Skip to content
View threedr3am's full-sized avatar
🌴
On vacation
🌴
On vacation
2k followers · 37 following

Achievements

Achievement: Starstruckx3Achievement: Pull Shark

Achievements

Achievement: Starstruckx3Achievement: Pull Shark

Organizations

@SecCoder-Security-Lab

Block or report threedr3am

Block user

Prevent this user from interacting with your repositories and sending you notifications. Learn more about blocking users.

You must be logged in to block users.

Please don't include any personal information such as legal names or email addresses. Maximum 100 characters, markdown supported. This note will be visible to only you.
Report abuse

Contact GitHub support about this user’s behavior. Learn more about reporting abuse.

Report abuse
threedr3am/README.md

我是threedr3am,大伙都叫我三梦 👋

熟悉Java开发,热衷于研究各种Java组件、中间件,深爱探究其架构设计思想和源码实现,not only crud boy. 最近两年专注于从0到1的企业安全建设,主要包括SDL&DevSecOps、SoC、云k8s、WAF等,及基础业务安全(IoT MQTT&OCPP、OSS、CDN、HTTP加验签等)。

Pinned Loading

  1. learnjavabug learnjavabug Public

    Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security Manager绕过、Dubbo-Hessian2安全加固等等实践代码。

    Java 2.7k 499

  2. JSP-WebShells JSP-WebShells Public

    Collect JSP webshell of various implementation methods. 梳理和发现的JSP Webshell各种姿势

    Java 1.4k 326

  3. ZhouYu ZhouYu Public

    (周瑜)Java - SpringBoot 持久化 WebShell(不仅仅是SpringBoot,适合任何符合JavaEE规范的服务)

    Java 615 64

  4. GuanYu GuanYu Public

    JVM runtime class loading protection agent.(JVM类加载保护agent)

    Java 49 7

  5. dubbo-exp dubbo-exp Public

    dubbo快速利用exp,基本上老版本覆盖100%。

    Java 158 16

  6. jar-compatibility-detector jar-compatibility-detector Public

    安全升级jar包时,辅助检测Java Archive (JAR) 包之间兼容性,各类符号引用的存在检测,包括方法、方法签名、字段定义和引用、类引用等等

    Java 14