffer overflow,which can change the control flow of a program and cause arbitrary code execution.
CVE-2018-14667-poc
CVE-2018-14667-poc Richfaces漏洞环境及PoC
fastjson60-DoS
fastjson 在1.2.60以下时,处理/xHH出现问题,导致程序OOM,最终导致DoS
fastjsonvul
fastjson漏洞环境及poc
Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
javamelody-vuldemo
javamelody vul environment.
jdbctemplate-demo
jdbc sql注入demo
mybatis-generator-nodollar
mybatis generator 生成配置文件,去掉order by sql拼接
ShiroVulDemo
Shiro漏洞靶场,forked from https://github.com/v5java/demo-springmvc-shiro
Venscor's Repositories
Venscor/AndroidSystemServiceFuuzzer
Venscor/Java-Deserialization-Cheat-Sheet
The cheat sheet about Java Deserialization vulnerabilities
Venscor/BufferOveflowDemo
C does not check bound of an array,if write data over the array's bound can cause buffer overflow,which can change the control flow of a program and cause arbitrary code execution.
Venscor/AndroidGestureVulDemo
Venscor/Awesome-Hacking
A collection of various awesome lists for hackers, pentesters and security researchers
Venscor/BinderHackingSms
Venscor/CheatSheetSeries
The OWASP Cheat Sheet Series was created to provide a concise collection of high value information on specific application security topics.
Venscor/CVE-2018-1270
CVE-2018-1270 表达式RCE环境
Venscor/drozer
The Leading Security Assessment Framework for Android.
Venscor/IntentFuzzer
A Tool to fuzz Intent on Android
Venscor/kunpeng
kunpeng是一个Golang编写的开源POC检测框架,以动态链接库的形式提供各种语言调用,通过此项目可快速对目标进行安全漏洞检测,比攻击者快一步发现风险漏洞。
Venscor/Lanmitm
Android中间人攻击测试工具
Venscor/manifest
Venscor/marshalsec
Venscor/S2-057
S2-057 vul environment & poc
Venscor/Scanners-Box
The toolbox of open source scanners - 安全行业从业者自研开源扫描器合辑
Venscor/serianalyzer
A static byte code analyzer for Java deserialization gadget research
Venscor/struts-2.5.16-all
struts-2.5.16-all
Venscor/sys_call
Venscor/ysoserial
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Venscor/ysoserial.net
Deserialization payload generator for a variety of .NET formatters