Alternatives and similar repositories for ysoserial

Users that are interested in ysoserial are comparing it to the libraries listed below

• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆48Updated 3 years ago
• whami-root / SSLShell
  ☆24Updated 8 months ago
• woodpecker-appstore / zip-tools
  zip slip
  ☆38Updated 2 years ago
• TonyD0g / JSPHunter
  基于污点分析和模拟栈帧技术的JSP Webshell检测
  ☆47Updated 3 months ago
• w4iting4 / FindIcmpP
  解析netsh抓取的etl文件来定位windows主机上存在ICMP通信的进程与文件的小工具
  ☆31Updated 3 years ago
• SummerSec / BlogPapers
  <a href="sumsec.me"><img src="https://readme-typing-svg.demolab.com?font=Fira+Code&size=24&pause=1000&color=FDFDFD&background=13797800&ce…
  ☆54Updated this week
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆67Updated 2 years ago
• jiashaoxiong1998 / fernflower
  ☆10Updated 2 years ago
• Firebasky / GoRmi
  该项目是通过go语言实现防止rmi利用被反置的问题。
  ☆44Updated 3 years ago
• novysodope / RWAL-Scan
  Rich woman scanner --富婆扫描器
  ☆35Updated 3 years ago
• bitterzzZZ / CVE-2021-43297-POC
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Updated 3 years ago
• 0xrumble / BytecodeScreen
  ☆50Updated 2 years ago
• Esonhugh / yapi-rce-webshell
  Yapi mock script RCE another version. Webshell way. 另一种 Webshell 方式的 Yapi 命令执行的方法 相比于其他的利用方式 更加微操和可控 影响更小
  ☆66Updated last year
• yuligesec / watchvuln
  一个高价值漏洞采集与推送服务 | A valueable vulnerability collection and push service
  ☆31Updated last year
• lz2y / DubboPOC
  Apache Dubbo漏洞测试Demo及其POC
  ☆62Updated 2 years ago
• Ape1ron / SpringAopInDeserializationDemo1
  在spring-aop中新发现的反序列化gadget-chain
  ☆51Updated 8 months ago
• turn1tup / JvmRaspBypass
  ☆14Updated 2 years ago
• X1r0z / Dubbo-RCE
  PoC of Apache Dubbo CVE-2023-23638
  ☆33Updated last year
• threedr3am / jar-compatibility-detector
  安全升级jar包时，辅助检测Java Archive (JAR) 包之间兼容性，各类符号引用的存在检测，包括方法、方法签名、字段定义和引用、类引用等等
  ☆14Updated last year
• yumusb / Yapi_Rce
  Yapi RCE漏洞批量验证与伪交互SHELL
  ☆42Updated 4 years ago
• bluE0a / java-memshell-scanner
  添加Connector内存马与ws内存马检测逻辑
  ☆16Updated 2 years ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆54Updated 2 years ago
• Al1ex / MysqlHoneypot
  MysqlHoneypot
  ☆23Updated 3 years ago
• sf197 / MemoryShellHunter
  Java Agent memory horse scanner combined with Call Graph modus
  ☆64Updated 2 years ago
• KpLi0rn / DeserializeAll
  一个简单的批量反编译jar包的小脚本
  ☆42Updated 3 years ago
• flowerwind / AutoGenerateXalanPayload
  cve-2022-34169 延伸出的Jdk Xalan的payload自动生成工具，可根据不同的Jdk生成出其所对应的xslt文件
  ☆90Updated 2 years ago
• 0linlin0 / Java
  java
  ☆54Updated 2 years ago
• AngryDinosaur88 / Hessian-Deserialize-RCE
  Hession-Deserialize-RCE 反序列化命令执行
  ☆23Updated 5 years ago
• Ivan1ee / .NET-GhostWebShell
  虚拟WebShell及内存马系列，来源自.NET安全矩阵星球
  ☆39Updated last month
• lishang520 / CVE-2022-24990
  CVE-2022-24990信息泄露+RCE 一条龙
  ☆39Updated 3 years ago