WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar

Last update: Dec 06, 2022

Overview

CVE-2020-14756

WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar

README

project base on https://github.com/Y4er/CVE-2020-2555 and weblogic_cmd

test on 12.2.1.4.0 and jdk 1.8.0_221

Reference

Owner

Y4er

Happy :)

GitHub Repository

VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit

Vortex VPN Overall Reconnaissance, Testing, Enumeration and Exploitation Toolkit Overview A very simple Python framework, inspired by SprayingToolkit,

315 Dec 28, 2022

Attack SQL Server through gopher protocol

17 Nov 30, 2022

Python library to prevent XSS(cross site scripting attach) by removing harmful content from data.

A tool for removing malicious content from input data before saving data into database. It takes input containing HTML with XSS scripts and returns va

2 Jul 05, 2022

IDA plugin for quickly copying disassembly as encoded hex bytes

HexCopy IDA plugin for quickly copying disassembly as encoded hex bytes. This whole plugin just saves you two extra clicks... but if you are frequentl

46 Oct 30, 2022

RedTeam-Security - In this repo you will get the information of Red Team Security related links

OSINT Passive Discovery Amass - https://github.com/OWASP/Amass (Attack Surface M

5 May 18, 2022

Facebook Fast Cracking Tool With Python

Pro-Crack Facebook Fast Cracking Tool This is a multi-password‌ cracking tool that can help you hack facebook accounts very quickly Installation On Te

5 Feb 19, 2022

PyFUD - Fully Undetectable payload generator for metasploit

PyFUD fully Undetectable payload generator for metasploit Usage: pyfud.py --host

3 Mar 25, 2022

A Safer PoC for CVE-2022-22965 (Spring4Shell)

Safer_PoC_CVE-2022-22965 A Safer PoC for CVE-2022-22965 (Spring4Shell) Functionality Creates a file called CVE_2022-22965_exploited.txt in the tomcat

46 Nov 12, 2022

A Fast Broken Link Hijacker Tool written in Python

Broken Link Hijacker BrokenLinkHijacker(BLH) is a Fast Broken Link Hijacker Tool written in Python.

70 Nov 30, 2022

This repo created for bypassing Widevine L3 DRM and obtaining keys.

First run: Copy headers (with cookies) of POST license request from browser to headers.py like dictionary. pip install -r requirements.txt # if doesn'

263 Jan 07, 2023

Generate obfuscated meterpreter shells

Generator Evade AV with obfuscated payloads Installation must install dotnet prior to running the script with net45 Running ./generator.py -ip Your-I

219 Nov 28, 2022

Sentinel-1 SAR time series analysis for OSINT use

SARveillance Sentinel-1 SAR time series analysis for OSINT use. Description Generates a time lapse GIF of the Sentinel-1 satellite images for the loca

21 Dec 09, 2022

Python lib to automate basic QFT calculations like Wick-contractions.

QFTools Python lib to automate basic QFT calculations like Wick-contractions. Features Wick contractions for real scalar fields Wick contractions for

2 Aug 21, 2022

The self-hostable proxy tunnel

TTUN Server The self-hostable proxy tunnel. Running Running: docker run -e TUNNEL_DOMAIN=Your tunnel domain -e SECURE=True if using SSL ghcr.io/to

2 Jan 11, 2022

Yet another web fuzzer

yafuzz Yet another web fuzzer Usage This script can run in two modes of operation. Supplying a wordlist -W argument will initiate a multithreaded fuzz

5 Feb 02, 2022

An forensics tool to help aid in the investigation of spoofed emails based off the email headers.

A forensic tool to make analysis of email headers easy to aid in the quick discovery of the attacker. Table of Contents About mailMeta Installation Us

59 Nov 26, 2022

StarUML cracker - StarUML cracker With Python

StarUML_cracker Usage On Linux Clone the repo. git clone https://github.com/mana

9 Jun 20, 2022

Nmap scanner with python

Nmap_scanner Usage: sudo python3 nmap_ping.py -i Network List.txt -o Output Folder Location Program can Run Ping Scan Run Port Scan Run Nmap Vuln

3 Apr 13, 2022

A Python 3 script that uploads a tasks.pickle file that enables RCE in MotionEye

MotionEye/MotionEyeOS Authenticated RCE A Python 3 script that uploads a tasks.pickle file that enables RCE in MotionEye. You need administrator crede

1 Apr 18, 2022

Just another script for automatize boolean-based blind SQL injections.

SQL Blind Injection Tool A script for automatize boolean-based blind SQL injections. Works with SQLite at least, supports using cookies. It uses bitwi

51 Dec 15, 2022

WebLogic T3/IIOP RCE ExternalizableHelper.class of coherence.jar

Related tags

Overview

CVE-2020-14756

README

Reference

Owner

Y4er

VPN Overall Reconnaissance, Testing, Enumeration and eXploitation Toolkit

Attack SQL Server through gopher protocol

Python library to prevent XSS(cross site scripting attach) by removing harmful content from data.

IDA plugin for quickly copying disassembly as encoded hex bytes

RedTeam-Security - In this repo you will get the information of Red Team Security related links

Facebook Fast Cracking Tool With Python

PyFUD - Fully Undetectable payload generator for metasploit

A Safer PoC for CVE-2022-22965 (Spring4Shell)

A Fast Broken Link Hijacker Tool written in Python

This repo created for bypassing Widevine L3 DRM and obtaining keys.

Generate obfuscated meterpreter shells

Sentinel-1 SAR time series analysis for OSINT use

Python lib to automate basic QFT calculations like Wick-contractions.

The self-hostable proxy tunnel

Yet another web fuzzer

An forensics tool to help aid in the investigation of spoofed emails based off the email headers.

StarUML cracker - StarUML cracker With Python

Nmap scanner with python

A Python 3 script that uploads a tasks.pickle file that enables RCE in MotionEye

Just another script for automatize boolean-based blind SQL injections.