Giter VIP home page Giter VIP logo

shortpayload's Introduction

ShortPayload

极致缩小Java反序列化Payload

使用:java -jar ShortPayload.jar [gadget-name] [command]

例如:java -jar ShortPayload.jar CC6 "calc.exe"

相关技术文章:https://xz.aliyun.com/t/10824

效果

注意:这里的长度是指反序列化Payload进行Base64编码后的长度

反序列化链 YSOSERIAL长度 缩小后长度 缩小率
CommonsBeanutils1 3692 1296 64.8%
CommonsCollections1 1868 1748 6.4%
CommonsCollections2 4176 1708 41.4%
CommonsCollections3 4784 2444 48.9%
CommonsCollections4 4720 2256 52.2%
CommonsCollections5 2772 3044 -8.9%
CommonsCollections6 1708 1560 8.6%
CommonsCollections7 1700 1636 3.7%
CommonsCollectionsK1 2464 1708 30.6%
CommonsCollectionsK2 2472 1716 30.5%
CommonsCollectionsK3 1644 1604 2.4%
CommonsCollectionsK4 1652 1612 2.4%

shortpayload's People

Contributors

4ra1n avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.