devme4f's blog
  • Home
  • Archives
  • Notes
  • About

    2024

  • 2024-12-31
    Level-up Java Memshell - Facing Tomcat Compatibility Problems
  • 2024-10-17
    Quick note Spring Boot Fat Jar file writing to RCE (writeup)
  • 2024-08-16
    Analyzing CVE-2024-34750 Apache Tomcat DoS
  • 2024-03-28
    Spring Web Flow past vulnerabilities research
  • 2024-03-27
    Jasig CAS past vulnerabilities research
  • 2024-01-30
    TetCTF-2024 Ctf Writeup - J4v4 Censored web challenge and unintended solution that break nginx rule

    • 2023

  • 2023-12-22
    SVATTT-2023 Ctf Writeup - The new Waf Deser
  • 2023-09-19
    Quick Note Spring Memshell
  • 2023-09-12
    Java Deserialization p1 - TemplateImpl class and its utilization chain
  • 2023-08-28
    SekaiCTF-2023 Ctf Writeup - Frog WAF - EL Injection WAF Bypass
  • 2023-08-20
    BKCTF-2023 Ctf Writeup - Texttext - Java deser exploit Text4Shell
  • 2023-05-25
    Liferay Pentest
  • 2023-04-27
    Angstromctf-2023 Ctf Writeup - filestore
  • 2023-01-17
    Tìm hiểu CVE-2017-9822 - DotNetNuke Cookie Deserialization RCE
  • 2023-01-12
    Tìm hiểu CVE-2019-16891 - Liferay JSON Deserialization to RCE
  • 2023-01-08
    Tìm hiểu CVE-2020-15394 - Manage Engine Application Manager unauth RCE

    • 2022

  • 2022-10-17
    SVATTT 2022 Ctf Writeup - Waf Deser
Copyright © 2025 devme4f's blog
  • Home
  • Archives
  • Notes
  • About