expression-language-injection
CommunityExploit Java EL sandbox gaps with confidence
AuthorDorianGallo
Version1.0.0
Installs0
System Documentation
What problem does it solve?
Expression Language injection helps you identify and compromise cases where Java expression evaluators (EL/SpEL/OGNL/MVEL) process attacker-controlled input, often leading to sandbox bypass and RCE.
Core Features & Use Cases
- Framework-specific detection: Use polyglot probes to distinguish Java EL, SpEL, and OGNL execution paths during live testing.
- Sandbox bypass and execution: Apply targeted techniques for SpEL and Struts2 OGNL, including member access manipulation and blacklist clearing to reach runtime command execution.
- Real-world CVE-style routing: Leverage example chains such as Spring Cloud Gateway actuator route manipulation and Confluence OGNL injection patterns.
Quick Start
Ask the assistant to provide a step-by-step detection and exploitation plan for a suspected Spring/Struts2/Confluence expression-language injection, including sandbox bypass approaches and safe cleanup steps after attempting execution.
Dependency Matrix
Required Modules
None requiredComponents
Standard package💻 Claude Code Installation
Recommended: Let Claude install automatically. Simply copy and paste the text below to Claude Code.
Please help me install this Skill: Name: expression-language-injection Download link: https://github.com/DorianGallo/hack-skills-local/archive/main.zip#expression-language-injection Please download this .zip file, extract it, and install it in the .claude/skills/ directory.
Agent Skills Search Helper
Install a tiny helper to your Agent, search and equip skill from 471,000+ vetted skills library on demand.