Alternatives and similar repositories for CVE-2020-36188

Users that are interested in CVE-2020-36188 are comparing it to the libraries listed below

• MagicZer0 / Jackson_RCE-CVE-2019-12384
  CVE-2019-12384 漏洞测试环境
  ☆21Updated 2 years ago
• Al1ex / CVE-2020-36184
  CVE-2020-36184 && Jackson-databind RCE
  ☆15Updated 4 years ago
• UnicodeSec / Blogs
  宽字节安全团队的博客
  ☆31Updated 4 years ago
• potats0 / AgentMemShellScanner
  清除基于java agent木马
  ☆80Updated 4 years ago
• woodpecker-appstore / rmi-deserialization-vuldb
  Java RMI反序列化漏洞插件
  ☆49Updated 4 years ago
• TheKingOfDuck / Copy2Java
  一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。
  ☆50Updated 3 years ago
• BeichenDream / Godzilla-Plugin-Store
  ☆35Updated 5 years ago
• TomAPU / ThinkPHP-Unserialize-Collection
  ThinkPHP各版本反序列化利用代码
  ☆33Updated 5 years ago
• Litch1-v / behinder-clone
  魔改的冰蝎，仅供测试连接内存webshell使用
  ☆38Updated 5 years ago
• threedr3am / fastjson-blacklist
  打CTF实在厌倦了找利用链，就知道一个fastjson的版本，一堆依赖找啊找，头都疼。为了解决这个烦恼，用了卓卓师傅的fastjson黑名单工具和库，自己改造了一下。
  ☆32Updated 5 years ago
• fairyming / CVE-2020-8840
  CVE-2020-8840：FasterXML/jackson-databind 远程代码执行漏洞
  ☆36Updated 5 years ago
• Wfzsec / ysoserial-poc
  记录调试分析ysoserial系列的学习过程，主要包含手动构造的一些poc，便于加深对漏洞和工具的理解
  ☆30Updated 5 years ago
• welk1n / FastjsonPocs
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Updated 5 years ago
• Jumbo-WJB / burp_find_shiro
  通过burp代理流量寻找shiro站点
  ☆60Updated 5 years ago
• magicming200 / CVE-2020-10199_CVE-2020-10204
  CVE-2020-10199、CVE-2020-10204漏洞一键检测工具，图形化界面。CVE-2020-10199 and CVE-2020-10204 Vul Tool with GUI.
  ☆25Updated 5 years ago
• jkgh006 / assetscan
  资产扫描工具
  ☆46Updated 4 years ago
• timwhitez / find-subdomain-by-xray
  利用xray高级版批量收集子域名
  ☆18Updated 5 years ago
• feihong-cs / Attacking_Shiro_with_CVE_2020_2555
  ☆49Updated 4 years ago
• r00tuser111 / ActuatorExploitTools
  一款用于攻击spring boot actuator的集成环境，目前集成三种攻击方式，支持1.x、2.x
  ☆86Updated 4 years ago
• 1135 / Kong_exploit
  ☆41Updated 5 years ago
• jas502n / Shiro_Xray
  CommonsBeanutils1,CommonsCollectionsK1
  ☆58Updated 4 years ago
• jas502n / database-spring-ENC
  sprint encode (plan text) get enc password
  ☆45Updated 3 years ago
• Draven996 / jniwebshell
  ☆42Updated 6 years ago
• jas502n / xxl-job
  xxl-job RESTful API RCE
  ☆72Updated 4 years ago
• Y4er / javaagent-tomcat-memshell
  使用java agent反序列化注入内存shell
  ☆68Updated 4 years ago
• 1135 / solr_exploit
  Apache Solr远程代码执行漏洞(CVE-2019-0193) Exploit
  ☆66Updated 5 years ago
• Al1ex / CVE-2020-36179
  CVE-2020-36179~82 Jackson-databind SSRF&RCE
  ☆81Updated 4 years ago
• r35tart / RedisDirScan
  此脚本用于测试 Rdies 未授权访问，在没权限写ssh私钥和定时任务又不知道web绝对路径的情况下，进行WEB目录探测
  ☆73Updated 6 years ago
• ce-automne / OrderbyHunter
  一款辅助探测Orderby注入漏洞的BurpSuite插件
  ☆25Updated 3 years ago
• TheKingOfDuck / JNDI-Injection-Exploit
  JNDI注入测试工具改版（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,et…
  ☆48Updated 4 years ago