javaEeAccessControlCheck
Check broken access control exists in the Java web application.
检查 Java Web 应用程序中是否存在访问控制绕过问题。
使用
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index?id=1"
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index" -data id=1
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index" -data-json '{"id":1}'
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index?id=1" -all
python3 javaEeAccessControlCheck.py "http://127.0.0.1/admin/index" -data-json '{"id":1}' -all
[GET]自动判断/Automatic judgment
[GET]所有Payload长度/All Response Length
[POST]自动判断/Automatic judgment
[POST]所有Payload长度/All Response Length
[POST-JSON]所有Payload长度/All Response Length
测试某开源系统
可根据不同payload的返回包长度来判断哪些payload可用 
测试某开源系统
6 Oct 17, 2022
5 Nov 30, 2022
11 Nov 30, 2022
5 Jul 17, 2022
15 Dec 3, 2022
3 Dec 28, 2022
1 Oct 24, 2021
44 Nov 15, 2022
1 Jul 17, 2022
1k Jan 2, 2023
13 Nov 10, 2022
1 Nov 24, 2021
31 Sep 15, 2022
3 Sep 19, 2022
4 Aug 3, 2022
1 Aug 25, 2022
60 Apr 1, 2022
43 Nov 10, 2022
0 Jan 4, 2022