EdoardoVignati/java-deserialization-of-untrusted-data-poc external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

EdoardoVignati/java-deserialization-of-untrusted-data-poc

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/EdoardoVignati/java-deserialization-of-untrusted-data-poc)

Close

EdoardoVignati / java-deserialization-of-untrusted-data-pocView on GitHubMore

• External links
• Readme badge

Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data

☆26Jul 12, 2021Updated 4 years ago

Alternatives and similar repositories for java-deserialization-of-untrusted-data-poc

Users that are interested in java-deserialization-of-untrusted-data-poc are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• pwntester / XStreamPOC

  View on GitHub
  POC for XStream RCE
  ☆13Dec 23, 2013Updated 12 years ago
• langligelang / maobugs

  View on GitHub
  java 漏洞平台包含各种CVE
  ☆23Jun 17, 2022Updated 3 years ago
• GrrrDog / Sploits

  View on GitHub
  Place for random PoCs
  ☆18May 21, 2020Updated 5 years ago
• kanav99 / github-java-ctf

  View on GitHub
  Winning submission for the GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition
  ☆19Jun 25, 2020Updated 5 years ago
• iflody / codeql-workshop

  View on GitHub
  ☆12Aug 5, 2021Updated 4 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• zhzhdoai / Weblogic_Vuln

  View on GitHub
  CVE-2015-4852、CVE-2016-0638、CVE-2016-3510、CVE-2019-2890漏洞POC
  ☆17Aug 11, 2020Updated 5 years ago
• m3ssap0 / spring-break_cve-2017-8046

  View on GitHub
  This is a Java program that exploits Spring Break vulnerability (CVE-2017-8046).
  ☆17Jun 4, 2021Updated 4 years ago
• zhazhami / upload-fuzzer

  View on GitHub
  Upload Fuzzer for Burpsuite
  ☆17Aug 23, 2018Updated 7 years ago
• pysqz / plugo

  View on GitHub
  a simple golang plugin framework
  ☆12Jun 22, 2017Updated 8 years ago
• EXP-Docs / CVE-2020-13933

  View on GitHub
  CVE-2020-13933 靶场： shiro 认证绕过漏洞
  ☆14Apr 9, 2023Updated 3 years ago
• mogwailabs / deserialization-filter-blacklists

  View on GitHub
  Native Java serialization filter blacklist for common gadgets
  ☆20Sep 12, 2019Updated 6 years ago
• any-how / Getinfo_phpinfo

  View on GitHub
  提取phpinfo()敏感信息
  ☆11Nov 23, 2018Updated 7 years ago
• JoyChou93 / md5-extension-attack

  View on GitHub
  MD5长度扩展攻击
  ☆40Jun 8, 2016Updated 9 years ago
• tin-z / GDBleed

  View on GitHub
  Dynamic-Static binary instrumentation framework on top of GDB
  ☆50Sep 25, 2023Updated 2 years ago
• Wordpress hosting with auto-scaling - Free Trial Offer • Ad
  Fully Managed hosting for WordPress and WooCommerce businesses that need reliable, auto-scalable performance. Cloudways SafeUpdates now available.
• jas502n / CVE-2020-26259

  View on GitHub
  CVE-2020-26259: XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process…
  ☆25Dec 13, 2020Updated 5 years ago
• murataydemir / CVE-2020-14883

  View on GitHub
  [CVE-2020-14882] Oracle WebLogic Server Authenticated Remote Code Execution (RCE)
  ☆13Nov 9, 2020Updated 5 years ago
• ETOCheney / phpAudit

  View on GitHub
  一个简单的php危险函数检测工具
  ☆10Dec 19, 2018Updated 7 years ago
• Afant1 / RemoteObjectInvocationHandler

  View on GitHub
  bypass JEP290 RaspHook code
  ☆63Sep 21, 2020Updated 5 years ago
• coffeehb / portscan

  View on GitHub
  可能有一些你没见过的端口扫描脚本
  ☆12Nov 28, 2018Updated 7 years ago
• retanoj / BurpMultiProxy

  View on GitHub
  ☆13Feb 17, 2016Updated 10 years ago
• lz2y / DubboPOC

  View on GitHub
  Apache Dubbo漏洞测试Demo及其POC
  ☆64Mar 27, 2023Updated 3 years ago
• Dido1960 / Weblogic-CVE-2020-2551-To-Internet

  View on GitHub
  CVE-2020-2551 POC to use in Internet
  ☆22May 26, 2020Updated 5 years ago
• richardzhangcmplx / Dubbo-deserialization

  View on GitHub
  [CVE-2020-1948] Apache Dubbo Provider default deserialization cause RCE
  ☆18Mar 17, 2025Updated last year
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
• PalindromeLabs / Java-Deserialization-CVEs

  View on GitHub
  Compiled dataset of Java deserialization CVEs
  ☆60Aug 31, 2020Updated 5 years ago
• carstein / vsf

  View on GitHub
  Very Simple Fuzzer
  ☆21Jun 12, 2020Updated 5 years ago
• anunay-bhatt / secure-serverless-reference-architecture

  View on GitHub
  A walkthrough of security controls for a serverless architecture via a demo application
  ☆11May 11, 2022Updated 3 years ago
• mpgn / CVE-2018-19276

  View on GitHub
  CVE-2018-19276 - OpenMRS Insecure Object Deserialization RCE
  ☆16Mar 11, 2019Updated 7 years ago
• tin-z / CVE-2021-20294-POC

  View on GitHub
  Simple CVE-2021-20294 poc
  ☆11Jan 21, 2023Updated 3 years ago
• knqyf263 / CVE-2018-1273

  View on GitHub
  Environment for CVE-2018-1273 (Spring Data Commons)
  ☆10Aug 15, 2018Updated 7 years ago
• pwntester / SpringBreaker

  View on GitHub
  Exploit PoC for Spring RCE issue (CVE-2011-2894)
  ☆44Dec 17, 2023Updated 2 years ago
• pwntester / SerialKillerBypassGadgetCollection

  View on GitHub
  Collection of bypass gadgets to extend and wrap ysoserial payloads
  ☆387Apr 16, 2022Updated 4 years ago
• mishmashclone / GrrrDog-Java-Deserialization-Cheat-Sheet

  View on GitHub
  https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet
  ☆54Sep 11, 2021Updated 4 years ago
• Deploy to Railway using AI coding agents - Free Credits Offer • Ad
  Use Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
• mjwhitta / win

  View on GitHub
  Windows API/constants, identity, and WinHTTP/WinINet for Go.
  ☆19Mar 6, 2026Updated 2 months ago
• mi1k7ea / M7-03

  View on GitHub
  个人使用的一款Web CMS指纹扫描器
  ☆25Aug 4, 2020Updated 5 years ago
• Ant-FG-Lab / non_RCE

  View on GitHub
  ☆41Mar 10, 2021Updated 5 years ago
• welk1n / FastjsonPocs

  View on GitHub
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Oct 29, 2019Updated 6 years ago
• sunn1day / CVE-2020-36109-POC

  View on GitHub
  CVE-2020-36109 PoC causing DoS
  ☆17Apr 20, 2022Updated 4 years ago
• CrackerCat / ServiceCheater

  View on GitHub
  PoC of CVE-2020-0108
  ☆11Aug 5, 2020Updated 5 years ago
• aalhuz / phpjoern

  View on GitHub
  Parser utility to generate ASTs from PHP source code suitable to be processed by Joern.
  ☆15Jan 27, 2019Updated 7 years ago