ReaJason
diff --git a/‎generator/src/main/java/com/reajason/javaweb/probe/payload/FilterProbeFactory.java‎
Lines changed: 52 additions & 0 deletions b/‎generator/src/main/java/com/reajason/javaweb/probe/payload/FilterProbeFactory.java‎
Lines changed: 52 additions & 0 deletions
diff --git a/‎generator/src/main/java/com/reajason/javaweb/probe/payload/filter/TomcatFilterProbe.java‎
Lines changed: 58 additions & 49 deletions b/‎generator/src/main/java/com/reajason/javaweb/probe/payload/filter/TomcatFilterProbe.java‎
Lines changed: 58 additions & 49 deletions
diff --git a/‎generator/src/main/java/com/reajason/javaweb/utils/CommonUtil.java‎
Lines changed: 3 additions & 2 deletions b/‎generator/src/main/java/com/reajason/javaweb/utils/CommonUtil.java‎
Lines changed: 3 additions & 2 deletions
diff --git a/‎generator/src/test/java/com/reajason/javaweb/memshell/generator/CustomShellGeneratorTest.java‎
Lines changed: 6 additions & 6 deletions b/‎generator/src/test/java/com/reajason/javaweb/memshell/generator/CustomShellGeneratorTest.java‎
Lines changed: 6 additions & 6 deletions
diff --git a/‎generator/src/test/java/com/reajason/javaweb/memshell/generator/GodzillaGeneratorTest.java‎
Lines changed: 1 addition & 1 deletion b/‎generator/src/test/java/com/reajason/javaweb/memshell/generator/GodzillaGeneratorTest.java‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎integration-test/src/test/java/com/reajason/javaweb/integration/ShellAssertion.java‎
Lines changed: 17 additions & 9 deletions b/‎integration-test/src/test/java/com/reajason/javaweb/integration/ShellAssertion.java‎
Lines changed: 17 additions & 9 deletions
diff --git a/‎integration-test/src/test/java/com/reajason/javaweb/integration/probe/DetectionTool.java‎
Lines changed: 1 addition & 1 deletion b/‎integration-test/src/test/java/com/reajason/javaweb/integration/probe/DetectionTool.java‎
Lines changed: 1 addition & 1 deletion
diff --git a/‎integration-test/src/test/java/com/reajason/javaweb/integration/probe/jbossas/Jboss423ContainerTest.java‎
Lines changed: 7 additions & 7 deletions b/‎integration-test/src/test/java/com/reajason/javaweb/integration/probe/jbossas/Jboss423ContainerTest.java‎
Lines changed: 7 additions & 7 deletions
@@ -0,0 +1,52 @@
+package com.reajason.javaweb.probe.payload;
+
+import com.reajason.javaweb.GenerationException;
+import com.reajason.javaweb.Server;
+import com.reajason.javaweb.buddy.TargetJreVersionVisitorWrapper;
+import com.reajason.javaweb.probe.payload.filter.*;
+import com.reajason.javaweb.utils.CommonUtil;
+import net.bytebuddy.ByteBuddy;
+import net.bytebuddy.dynamic.DynamicType;
+import org.apache.commons.codec.binary.Base64;
+
+/**
+ * @author ReaJason
+ * @since 2026/1/11
+ */
+public class FilterProbeFactory {
+
+    public static String getBase64ByServer(String server) {
+        try (DynamicType.Unloaded<?> unloaded = new ByteBuddy()
+                .redefine(getFilterClass(server))
+                .visit(TargetJreVersionVisitorWrapper.DEFAULT)
+                .name(CommonUtil.generateClassName()).make()) {
+            return Base64.encodeBase64String(unloaded.getBytes());
+        }
+    }
+
+
+    private static Class<?> getFilterClass(String server) {
+        switch (server) {
+            case Server.Tomcat:
+            case Server.JBoss:
+            case Server.BES:
+            case Server.TongWeb:
+                return TomcatFilterProbe.class;
+            case Server.Jetty:
+                return JettyFilterProbe.class;
+            case Server.Apusic:
+                return ApusicFilterProbe.class;
+            case Server.GlassFish:
+            case Server.InforSuite:
+                return GlassFishFilterProbe.class;
+            case Server.WebSphere:
+                return WebSphereFilterProbe.class;
+            case Server.WebLogic:
+                return WebLogicFilterProbe.class;
+            case Server.Undertow:
+                return UndertowFilterProbe.class;
+            default:
+                throw new GenerationException("filterProbe not supported for server: " + server);
+        }
+    }
+}
@@ -13,84 +13,92 @@ public class TomcatFilterProbe {
 
     @Override
     public String toString() {
-        String msg = "";
+        StringBuilder msg = new StringBuilder();
         Map<String, List<Map<String, String>>> allFiltersData = new LinkedHashMap<String, List<Map<String, String>>>();
         Set<Object> contexts = null;
         try {
             contexts = getContext();
         } catch (Throwable throwable) {
-            msg += "context error: " + getErrorMessage(throwable);
+            msg.append("context error: ").append(getErrorMessage(throwable));
         }
         if (contexts == null || contexts.isEmpty()) {
-            msg += "context not found\n";
+            msg.append("context not found\n");
         } else {
             for (Object context : contexts) {
                 String contextRoot = getContextRoot(context);
-                List<Map<String, String>> filters = collectFiltersData(context);
-                allFiltersData.put(contextRoot, filters);
+                try {
+                    List<Map<String, String>> filters = collectFiltersData(context);
+                    allFiltersData.put(contextRoot, filters);
+                } catch (Throwable e) {
+                    msg.append(contextRoot).append(" failed ").append(getErrorMessage(e)).append("\n");
+                }
             }
-            msg += formatFiltersData(allFiltersData);
+            msg.append(formatFiltersData(allFiltersData));
         }
-        return msg;
+        return msg.toString();
     }
 
-    private List<Map<String, String>> collectFiltersData(Object context) {
+    @SuppressWarnings("unchecked")
+    private List<Map<String, String>> collectFiltersData(Object context) throws Exception {
         Map<String, Map<String, Object>> aggregatedData = new LinkedHashMap<>();
 
-        try {
-            Object[] filterMaps = (Object[]) invokeMethod(context, "findFilterMaps");
-            if (filterMaps == null || filterMaps.length == 0) return Collections.emptyList();
+        Object[] filterMaps = (Object[]) invokeMethod(context, "findFilterMaps");
+        if (filterMaps == null || filterMaps.length == 0) return Collections.emptyList();
 
-            Object[] filterDefs = (Object[]) invokeMethod(context, "findFilterDefs");
+        Object[] filterDefs = (Object[]) invokeMethod(context, "findFilterDefs");
 
-            for (Object fm : filterMaps) {
-                String name = (String) invokeMethod(fm, "getFilterName");
-                if (name == null) continue;
-                if (!aggregatedData.containsKey(name)) {
-                    String filterClass = "N/A";
-                    if (filterDefs != null) {
-                        for (Object def : filterDefs) {
-                            if (!name.equals(invokeMethod(def, "getFilterName"))) continue;
-                            String cls = (String) invokeMethod(def, "getFilterClass");
-                            if (cls == null) {
-                                Object config = invokeMethod(context, "findFilterConfig", new Class[]{String.class}, new Object[]{name});
-                                Object filter = config != null ? invokeMethod(config, "getFilter") : null;
-                                if (filter != null) cls = filter.getClass().getName();
-                            }
-                            if (cls != null) filterClass = cls;
-                            break;
-                        }
+        for (Object fm : filterMaps) {
+            String name = (String) invokeMethod(fm, "getFilterName");
+            if (name == null) continue;
+            if (!aggregatedData.containsKey(name)) {
+                String filterClass = "N/A";
+                if (filterDefs != null) {
+                    Object filterDef = invokeMethod(context, "findFilterDef", new Class[]{String.class}, new Object[]{name});
+                    filterClass = (String) invokeMethod(filterDef, "getFilterClass");
+                    if (filterClass == null) {
+                        Object filterConfig = invokeMethod(context, "findFilterConfig", new Class[]{String.class}, new Object[]{name});
+                        Object filter = invokeMethod(filterConfig, "getFilter");
+                        if (filter != null) filterClass = filter.getClass().getName();
                     }
-                    Map<String, Object> info = new HashMap<>();
-                    info.put("filterName", name);
-                    info.put("filterClass", filterClass);
-                    info.put("urlPatterns", new LinkedHashSet<String>());
-                    info.put("servletNames", new LinkedHashSet<String>());
-                    aggregatedData.put(name, info);
                 }
-                Map<String, Object> info = aggregatedData.get(name);
-                String[] urls = null;
-                try {
-                    urls = (String[]) invokeMethod(fm, "getURLPatterns");
-                } catch (Exception e) {
-                    try {
-                        Object urlPattern = getFieldValue(fm, "urlPattern");
-                        if (urlPattern instanceof String) {
-                            urls = new String[] { (String) urlPattern };
-                        }
-                    } catch (Exception ignored) {
-                    }
+                Map<String, Object> info = new HashMap<>();
+                info.put("filterName", name);
+                info.put("filterClass", filterClass);
+                info.put("urlPatterns", new LinkedHashSet<String>());
+                info.put("servletNames", new LinkedHashSet<String>());
+                aggregatedData.put(name, info);
+            }
+            Map<String, Object> info = aggregatedData.get(name);
+            String[] urls = null;
+            try {
+                urls = (String[]) invokeMethod(fm, "getURLPatterns");
+            } catch (Exception e) {
+                Object urlPattern = invokeMethod(fm, "getURLPattern");
+                if (urlPattern instanceof String) {
+                    urls = new String[]{(String) urlPattern};
                 }
-                if (urls != null) ((Set<String>) info.get("urlPatterns")).addAll(Arrays.asList(urls));
             }
-        } catch (Exception ignored) {}
+            if (urls != null) ((Set<String>) info.get("urlPatterns")).addAll(Arrays.asList(urls));
+            String[] servletNames = null;
+            try {
+                servletNames = (String[]) invokeMethod(fm, "getServletNames");
+            } catch (Exception e) {
+                Object servletName = invokeMethod(fm, "getServletName");
+                if (servletName instanceof String) {
+                    servletNames = new String[]{(String) servletName};
+                }
+            }
+            if (servletNames != null) ((Set<String>) info.get("servletNames")).addAll(Arrays.asList(servletNames));
+        }
         List<Map<String, String>> result = new ArrayList<>();
         for (Map<String, Object> entry : aggregatedData.values()) {
             Map<String, String> finalInfo = new HashMap<>();
             finalInfo.put("filterName", (String) entry.get("filterName"));
             finalInfo.put("filterClass", (String) entry.get("filterClass"));
             Set<?> urls = (Set<?>) entry.get("urlPatterns");
             finalInfo.put("urlPatterns", urls.isEmpty() ? "" : urls.toString());
+            Set<?> servletNames = (Set<?>) entry.get("servletNames");
+            finalInfo.put("servletNames", servletNames.isEmpty() ? "" : servletNames.toString());
             result.add(finalInfo);
         }
         return result;
@@ -113,6 +121,7 @@ private String formatFiltersData(Map<String, List<Map<String, String>>> allFilte
                     appendIfPresent(output, "", info.get("filterName"), "");
                     appendIfPresent(output, " -> ", info.get("filterClass"), "");
                     appendIfPresent(output, " -> URL:", info.get("urlPatterns"), "");
+                    appendIfPresent(output, " -> Servlet:", info.get("servletNames"), "");
                     output.append("\n");
                 }
             }
 
@@ -96,8 +96,9 @@ public static String getPackageName(String className) {
         return className.substring(0, className.lastIndexOf("."));
     }
 
-    public static String generateShellClassName() {
-        return getRandomPackageName() + ".ErrorHandler";
+    public static String generateClassName() {
+        String randomString = getRandomString(5);
+        return getRandomPackageName() + ".Error" + randomString.substring(0, 1).toUpperCase() + randomString.substring(1).toLowerCase() + "Handler";
     }
 
     public static String generateInjectorClassName() {
 
@@ -30,8 +30,8 @@ class CustomShellGeneratorTest {
     void testListener() {
         byte[] bytes = new ByteBuddy()
                 .redefine(CommandListener.class)
-                .name(CommonUtil.generateShellClassName()).make().getBytes();
-        String className = CommonUtil.generateShellClassName();
+                .name(CommonUtil.generateClassName()).make().getBytes();
+        String className = CommonUtil.generateClassName();
         ShellConfig shellConfig = ShellConfig.builder()
                 .server(Server.Tomcat)
                 .shellType(ShellType.LISTENER)
@@ -52,8 +52,8 @@ void testListener() {
     void testFilter() {
         byte[] bytes = new ByteBuddy()
                 .subclass(Object.class)
-                .name(CommonUtil.generateShellClassName()).make().getBytes();
-        String className = CommonUtil.generateShellClassName();
+                .name(CommonUtil.generateClassName()).make().getBytes();
+        String className = CommonUtil.generateClassName();
         ShellConfig shellConfig = ShellConfig.builder()
                 .shellType(ShellType.FILTER)
                 .build();
@@ -72,8 +72,8 @@ void testFilter() {
     void testValue() {
         byte[] bytes = new ByteBuddy()
                 .redefine(GodzillaValve.class)
-                .name(CommonUtil.generateShellClassName()).make().getBytes();
-        String className = CommonUtil.generateShellClassName();
+                .name(CommonUtil.generateClassName()).make().getBytes();
+        String className = CommonUtil.generateClassName();
         ShellConfig shellConfig = ShellConfig.builder()
                 .server(Server.BES)
                 .shellType(ShellType.VALVE)
 
@@ -33,7 +33,7 @@ void generate() {
                 .build();
         GodzillaConfig godzillaConfig = GodzillaConfig.builder()
                 .shellClass(GodzillaServlet.class)
-                .shellClassName(CommonUtil.generateShellClassName())
+                .shellClassName(CommonUtil.generateClassName())
                 .pass("pass")
                 .key("key")
                 .headerName("User-Agent")
 
@@ -40,8 +40,7 @@
 import static com.reajason.javaweb.memshell.ShellTool.*;
 import static com.reajason.javaweb.utils.CommonUtil.INJECTOR_CLASS_NAMES;
 import static com.reajason.javaweb.utils.CommonUtil.getRandomString;
-import static org.hamcrest.CoreMatchers.anyOf;
-import static org.hamcrest.CoreMatchers.containsString;
+import static org.hamcrest.CoreMatchers.*;
 import static org.hamcrest.MatcherAssert.assertThat;
 import static org.junit.jupiter.api.Assertions.assertDoesNotThrow;
 import static org.junit.jupiter.api.Assertions.assertTrue;
@@ -53,13 +52,13 @@
 @Slf4j
 public class ShellAssertion {
 
-    public static void shellInjectIsOk(String url, String server, String shellType, String shellTool, int targetJdkVersion, Packers packer) {
-        shellInjectIsOk(url, server, shellType, shellTool, targetJdkVersion, packer, null);
+    public static MemShellResult shellInjectIsOk(String url, String server, String shellType, String shellTool, int targetJdkVersion, Packers packer) {
+        return shellInjectIsOk(url, server, shellType, shellTool, targetJdkVersion, packer, null);
     }
 
     @SneakyThrows
-    public static void shellInjectIsOk(String url, String server, String shellType, String shellTool, int targetJdkVersion, Packers packer, GenericContainer<?> container) {
-        shellInjectIsOk(url, server, shellType, shellTool, targetJdkVersion, packer, container, null);
+    public static MemShellResult shellInjectIsOk(String url, String server, String shellType, String shellTool, int targetJdkVersion, Packers packer, GenericContainer<?> container) {
+        return shellInjectIsOk(url, server, shellType, shellTool, targetJdkVersion, packer, container, null);
     }
 
     @SneakyThrows
@@ -85,12 +84,12 @@ public static Pair<String, String> getUrls(String url, String shellType, String
     }
 
     @SneakyThrows
-    public static void shellInjectIsOk(String url, String server, String shellType, String shellTool, int targetJdkVersion, Packers packer, GenericContainer<?> appContainer, GenericContainer<?> pythonContainer) {
-        shellInjectIsOk(url, server, null, shellType, shellTool, targetJdkVersion, packer, appContainer, pythonContainer);
+    public static MemShellResult shellInjectIsOk(String url, String server, String shellType, String shellTool, int targetJdkVersion, Packers packer, GenericContainer<?> appContainer, GenericContainer<?> pythonContainer) {
+        return shellInjectIsOk(url, server, null, shellType, shellTool, targetJdkVersion, packer, appContainer, pythonContainer);
     }
 
     @SneakyThrows
-    public static void shellInjectIsOk(String url, String server, String serverVersion, String shellType, String shellTool,
+    public static MemShellResult shellInjectIsOk(String url, String server, String serverVersion, String shellType, String shellTool,
                                        int targetJdkVersion, Packers packer,
                                        GenericContainer<?> appContainer, GenericContainer<?> pythonContainer) {
         Pair<String, String> urls = getUrls(url, shellType, shellTool, packer);
@@ -104,6 +103,8 @@ public static void shellInjectIsOk(String url, String server, String serverVersi
         packerResultAndInject(generateResult, url, shellTool, shellType, packer, appContainer);
 
         assertShellIsOk(generateResult, shellUrl, shellTool, shellType, appContainer, pythonContainer);
+
+        return generateResult;
     }
 
     @SneakyThrows
@@ -492,4 +493,11 @@ public static void testProbeInject(String url, String server, String serverVersi
     public static void testProbeInject(String url, String server, String shellType, int targetJdkVersion) {
         testProbeInject(url, server, null, shellType, targetJdkVersion);
     }
+
+    public static void assertFilterProbeIsRight(String filterInfos) {
+        assertThat(filterInfos, allOf(
+                containsString("urlMappingTestFilter -> UrlMappingTestFilter -> URL:[/b64, /test]"),
+                containsString("servletNameTestFilter -> ServletNameTestFilter -> Servlet:[b64, biginteger]")
+        ));
+    }
 }
@@ -18,7 +18,7 @@ public class DetectionTool {
     public static String getBase64Class(Class<?> clazz) {
         return Base64.encodeBase64String(new ByteBuddy()
                 .redefine(clazz)
-                .name(CommonUtil.generateShellClassName())
+                .name(CommonUtil.generateClassName())
                 .visit(TargetJreVersionVisitorWrapper.DEFAULT)
                 .make().getBytes());
     }
 
@@ -2,11 +2,14 @@
 
 import com.reajason.javaweb.Server;
 import com.reajason.javaweb.integration.ProbeAssertion;
+import com.reajason.javaweb.integration.ShellAssertion;
 import com.reajason.javaweb.integration.VulTool;
 import com.reajason.javaweb.integration.probe.DetectionTool;
+import com.reajason.javaweb.memshell.MemShellResult;
 import com.reajason.javaweb.memshell.ShellTool;
 import com.reajason.javaweb.memshell.ShellType;
 import com.reajason.javaweb.packer.Packers;
+import com.reajason.javaweb.probe.payload.FilterProbeFactory;
 import com.reajason.javaweb.utils.CommonUtil;
 import lombok.SneakyThrows;
 import lombok.extern.slf4j.Slf4j;
@@ -83,20 +86,17 @@ void testBytecodeReqParamResponseBody() {
     @Test
     void testFilterProbe() {
         String url = getUrl(container);
-        String data = VulTool.post(url + "/b64", DetectionTool.getTomcatFilterProbe());
-        System.out.println(data);
-        assertThat(data, anyOf(
-                containsString("Context: ")
-        ));
+        String data = VulTool.post(url + "/b64", FilterProbeFactory.getBase64ByServer(Server.JBoss));
+        ShellAssertion.assertFilterProbeIsRight(data);
     }
 
     @Test
     void testFilterFirstInject() {
         String url = getUrl(container);
-        shellInjectIsOk(url, Server.JBoss, ShellType.FILTER, ShellTool.Command, Opcodes.V1_6, Packers.BigInteger, container);
+        MemShellResult memShellResult = shellInjectIsOk(url, Server.JBoss, ShellType.FILTER, ShellTool.Command, Opcodes.V1_6, Packers.BigInteger, container);
         String data = VulTool.post(url + "/b64", DetectionTool.getTomcatFilterProbe());
         List<String> filter = ProbeAssertion.getFiltersForContext(data, "/app");
         String filterName = ProbeAssertion.extractFilterName(filter.get(0));
-        assertThat(filterName, anyOf(startsWith(CommonUtil.getWebPackageNameForServer(Server.JBoss))));
+        assertEquals(filterName, memShellResult.getShellClassName());
     }
 }
Original file line number	Diff line number	Diff line change
`@@ -96,8 +96,9 @@ public static String getPackageName(String className) {`
`96`	`96`	`return className.substring(0, className.lastIndexOf("."));`
`97`	`97`	`}`
`98`	`98`
`99`		`- public static String generateShellClassName() {`
`100`		`- return getRandomPackageName() + ".ErrorHandler";`
	`99`	`+ public static String generateClassName() {`
	`100`	`+ String randomString = getRandomString(5);`
	`101`	`+ return getRandomPackageName() + ".Error" + randomString.substring(0, 1).toUpperCase() + randomString.substring(1).toLowerCase() + "Handler";`
`101`	`102`	`}`
`102`	`103`
`103`	`104`	`public static String generateInjectorClassName() {`
Original file line number	Diff line number	Diff line change
`@@ -18,7 +18,7 @@ public class DetectionTool {`
`18`	`18`	`public static String getBase64Class(Class<?> clazz) {`
`19`	`19`	`return Base64.encodeBase64String(new ByteBuddy()`
`20`	`20`	`.redefine(clazz)`
`21`		`- .name(CommonUtil.generateShellClassName())`
	`21`	`+ .name(CommonUtil.generateClassName())`
`22`	`22`	`.visit(TargetJreVersionVisitorWrapper.DEFAULT)`
`23`	`23`	`.make().getBytes());`
`24`	`24`	`}`