Skip to content

add CommonsBeanutils2#163

Merged
frohoff merged 1 commit into
frohoff:newgadgetsfrom
k4n5ha0:master
Apr 27, 2022
Merged

add CommonsBeanutils2#163
frohoff merged 1 commit into
frohoff:newgadgetsfrom
k4n5ha0:master

Conversation

@k4n5ha0

@k4n5ha0 k4n5ha0 commented Jul 11, 2021

Copy link
Copy Markdown

add CommonsBeanutils2 with k4n5ha0
origin detect from PHITHON
https://www.leavesongs.com/PENETRATION/commons-beanutils-without-commons-collections.html

@frohoff frohoff changed the base branch from master to newgadgets April 27, 2022 05:24
@frohoff frohoff merged commit 15e6aa6 into frohoff:newgadgets Apr 27, 2022
frohoff added a commit that referenced this pull request Apr 27, 2022
* CommonsCollections8 payload (#116)

* New gadgets (Struts2JasperReports - Atomikos - SpringJta) (#123)

* added Atomikos gadget payload

* added Atomikos gadget payload

* naming

* added spring-jta gadget

* added strutsJasperReports gadget + tests

* updated deps list on springJta

* fixed authors

* renaming

* Add new payload in Commons Collections 3.2.1 (#125)

* Add Jython2 gadget (#135)

This version of Jython2 executes a command through os.system(). Based on Jython1 from @pwntester & @cschneider4711

Co-authored-by: Chris Frohoff <chris@frohoff.org>

* Add scala and clojure payloads from a couple of years ago (#137)

* Add some payloads for Scala

* Add new clojure payload effecting versions since 1.8.0

* Fix infinite loop behavior of clojure2 payload.

* add CommonsBeanutils2 (#163)

* ceylon gadget (#173)

Co-authored-by: navalorenzo <34750199+navalorenzo@users.noreply.github.com>
Co-authored-by: Stefano Ciccone <sciccone@gdssecurity.com>
Co-authored-by: 梅子酒 <960596293@qq.com>
Co-authored-by: Yorick Koster <ykoster@users.noreply.github.com>
Co-authored-by: Ian Haken <ihaken@netflix.com>
Co-authored-by: k4n5ha0 <9199771@qq.com>
Co-authored-by: supersache <42678777+supersache@users.noreply.github.com>
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment

Projects

None yet

Development

Successfully merging this pull request may close these issues.

2 participants