CommonsCollections 反序列化分析

X1r0z published on 2022-11-23 included in category Java安全

CommonsCollections 反序列化分析, 鸽了好久了

Java RMI 安全

X1r0z published on 2022-11-20 included in category Java安全

快速过一遍 RMI 安全基础

X1r0z published on 2022-11-19 included in category Writeup

今年 nctf 快要开始了, 做做去年的题

看了 wp 之后发现自己对前端安全还是不太熟, 太菜了呜呜

X1r0z published on 2022-11-11 included in category Writeup

BUUCTF 刷题记录…

X1r0z published on 2022-11-08 included in category Java安全

之前打 ctf 遇到的, 顺带写一下吧

X1r0z published on 2022-11-07 included in category Java安全

利用 ClassLoader 动态加载 Java 字节码

X1r0z published on 2022-11-06 included in category Java安全

Tomcat Listener 型内存马