in

Check broken access control exists in the Java web application


Check broken access control exists in the Java web application.

检查 Java Web 应用程序中是否存在访问控制绕过问题。

python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index?id=1"
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index" -data id=1
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index" -data-json '{"id":1}'
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index?id=1" -all
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index" -data-json '{"id":1}' -all

image

image

image

image

image

可根据不同payload的返回包长度来判断哪些payload可用
image

image

image

image

GitHub

View Github


A tiny and powerful enterprise-class solution for building tables,based on React and JSON

A flutter library provide a simple roulette widget which usually used for lottery