Skip to content

Add scala and clojure payloads from a couple of years ago#137

Merged
frohoff merged 4 commits into
frohoff:newgadgetsfrom
JackOfMostTrades:master
Apr 27, 2022
Merged

Add scala and clojure payloads from a couple of years ago#137
frohoff merged 4 commits into
frohoff:newgadgetsfrom
JackOfMostTrades:master

Conversation

@JackOfMostTrades

Copy link
Copy Markdown
Contributor

Was chatting with someone about some of this work and realized I never passed these payloads from my talks back upstream.

@frohoff

frohoff commented Dec 23, 2020

Copy link
Copy Markdown
Owner

Sorry for taking so long to respond. This seems to cause some weird non-termination issues in the tests.

https://travis-ci.com/github/frohoff/ysoserial/jobs/464435081

@JackOfMostTrades can you take a look?

@JackOfMostTrades

Copy link
Copy Markdown
Contributor Author

I found the issue with the clojure test; the payload it generated ended up invoking the command in an infinite loop. Fortunately it was easy enough to setup the payload to invoke the command and then throw an exception.

That said, the scala tests are failing the tests since they only have SSRF and write-a-zero-file exploits rather than a full RCE. Not sure if there's some other interface that could be implemented to indicate that.

@frohoff frohoff changed the base branch from master to newgadgets April 27, 2022 05:09
@frohoff frohoff merged commit 4ad1131 into frohoff:newgadgets Apr 27, 2022
frohoff added a commit that referenced this pull request Apr 27, 2022
* CommonsCollections8 payload (#116)

* New gadgets (Struts2JasperReports - Atomikos - SpringJta) (#123)

* added Atomikos gadget payload

* added Atomikos gadget payload

* naming

* added spring-jta gadget

* added strutsJasperReports gadget + tests

* updated deps list on springJta

* fixed authors

* renaming

* Add new payload in Commons Collections 3.2.1 (#125)

* Add Jython2 gadget (#135)

This version of Jython2 executes a command through os.system(). Based on Jython1 from @pwntester & @cschneider4711

Co-authored-by: Chris Frohoff <chris@frohoff.org>

* Add scala and clojure payloads from a couple of years ago (#137)

* Add some payloads for Scala

* Add new clojure payload effecting versions since 1.8.0

* Fix infinite loop behavior of clojure2 payload.

* add CommonsBeanutils2 (#163)

* ceylon gadget (#173)

Co-authored-by: navalorenzo <34750199+navalorenzo@users.noreply.github.com>
Co-authored-by: Stefano Ciccone <sciccone@gdssecurity.com>
Co-authored-by: 梅子酒 <960596293@qq.com>
Co-authored-by: Yorick Koster <ykoster@users.noreply.github.com>
Co-authored-by: Ian Haken <ihaken@netflix.com>
Co-authored-by: k4n5ha0 <9199771@qq.com>
Co-authored-by: supersache <42678777+supersache@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

3 participants