banner
lca

lca

真正的不自由,是在自己的心中设下牢笼。

Springboot Basic Test

123

Find * Password#

In the SpringBoot site, there is an endpoint named /actuator/env, which usually shields some sensitive information, such as password, but replaces it with * symbol. If the target site can download the file /actuator/heapdump or /heapdump and decode it, sensitive information contained in it can be extracted.

You can also use this tool to scan SpringBoot nodes.

mat#

image-20230406201515932

select * from java.util.LinkedHashMap$Entry x WHERE (toString(x.key).contains("password"))
select * from java.util.Hashtable$Entry x WHERE (toString(x.key).contains("password"))

image-20230406190632405

JDumpSpider#

Project address: https://github.com/whwlsfb/JDumpSpider

$ java -jar JDumpSpider-1.0-SNAPSHOT-full.jar heapdump

Image source: https://wallhaven.cc/

Loading...
Ownership of this post data is guaranteed by blockchain and smart contracts to the creator alone.