Ecosyste.ms: Awesome

An open API service indexing awesome lists of open source software.

Awesome Lists | Featured Topics | Projects

https://github.com/SummerSec/BlogPapers

<a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&center=true&vCenter=true&width=435&lines=%F0%9F%91%8B%EF%BC%8C%E5%83%8F%E6%B8%85%E6%B0%B4%E4%B8%80%E8%88%AC%E6%B8%85%E6%BE%88%E9%80%8F%E6%98%8E" alt="SummerSec" /></a>
https://github.com/SummerSec/BlogPapers

Last synced: 21 days ago
JSON representation

Host: GitHub
URL: https://github.com/SummerSec/BlogPapers
Owner: SummerSec
Created: 2021-11-08T01:30:18.000Z (about 3 years ago)
Default Branch: master
Last Pushed: 2024-10-29T12:54:00.000Z (about 1 month ago)
Last Synced: 2024-10-29T15:21:10.356Z (about 1 month ago)
Language: PHP
Homepage: https://sumsec.me
Size: 634 MB
Stars: 53
Watchers: 4
Forks: 6
Open Issues: 0
Metadata Files:
- Readme: README.md

Awesome Lists containing this project

awesome-hacking-lists - SummerSec/BlogPapers - <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&center=true&vCenter=true&width=435&lines=%F0%9F%91%8B%EF (PHP)

README

        

## 

[🏯 HOME](https://sumsec.me/) [📁 Archives](./resources/Archives.md)     [📣 About ME](./resources/AboutMe.md)   [📒Old Blog](https://old.sumsec.me)  [📌 Advertisements](./resources/Advertisements.md)  [ 🌐 SiteMap](./resources/sitemap.xml)   [🗂 Resources](./resources/README.md)   [ 🔭 RSS.xml](./resources/rss.xml)

### 时间轴 📈

#### 2022  📅

| Time  | Name                                                         | Tags           |

| ----- | ------------------------------------------------------------ | -------------- |

| 12/09 | [VMWare-Workspace-ONE-Access-Auth-Bypass](./2022/VMWare-Workspace-ONE-Access-Auth-Bypass.md) | 漏洞分析/Java/RCE |

| 09/28 | [Spring-Framework-RCE-CVE-2022-22965漏洞分析](./2022/Spring-Framework-RCE-CVE-2022-22965漏洞分析.md) | 漏洞分析/Java/RCE                      |

| 08/08 | [相似度算法调研](./2022/相似度算法调研.md)                   | 算法/go                                |

| 07/19 | [CVE-2022-33891 Apache Spark shell command injection](./2022/CVE-2022-33891 Apache Spark shell command injection.md) | 命令执行/Spark                    |

| 07/05 | [正则匹配配置不当](./2022/正则匹配配置不当.md)               | 正则匹配Java/正则匹配             |

| 06/22 | [CVE-2022-22980 Mongodb SpEL](./2022/CVE-2022-22980 Mongodb SpEL.md) | Java/SpEL/CodeQL |

| 03/29 | [CodeQL Usage Tricks](./2022/CodeQL-Usage-Tricks.md)         | CodeQL/Tricks/Java                     |

| 03/18 | [Spring Boot RCE到内存马探索](./2022/Spring Boot RCE到内存马探索.md) | Spring/RCE/MemShell                    |

| 03/14 | [Shiro后渗透拓展面](./2022/Shiro后渗透拓展面.md)             | Shiro/Agent/Web/Java                   |

| 03/02 | [shiro反序列化漏洞攻击拓展面--修改key](./2022/shiro反序列化漏洞攻击拓展面--修改key.md) | shiro/key/Java/Web                     |

| 03/10 | [GitHub Java CodeQL CTF](./2022/GitHub Java CodeQL CTF.md)   | CodeQL/Java/CTF                        |

| 02/27 | [Hack-Tools2Web](./2022/Hack-Tools2Web.md)                   | Hack/Tools/Web                         |

| 02/21 | [CodeQL与Shiro550碰撞](./2022/CodeQL与Shiro550碰撞.md)       | CodeQL/Java/Shiro                      |

| 02/21 | [CodeQL初见Shiro550](./2022/CodeQL初见Shiro550.md)           | CodeQL/Java/Shiro                      |

| 02/20 | [CodeQL与AST之间联系](./2022/CodeQL与AST之间联系.md)         | CodeQL/AST/Java                        |

| 02/15 | [Java加载动态链接库方式](./2022/Java加载动态链接库方式.md)   | Java/DLL/Load                          |

| 01/20 | [Log4j2漏洞分析](./2022/Log4j2漏洞分析.md)                   | Log4j2/Java/Vul                        |

| 01/08 | [PL-4-Interprocedural Analysis](./PL/Interprocedural-Analysis.md) | PL                                     |

| 01/07 | [PL-3-Data Analysis Foundation](./PL/Data-Analysis-Foundation.md) | PL                                     |

| 01/06 | [PL-2-Data-Flow-Analysis](./PL/Data-Flow-Analysis.md)        | PL                                     |

| 01/04 | [PL-1-Intermediate-Representation](./PL/Intermediate-Representation.md) | PL                                     |

---

#### 2021 📅

| Time  | Name                                                         | Tags           |

| ----- | ------------------------------------------------------------ | -------------- |

| 04/15 | [PII泄露--用CodeQL识别日志中的PII数据](./2021/PII泄露--用CodeQL识别日志中的PII数据.md) | CodeQL/Java    |

| 04/24 | [CodeQL workshop for Java Unsafe deserialization in Apache Struts](./2021/CodeQL-workshop-for-Java-Unsafe-deserialization-in-Apache-Struts.md) | CodeQL/Java    |

| 06/05 | [weblogic之CVE-2020-2551iiop反序列化漏洞分析](./2021/weblogic之CVE-2020-2551iiop反序列化漏洞分析.md) | Java           |

| 06/05 | [weblogic之CVE-2020-2551iiop反序列化漏洞复现](./2021/weblogic之CVE-2020-2551iiop反序列化漏洞复现.md) | Java           |

| 07/15 | [Fastjson回显](./2021/Fastjson回显.md)                       | Java/Fastjson  |

| 07/21 | [Tomcat通用回显学习笔记](./2021/Tomcat通用回显学习笔记.md)   | Java           |

| 08/03 | [从Java反序列化漏洞题看CodeQL数据流](./2021/从Java反序列化漏洞题看CodeQL数据流.md) | CodeQL/Java    |

| 11/01 | [Shiro-550反序列化漏洞分析](./2021/Shiro-550反序列化漏洞分析.md) | shiro550/Java  |

| 11/09 | [记一次Log4j失败的Gadget挖掘记录](./2021/记一次Log4j失败的Gadget挖掘记录.md) | CodeQL/Java    |

| 11/15 | [ysoserial改造记录](./2021/ysoserial改造记录.md)             | ysoserial/Java |

| 11/30 | [JNDI注入](./2021/JNDI注入.md)                               | JNDI/Java      |

| 12/08 | [shiro-JRMP-gadget](./2021/shiro-JRMP-gadget.md)             | shiro/exp      |

| 12/21 | [Fastjson_Mysql_gadget复现](./2021/Fastjson_Mysql_gadget复现.md) | fastjson/exp   |

| 12/31 | [2021年度总结](./2021/2021年度总结.md)                       | 总结           |

---

### 广告位 📑

| 腾讯云     | [买云服务器，参与礼品兑换、抽奖，最高送价值8000元IPad，还有Bose耳机、千元京东卡等您来！](https://curl.qcloud.com/ExHdaRF2) |

| ---------- | ------------------------------------------------------------ |

| **腾讯云** | [**云产品限时秒杀，爆款2核4G云服务器首年74元**](https://curl.qcloud.com/5RLkMR5O) |

| **腾讯云** | [**代金券、域名提前享，更多爆品、新春好礼2月中旬开启，敬请期待!**](https://cloud.tencent.com/act/cps/redirect?redirect=1576&cps_key=efaad5c0d018bebdee56492ced661c43&from=console) |

| **腾讯云** | [**【腾讯云】爆款2核2G云服务器首年40元，企业首购最高获赠300元京东卡**](https://cloud.tencent.com/act/cps/redirect?redirect=1577&cps_key=efaad5c0d018bebdee56492ced661c43&from=console) |

| **腾讯云** | [**【腾讯云】CDN低至3元，短信0.033元/条起，直播/点播/TRTC等套餐包0.7折起**](https://cloud.tencent.com/act/cps/redirect?redirect=1578&cps_key=efaad5c0d018bebdee56492ced661c43&from=console) |

| **腾讯云** | [**【腾讯云】境外1核2G服务器低至2折，半价续费券限量免费领取！**](https://cloud.tencent.com/act/cps/redirect?redirect=1068&cps_key=efaad5c0d018bebdee56492ced661c43&from=console) |

| **腾讯云** | [**【腾讯云】1核2G5M轻量应用服务器50元首年，高性价比，助您轻松上云**](https://cloud.tencent.com/act/cps/redirect?redirect=1556&cps_key=efaad5c0d018bebdee56492ced661c43&from=console) |

| **腾讯云** | [**【腾讯云】轻量应用服务器Lighthouse，「轻」松上云！1核2G6M 限时低至74元/年起！**](https://cloud.tencent.com/act/cps/redirect?redirect=1079&cps_key=efaad5c0d018bebdee56492ced661c43&from=console) |

| **腾讯云** | [**【腾讯云】中小企业福利专场，多款刚需产品，满足企业通用场景需求，云服务器2.5折起**](https://cloud.tencent.com/act/cps/redirect?redirect=1060&cps_key=efaad5c0d018bebdee56492ced661c43&from=console) |

| **腾讯云** | [**【腾讯云】云数据库新春助力「轻」松上云，新老朋友免费加「量」不加价，100%兼容MySQL1核1G限时低至19.9元/年起**](https://cloud.tencent.com/act/cps/redirect?redirect=1080&cps_key=efaad5c0d018bebdee56492ced661c43&from=console) |

**广告位持续招租。。。。。。**

**感谢[https://evolution-host.com](https://evolution-host.com/)的赞助**

[![https://evolution-host.com/](https://img.sumsec.me/2022/03/29u5529ec29u5529ec.png)](https://evolution-host.com/)

 function cb(response) {     document.getElementById('visits').innerText = response.value; }  sumsec.me