BishopFox / ysoserial-bfLinks
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
☆29Updated last year
Alternatives and similar repositories for ysoserial-bf
Users that are interested in ysoserial-bf are comparing it to the libraries listed below
Sorting:
- Utility for creating ZipSlip archives☆74Updated 2 years ago
- Additional resources for leaking and exploiting ObjRefs via HTTP .NET Remoting (CVE-2024-29059)☆89Updated last year
- Burp Extension to add additional functionality for pentesting websocket based applications☆97Updated last year
- Exploits targeting vBulletin.☆76Updated 2 years ago
- Proof of Concept for Path Traversal in Apache Struts ("CVE-2023-50164")☆57Updated last year
- ☆37Updated last month
- Perform TE.CL HTTP Request Smuggling attacks by crafting HTTP Request automatically.☆72Updated 3 years ago
- A project for fuzzing HTTP/1.1 CL.0 Request Smuggling Attack Vectors☆88Updated last year
- Dockerized POC for CVE-2022-42889 Text4Shell☆76Updated 2 years ago
- ☆38Updated 2 years ago
- Apache commons text - CVE-2022-42889 Text4Shell proof of concept exploit.☆55Updated last year
- Authentication Bypass in GoAnywhere MFT☆63Updated last year
- CVE-2023-33733 reportlab RCE☆119Updated last year
- Exploit for CVE-2024-20767 - Adobe ColdFusion☆34Updated 7 months ago
- Burp extension to check and exploit the IIS Tilde Enumeration/IIS 8.3 Short Filename Disclosure vulnerability☆60Updated 2 years ago
- A list of weird comparison in SQL☆15Updated 3 years ago
- A powerful AWS Cognito analysis and session hijacking toolkit designed for security researchers and penetration testers. CognitoHunter sp…☆20Updated 6 months ago
- Golden collection of weak passwords☆64Updated 7 months ago
- Arbitrary File Disclosure Vulnerability in Icinga Web 2 <2.8.6, <2.9.6, <2.10☆13Updated 2 years ago
- A BurpSuite extension to deploy an OpenVPN config file to DigitalOcean and set up a SOCKS proxy to route traffic through it☆51Updated last year
- Introduction to CYS4-SensitiveDiscoverer, a Burp extension that discovers sensitive information inside HTTP messages.☆20Updated 8 months ago
- Repository to store exploits created by Assetnotes Security Research team☆180Updated last year
- Make better use of the embedded browser that comes by default with Burp☆44Updated last year
- PoC repository for CVE-2023-29007☆33Updated 2 years ago
- Scalpel is a Burp extension for intercepting and rewriting HTTP traffic, either on the fly or in the Repeater using Python 3 scripts.☆63Updated last year