GoSecure/break-fast-serial external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

GoSecure/break-fast-serial

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/GoSecure/break-fast-serial)

Close

GoSecure / break-fast-serialView on GitHubMore

• External links
• Readme badge

A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs

☆55Mar 27, 2017Updated 9 years ago

Alternatives and similar repositories for break-fast-serial

Users that are interested in break-fast-serial are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• shengqi158 / S2-055-PoC

  View on GitHub
  S2-055的环境，基于rest-show-case改造
  ☆37Dec 7, 2017Updated 8 years ago
• erpscanteam / CVE-2018-2380

  View on GitHub
  PoC of Remote Command Execution via Log injection on SAP NetWeaver AS JAVA CRM
  ☆52Mar 14, 2018Updated 8 years ago
• GoSecure / csp-auditor

  View on GitHub
  Burp and ZAP plugin to analyse Content-Security-Policy headers or generate template CSP configuration from crawling a Website
  ☆142Apr 29, 2020Updated 5 years ago
• GrrrDog / ZeroNights-WebVillage-2017

  View on GitHub
  ☆72Nov 20, 2017Updated 8 years ago
• pwntester / SerialKillerBypassGadgetCollection

  View on GitHub
  Collection of bypass gadgets to extend and wrap ysoserial payloads
  ☆387Apr 16, 2022Updated 3 years ago
• Managed Database hosting by DigitalOcean • Ad
  PostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
• Tr3jer / dnsAutoRebinding

  View on GitHub
  ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6
  ☆217Aug 17, 2017Updated 8 years ago
• ldionmarcil / sudo-backdoor

  View on GitHub
  Wraps sudo; transparently steals user's credentials. For those annoying times when you get a shell/file write on a sudoers account and ne…
  ☆36Nov 15, 2024Updated last year
• irsl / jackson-rce-via-spel

  View on GitHub
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆124Jan 9, 2018Updated 8 years ago
• kevien / javacode

  View on GitHub
  some java code i met or i used
  ☆29May 7, 2019Updated 6 years ago
• Coalfire-Research / java-deserialization-exploits

  View on GitHub
  A collection of curated Java Deserialization Exploits
  ☆592May 16, 2021Updated 4 years ago
• xti9er / rootkit_checker

  View on GitHub
  --= Xt9 - Anti - Rootkit =-- beta v0.11 by xti9er
  ☆15Dec 16, 2020Updated 5 years ago
• GrrrDog / ZeroNights-HackQuest-2016

  View on GitHub
  2 web tasks from ZeroNights HackQuest 2016
  ☆50Mar 24, 2017Updated 9 years ago
• federicodotta / HandyCollaborator

  View on GitHub
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆104Jun 1, 2018Updated 7 years ago
• fbkcs / msf-elf-in-memory-execution

  View on GitHub
  Post module for Metasploit to execute ELF in memory
  ☆86Nov 23, 2018Updated 7 years ago
• NordVPN Threat Protection Pro™ • Ad
  Take your cybersecurity to the next level. Block phishing, malware, trackers, and ads. Lightweight app that works with all browsers.
• pwntester / XMLDecoder

  View on GitHub
  RCE Exploit PoC for XMLDecoder
  ☆63Aug 1, 2013Updated 12 years ago
• irsl / struts-any-results

  View on GitHub
  Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.
  ☆12Sep 30, 2018Updated 7 years ago
• retanoj / BurpMultiProxy

  View on GitHub
  ☆13Feb 17, 2016Updated 10 years ago
• mbechler / serjs

  View on GitHub
  A Java serializer in JavaScript
  ☆80May 21, 2018Updated 7 years ago
• lc / 230-OOB

  View on GitHub
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆185May 27, 2020Updated 5 years ago
• mbechler / serianalyzer

  View on GitHub
  A static byte code analyzer for Java deserialization gadget research
  ☆251Apr 17, 2017Updated 8 years ago
• dsopas / rfd-checker

  View on GitHub
  RFD Checker - security CLI tool to test Reflected File Download issues
  ☆64Feb 26, 2019Updated 7 years ago
• SecureSkyTechnology / study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095

  View on GitHub
  Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告
  ☆107Dec 13, 2017Updated 8 years ago
• pwntester / JVMDeserialization

  View on GitHub
  PoC for Scala and Groovy
  ☆14Apr 4, 2016Updated 10 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• JavaPentesters / java_vul_target

  View on GitHub
  ☆28Oct 16, 2017Updated 8 years ago
• GoSecure / goinsecure-deserialization

  View on GitHub
  Accompanying material needed for the workshop
  ☆11Jun 14, 2023Updated 2 years ago
• cszuo / certbook

  View on GitHub
  certbook
  ☆58Jul 28, 2017Updated 8 years ago
• ilmila / springcss-cve-2014-3625

  View on GitHub
  spring mvc cve-2014-3625
  ☆32Mar 11, 2016Updated 10 years ago
• mogwaisec / mjet

  View on GitHub
  Mogwai Java Management Extensions (JMX) Exploitation Toolkit
  ☆174Jul 21, 2016Updated 9 years ago
• NickstaDB / BaRMIe

  View on GitHub
  Java RMI enumeration and attack tool.
  ☆745Sep 28, 2017Updated 8 years ago
• anshumanbh / merge-nmap-masscan

  View on GitHub
  Merge results from NMAP and Masscan into one CSV file
  ☆18Jun 19, 2018Updated 7 years ago
• GoSecure / ysoserial

  View on GitHub
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆47Mar 22, 2017Updated 9 years ago
• nccgroup / freddy

  View on GitHub
  Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans
  ☆583Sep 7, 2021Updated 4 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• leameow / dirt

  View on GitHub
  Dynamic Identification and Recognition Technology
  ☆10Nov 1, 2016Updated 9 years ago
• debasishm89 / dotNetFuzz

  View on GitHub
  A quick and dirty .NET "Deserialize_*" fuzzer based on James Forshaw's (@tiraniddo) DotNetToJScript.
  ☆42Nov 10, 2018Updated 7 years ago
• shengqi158 / svnhack

  View on GitHub
  用于还原svn仓库，支持1.6，1.7
  ☆26Jun 3, 2016Updated 9 years ago
• jjf012 / PassiveScanner

  View on GitHub
  a passive scanner based on Mitmproxy and Arachni
  ☆108Aug 17, 2017Updated 8 years ago
• nmalcolm / Inventus

  View on GitHub
  Inventus is a spider designed to find subdomains of a specific domain by crawling it and any subdomains it discovers.
  ☆81Aug 28, 2017Updated 8 years ago
• Cryin / PDFTear

  View on GitHub
  Malicious PDF document parsing tool
  ☆16Nov 1, 2017Updated 8 years ago
• bcoles / ssrf_proxy

  View on GitHub
  SSRF Proxy facilitates tunneling HTTP communications through servers vulnerable to Server-Side Request Forgery.
  ☆481Jan 1, 2018Updated 8 years ago