Skip to content

Navigation Menu

Sign in
Appearance settings

Search code, repositories, users, issues, pull requests...

Provide feedback

We read every piece of feedback, and take your input very seriously.

Saved searches

Use saved searches to filter your results more quickly
Appearance settings

kevien/java-sec-code

BranchesTags
Open more actions menu
 
 

Folders and files

NameName
Last commit message
Last commit date

Latest commit

 

History

72 Commits
72 Commits
src/main
src/main
 
 
.gitattributes
.gitattributes
 
 
.gitignore
.gitignore
 
 
README.md
README.md
 
 
java-sec-code.iml
java-sec-code.iml
 
 
pom.xml
pom.xml
 
 

Repository files navigation

项目来源于@JoyChou93的 https://github.com/JoyChou93/java-sec-code,其中有部分修改。

Java Security Code

介绍

该项目也可以叫做Java Vulnerability Code(Java漏洞代码)。

每个漏洞类型代码默认存在安全漏洞(除非本身不存在漏洞),相关修复代码在注释里。具体可查看每个漏洞代码和注释。

漏洞说明

如何运行

Tomcat

  1. 生成war包 mvn clean package
  2. 将target目录的war包,cp到Tomcat的webapps目录
  3. 重启Tomcat应用
http://localhost:8080/java-sec-code-1.0.0/rce/exec?cmd=whoami

返回

Viarus

IDEA

  • mvn clean package
  • 将pom.xml拖入到idea中,Run Application即可

Jar包

有人反馈想直接打Jar包运行。具体操作:

先修改pom.xml里的配置,将war改成jar

    <groupId>sec</groupId>
    <artifactId>java-sec-code</artifactId>
    <version>1.0.0</version>
    <packaging>war</packaging>

再打包运行即可。

mvn clean package -DskipTests 
java -jar 打包后的jar包路径

About

Java常见通用漏洞和修复的代码以及利用payload

github.com/JoyChou93/java-sec-code

Resources

Readme
Activity

Stars

1 star

Watchers

1 watching

Forks

0 forks
Report repository

Releases

No releases published

Packages

No packages published

Languages

  • Java 99.2%
  • HTML 0.8%
Morty Proxy This is a proxified and sanitized view of the page, visit original site.