javaEeAccessControlCheck
Check broken access control exists in the Java web application.
检查 Java Web 应用程序中是否存在访问控制绕过问题。
使用
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index?id=1"
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index" -data id=1
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index" -data-json '{"id":1}'
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index?id=1" -all
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index" -data-json '{"id":1}' -all
[GET]自动判断/Automatic judgment
[GET]所有Payload长度/All Response Length
[POST]自动判断/Automatic judgment
[POST]所有Payload长度/All Response Length
[POST-JSON]所有Payload长度/All Response Length
测试某开源系统
可根据不同payload的返回包长度来判断哪些payload可用 
测试某开源系统
1 Feb 15, 2022
2k Dec 30, 2022
14 Mar 25, 2022
276 Dec 30, 2022
64 Dec 23, 2022
46 Dec 09, 2022
391 Dec 28, 2022
558 Dec 30, 2022
1 Jan 21, 2022
1 Nov 25, 2021
7 Aug 24, 2022
2.5k Jan 08, 2023
12 Nov 21, 2022
6 Jan 07, 2022
1 Nov 18, 2021
1 Oct 22, 2021
2 Dec 14, 2021
4 Nov 14, 2022
243 Jan 03, 2023
3 May 21, 2022