Skip to content

Commit 98e977e

Browse files
whgojpwhgojp
committed
fix some bugs and add hibernate、jpa inject modules
1 parent a37c6a7 commit 98e977e

File tree

503 files changed

+9080
-2057
lines changed

Some content is hidden

Large Commits have some content hidden by default. Use the searchbox below for content that may be hidden.

503 files changed

+9080
-2057
lines changed

README.md

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -3,7 +3,7 @@
33
<div align="center">
44
<a href="https://www.apache.org/licenses/LICENSE-2.0.html"><img src="https://img.shields.io/github/license/alibaba/transmittable-thread-local?color=blueviolet&logo=apache" alt="License"></a>
55
<a href="https://github.com/whgojp/JavaSecLab"><img alt="Release" src="https://img.shields.io/badge/Java-8-ff9900?logo=java"></a>
6-
<a href="https://github.com/whgojp/JavaSecLab"><img src="https://img.shields.io/badge/Version-1.3-red.svg" alt="Version"></a>
6+
<a href="https://github.com/whgojp/JavaSecLab"><img src="https://img.shields.io/badge/Version-1.4-red.svg" alt="Version"></a>
77
<a href="https://blog.csdn.net/weixin_53009585"><img src="https://img.shields.io/badge/Developed%20by-whgojp-purple.svg" alt="Developed by whgojp"></a>
88
<img src="https://img.shields.io/github/stars/whgojp/JavaSecLab?color=brightgreen&style=flat-square" alt="GitHub Repo stars">
99
<img src="https://img.shields.io/github/forks/whgojp/JavaSecLab?style=blue" alt="GitHub forks">

docker-compose.yml

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -15,7 +15,7 @@ services:
1515
- JavaSecLabNet
1616

1717
JavaSecLab:
18-
image: javaseclab:1.3
18+
image: javaseclab:1.4
1919
container_name: Container-JavaSecLab
2020
restart: always
2121
build: .

pom.xml

Lines changed: 8 additions & 50 deletions
Original file line numberDiff line numberDiff line change
@@ -6,7 +6,7 @@
66

77
<groupId>top.whgojp</groupId>
88
<artifactId>JavaSecLab</artifactId>
9-
<version>1.3.0</version>
9+
<version>1.4.0</version>
1010
<name>Java综合漏洞平台</name>
1111
<description>hello JavaSecLab!</description>
1212
<parent>
@@ -76,42 +76,6 @@
7676
<version>1.2.16</version>
7777
</dependency>
7878

79-
<!-- <dependency>-->
80-
<!-- <groupId>org.springframework.boot</groupId>-->
81-
<!-- <artifactId>spring-boot-starter-webflux</artifactId>-->
82-
<!-- </dependency>-->
83-
<!-- <dependency>-->
84-
<!-- <groupId>org.springframework.cloud</groupId>-->
85-
<!-- <artifactId>spring-cloud-starter-gateway</artifactId>-->
86-
<!-- <version>3.1.0</version>-->
87-
<!-- </dependency>-->
88-
89-
<!-- JSP和Servlet支持 -->
90-
<!-- <dependency>-->
91-
<!-- <groupId>org.springframework.boot</groupId>-->
92-
<!-- <artifactId>spring-boot-starter-tomcat</artifactId>-->
93-
<!-- </dependency>-->
94-
<!-- <dependency>-->
95-
<!-- <groupId>org.apache.tomcat.embed</groupId>-->
96-
<!-- <artifactId>tomcat-embed-jasper</artifactId>-->
97-
<!-- <scope>provided</scope>-->
98-
<!-- </dependency>-->
99-
<!-- <dependency>-->
100-
<!-- <groupId>javax.servlet</groupId>-->
101-
<!-- <artifactId>javax.servlet-api</artifactId>-->
102-
<!-- <scope>provided</scope>-->
103-
<!-- </dependency>-->
104-
<!-- <dependency>-->
105-
<!-- <groupId>javax.servlet</groupId>-->
106-
<!-- <artifactId>jstl</artifactId>-->
107-
<!-- </dependency>-->
108-
109-
<!-- 数据库 -->
110-
<!-- <dependency>-->
111-
<!-- <groupId>com.mysql</groupId>-->
112-
<!-- <artifactId>mysql-connector-j</artifactId>-->
113-
<!-- <version>${mysql.version}</version>-->
114-
<!-- </dependency>-->
11579
<dependency>
11680
<groupId>mysql</groupId>
11781
<artifactId>mysql-connector-java</artifactId>
@@ -199,19 +163,6 @@
199163
<scope>provided</scope>
200164
</dependency>
201165

202-
<!-- Java反序列化-->
203-
<!-- <dependency>-->
204-
<!-- <groupId>commons-io</groupId>-->
205-
<!-- <artifactId>commons-io</artifactId>-->
206-
<!-- <version>2.11.0</version>-->
207-
<!-- </dependency>-->
208-
209-
<!-- <dependency>-->
210-
<!-- <groupId>commons-collections</groupId>-->
211-
<!-- <artifactId>commons-collections</artifactId>-->
212-
<!-- <version>3.2.1</version>-->
213-
<!-- </dependency>-->
214-
215166
<dependency>
216167
<groupId>org.codehaus.groovy</groupId>
217168
<artifactId>groovy-all</artifactId>
@@ -296,6 +247,13 @@
296247
<version>2.4.1</version>
297248
</dependency>
298249

250+
<!-- 动态数据源 -->
251+
<dependency>
252+
<groupId>com.baomidou</groupId>
253+
<artifactId>dynamic-datasource-spring-boot-starter</artifactId>
254+
<version>3.6.1</version>
255+
</dependency>
256+
299257
</dependencies>
300258
<build>
301259
<finalName>JavaSecLab</finalName>

src/main/java/top/whgojp/common/config/DataSourceConfiguration.java

Lines changed: 0 additions & 24 deletions
This file was deleted.

src/main/java/top/whgojp/common/config/FilterConfig.java

Lines changed: 19 additions & 0 deletions
Original file line numberDiff line numberDiff line change
@@ -0,0 +1,19 @@
1+
package top.whgojp.common.config;
2+
3+
import org.springframework.boot.web.servlet.FilterRegistrationBean;
4+
import org.springframework.context.annotation.Bean;
5+
import org.springframework.context.annotation.Configuration;
6+
import top.whgojp.modules.mshell.entity.MaliciousFilter;
7+
8+
@Configuration
9+
public class FilterConfig {
10+
11+
@Bean
12+
public FilterRegistrationBean<MaliciousFilter> maliciousFilter() {
13+
FilterRegistrationBean<MaliciousFilter> registrationBean = new FilterRegistrationBean<>();
14+
registrationBean.setFilter(new MaliciousFilter());
15+
registrationBean.addUrlPatterns("/mshell/filter/*"); // 拦截所有请求
16+
registrationBean.setOrder(1); // 可以设置过滤器的优先级,值越小,优先级越高
17+
return registrationBean;
18+
}
19+
}

src/main/java/top/whgojp/common/config/HibernateConfig.java

Lines changed: 0 additions & 55 deletions
This file was deleted.

src/main/java/top/whgojp/common/config/ViewResolverConfiguration.java

Lines changed: 0 additions & 80 deletions
This file was deleted.

src/main/java/top/whgojp/modules/funny/controller/HijackController.java

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -20,7 +20,7 @@
2020
public class HijackController {
2121
@RequestMapping()
2222
public String hijack(){
23-
return "/vul/funny/hijack";
23+
return "vul/funny/hijack";
2424
}
2525

2626
}

src/main/java/top/whgojp/modules/infoleak/controller/JsFileLeakController.java

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -28,7 +28,7 @@ public String hardCoding(){
2828
}
2929
@RequestMapping("/loginSuccess")
3030
public String loginSuccess(){
31-
return "/vul/infoleak/loginSuccess";
31+
return "vul/infoleak/loginSuccess";
3232
}
3333

3434
}

src/main/java/top/whgojp/modules/logic/idor/controller/VerticalController.java

Lines changed: 1 addition & 1 deletion
Original file line numberDiff line numberDiff line change
@@ -30,7 +30,7 @@ public String vertical() {
3030
public String vul() {
3131
String currentUsername = SecurityContextHolder.getContext().getAuthentication().getName();
3232
if ("admin".equals(currentUsername)) {
33-
return "/vul/logic/idor/admin";
33+
return "vul/logic/idor/admin";
3434
} else return "common/401";
3535
}
3636

0 commit comments

Comments
 (0)