thonsun / thonsun.github.io Goto Github PK
View Code? Open in Web Editor NEWMy personal website
My personal website
https://thonsun.github.io/2020/10/24/jackjson-fan-xu-lie-lou-dong-fu-xian/
在《JavaSec Jackson反序列化漏洞原理》中分析Jackson反序列化漏洞的成因,也总结了一些了Jackson的反序列化漏洞利用方式,这里将以Jackson的漏洞复现为主,以理清Jackson的漏洞发展史,从中吸取一些攻防经验。
https://thonsun.github.io/2019/06/29/markdown-shi-yong/
使用电脑浏览效果更佳!
typora的常用markdown语法
遇到一个就记录一个使用,或者查询怎么写,不需要一开始就什么都会才去做
a bold attempt is half success
document.qu
https://thonsun.github.io/2019/07/25/unlink-li-yong-jie-shao/
使用电脑浏览效果更佳!
摘要 记录当下加入检查机制的unlink宏一般利用**,主要在glibc pwn下的unlink利用手法。
分析unlink的工作unlink(AV, P, BK, FD):P是在空闲双向链表中的free
https://thonsun.github.io/2019/07/22/linux-an-quan-ji-zhi/
使用电脑浏览效果更佳!
操作系统提供了许多安全机制来尝试降低或阻止缓冲区溢出攻击带来的安全风险,包括DEP、ASLR等。在编写漏洞利用代码的时候,需要特别注意目标进程是否开启了DEP(Linux下对应NX)、ASLR [Address
test
https://thonsun.github.io/2020/12/26/javaagent-ji-zhu-yan-jiu/
一、前言在学习java反序列化漏洞的时候,看到有采用 notsoserial 的黑白名单javaagent机制实现对Java反序列化漏洞的修复
java 在运行时候提供参数
-agentlib:[=]
加载本机代理库 , 例如 -a
https://thonsun.github.io/2020/12/20/fastjson-lou-dong-li-shi-poc/
参考资料
fastjson poc
郑重声明:文中所涉及的技术、思路和工具仅供以安全为目的的学习交流使用,任何人不得将其用于非法用途以及盈利等目的,否则后果自行承担!
0x01 Fastjson<=1.2.24反序列化远程代码执行
https://thonsun.github.io/2020/11/10/fastjson-fan-xu-lie-lou-dong-fu-xian/
在《JavaSec FastJson反序列化漏洞利用原理》中分析了FastJson的反序列化漏洞成因,也总结了FastJson的反序列化利用方式,这里将复现一些有关FastJson的漏洞利用,以清晰了解FastJson的漏洞发展史,从中吸取
https://thonsun.github.io/2020/12/24/tomcat-nei-cun-webshell-fen-xi/
document.querySelectorAll('.github-emoji')
.forEach(el => {
if (!el.dataset.src) { return
https://thonsun.github.io/2020/12/04/rmi-li-yong-fen-xi/
在《JNDI注入利用分析》中支持,JNDI支持访问多种命名与目录服务,其中就有利用RMI达成RCE的目的。RMI(Remote Method Invocation)远程方法调用可以类比RPC,这里将以下要点总结RMI的利用原理:
RMI
https://thonsun.github.io/contact/
留言板 | thonsun's blog
https://thonsun.github.io/2020/12/02/jndi-zhu-ru-li-yong-fen-xi/
在fastjson反序列化漏洞利用的学习中引出了JNDI的利用攻击方式,JNDI(Java Naming and Directory Interface)实际可以理解为一个编程接口,
document.querySelec
https://thonsun.github.io/2021/01/09/java-an-quan-xi-lie/
这里作为Java安全系列的提纲,总结在学Web安全的过程,在复现环境,调试代码加深对原理的理解
一、JavaWeb技术java 在web系统的发展与应用
java servlet的应用与jsp技术:工程组织:即MVC**
javaweb
https://thonsun.github.io/2019/07/19/fast-bin-attack-li-yong-jie-shi/
使用电脑浏览效果更佳!
摘要 主要通过Double Free在fast binY单链中存在两个指向同一内存块的指针,可能的排布(A2->B-A1),第一次malloc该大小拿到A2指向该chunk,向其数据data
https://thonsun.github.io/2020/12/24/rmi-li-yong-fen-xi/
document.querySelectorAll('.github-emoji')
.forEach(el => {
if (!el.dataset.src) { return
https://thonsun.github.io/2019/06/28/hexo-bian-jie-wang-zhan-pei-zhi/
本地新建md文章# 在hexo 配置好的路经打开窗口
hexo new "my aticle name"
A declarative, efficient, and flexible JavaScript library for building user interfaces.
🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.
TypeScript is a superset of JavaScript that compiles to clean JavaScript output.
An Open Source Machine Learning Framework for Everyone
The Web framework for perfectionists with deadlines.
A PHP framework for web artisans
Bring data to life with SVG, Canvas and HTML. 📊📈🎉
JavaScript (JS) is a lightweight interpreted programming language with first-class functions.
Some thing interesting about web. New door for the world.
A server is a program made to process requests and deliver data to clients.
Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.
Some thing interesting about visualization, use data art
Some thing interesting about game, make everyone happy.
We are working to build community through open source technology. NB: members must have two-factor auth.
Open source projects and samples from Microsoft.
Google ❤️ Open Source for everyone.
Alibaba Open Source for everyone
Data-Driven Documents codes.
China tencent open source team.