[ { "id": 265151514, "name": "tomcat-cluster-session-sync-exp", "full_name": "threedr3am\/tomcat-cluster-session-sync-exp", "owner": { "login": "threedr3am", "id": 19884279, "avatar_url": "https:\/\/avatars0.githubusercontent.com\/u\/19884279?v=4", "html_url": "https:\/\/github.com\/threedr3am" }, "html_url": "https:\/\/github.com\/threedr3am\/tomcat-cluster-session-sync-exp", "description": "tomcat使用了自带session同步功能时,不安全的配置(没有使用EncryptInterceptor)导致存在的反序列化漏洞,通过精心构造的数据包, 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484,9484是session持久化的洞,这个是session集群同步的洞!", "fork": false, "created_at": "2020-05-19T05:12:53Z", "updated_at": "2020-06-04T06:58:10Z", "pushed_at": "2020-05-19T05:13:19Z", "stargazers_count": 181, "watchers_count": 181, "forks_count": 32, "forks": 32, "watchers": 181, "score": 0 }, { "id": 265717610, "name": "CVE-2020-9484", "full_name": "masahiro331\/CVE-2020-9484", "owner": { "login": "masahiro331", "id": 20438853, "avatar_url": "https:\/\/avatars1.githubusercontent.com\/u\/20438853?v=4", "html_url": "https:\/\/github.com\/masahiro331" }, "html_url": "https:\/\/github.com\/masahiro331\/CVE-2020-9484", "description": null, "fork": false, "created_at": "2020-05-21T00:41:06Z", "updated_at": "2020-06-05T18:44:51Z", "pushed_at": "2020-05-21T10:15:35Z", "stargazers_count": 39, "watchers_count": 39, "forks_count": 8, "forks": 8, "watchers": 39, "score": 0 }, { "id": 265735756, "name": "CVE-2020-9484", "full_name": "FiveAourThe\/CVE-2020-9484", "owner": { "login": "FiveAourThe", "id": 38708428, "avatar_url": "https:\/\/avatars0.githubusercontent.com\/u\/38708428?v=4", "html_url": "https:\/\/github.com\/FiveAourThe" }, "html_url": "https:\/\/github.com\/FiveAourThe\/CVE-2020-9484", "description": "利用ceye批量检测CVE-2020-9484", "fork": false, "created_at": "2020-05-21T02:30:37Z", "updated_at": "2020-06-01T04:36:57Z", "pushed_at": "2020-05-21T02:30:47Z", "stargazers_count": 6, "watchers_count": 6, "forks_count": 7, "forks": 7, "watchers": 6, "score": 0 }, { "id": 265870392, "name": "CVE-2020-9484", "full_name": "IdealDreamLast\/CVE-2020-9484", "owner": { "login": "IdealDreamLast", "id": 33090510, "avatar_url": "https:\/\/avatars0.githubusercontent.com\/u\/33090510?v=4", "html_url": "https:\/\/github.com\/IdealDreamLast" }, "html_url": "https:\/\/github.com\/IdealDreamLast\/CVE-2020-9484", "description": "用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞", "fork": false, "created_at": "2020-05-21T14:30:46Z", "updated_at": "2020-06-04T06:23:54Z", "pushed_at": "2020-05-21T15:13:22Z", "stargazers_count": 35, "watchers_count": 35, "forks_count": 17, "forks": 17, "watchers": 35, "score": 0 }, { "id": 269379345, "name": "CVE-2020-9484", "full_name": "qerogram\/CVE-2020-9484", "owner": { "login": "qerogram", "id": 29586629, "avatar_url": "https:\/\/avatars1.githubusercontent.com\/u\/29586629?v=4", "html_url": "https:\/\/github.com\/qerogram" }, "html_url": "https:\/\/github.com\/qerogram\/CVE-2020-9484", "description": "for Ubuntu 18.04, improve functions.", "fork": false, "created_at": "2020-06-04T14:19:12Z", "updated_at": "2020-06-04T18:12:20Z", "pushed_at": "2020-06-04T18:12:18Z", "stargazers_count": 0, "watchers_count": 0, "forks_count": 0, "forks": 0, "watchers": 0, "score": 0 }, { "id": 269770630, "name": "CVE-2020-9484-Mass-Scan", "full_name": "osamahamad\/CVE-2020-9484-Mass-Scan", "owner": { "login": "osamahamad", "id": 59566963, "avatar_url": "https:\/\/avatars2.githubusercontent.com\/u\/59566963?v=4", "html_url": "https:\/\/github.com\/osamahamad" }, "html_url": "https:\/\/github.com\/osamahamad\/CVE-2020-9484-Mass-Scan", "description": "CVE-2020-9484 Mass Scanner, Scan a list of urls for Apache Tomcat deserialization (CVE-2020-9484) which could lead to RCE ", "fork": false, "created_at": "2020-06-05T20:40:28Z", "updated_at": "2020-06-05T21:06:02Z", "pushed_at": "2020-06-05T21:04:43Z", "stargazers_count": 1, "watchers_count": 1, "forks_count": 0, "forks": 0, "watchers": 1, "score": 0 } ]