5.3.13. Reference Links¶

5.3.13.1. Official Documentation¶

5.3.13.2. Mechanism Description¶

Deep understanding of Java class loading

5.3.13.3. Deserialization¶

5.3.13.3.1. Standards¶

5.3.13.3.2. Utilities and techniques¶

5.3.13.3.3. Framework¶

5.3.13.4. Sandbox¶

Java Sandbox Escape

5.3.13.5. Framework¶

Struts
Struts Examples
Eclipse Jetty
SpringBootVulExploit SpringBoot related vulnerability learning materials, collection of utilization methods and skills, black box security assessment checklist

5.3.13.5.1. Framework utilization techniques¶

Exploration of Spring Boot Fat Jar Write File Vulnerability to Stable RCE

5.3.13.6. RMI¶

5.3.13.7. JNDI¶

5.3.13.8. WebShell¶

Various poses jsp webshell

5.3.13.9. Other vulnerabilities¶

JAVA common XXE vulnerability writing and defense