A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
☆47Mar 22, 2017Updated 8 years ago
Alternatives and similar repositories for ysoserial
Users that are interested in ysoserial are comparing it to the libraries listed below
Sorting:
- A simple CORS misconfiguration scanner☆422Aug 14, 2020Updated 5 years ago
- Note: Going through a full re-write of the tooling so the current versions in the repo do not work!☆416May 18, 2020Updated 5 years ago
- Tool to try multiple paths for PHPunit RCE CVE-2017-9841☆11May 19, 2020Updated 5 years ago
- BFAC (Backup File Artifacts Checker): An automated tool that checks for backup artifacts that may disclose the web-application's source c…☆563Aug 25, 2022Updated 3 years ago
- ☆477Jan 29, 2021Updated 5 years ago
- Tests for race conditions in web applications. Includes a RESTful API to integrate into a continuous integration pipeline.☆629Mar 18, 2022Updated 3 years ago
- A collection of scripts that run on my web server. Mainly for debugging SSRF, blind XSS, and XXE vulnerabilities.☆550Jun 12, 2017Updated 8 years ago
- A tool that can help detect and takeover subdomains with dead DNS records☆773Jan 3, 2021Updated 5 years ago
- joomla com_xcloner exploit [Mass Autoexploiting script coded with python]☆13Apr 29, 2019Updated 6 years ago
- ☆14Apr 9, 2019Updated 6 years ago
- ☆14Feb 15, 2022Updated 4 years ago
- Multiple Shells of the same code with different extentions.☆15May 14, 2020Updated 5 years ago
- A tool for embedding XXE/XML exploits into different filetypes☆1,130Dec 16, 2024Updated last year
- Auto CMS detector☆11Dec 29, 2017Updated 8 years ago
- Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.☆1,710Dec 1, 2024Updated last year
- Automatically exported from code.google.com/p/cms-explorer☆23Mar 30, 2015Updated 10 years ago
- FAST SIMPLE SMOOTH CMS CHECKER Multi thread~☆13May 16, 2018Updated 7 years ago
- ☆1,257Dec 17, 2024Updated last year
- [discontinued] Mass exploiter of CVE 2015-8562 for Joomla! CMS☆23Nov 17, 2017Updated 8 years ago
- Toolset for detecting reflected xss in websites☆16Oct 6, 2018Updated 7 years ago
- wp content injection mass exploit Perl Script☆12Jul 11, 2017Updated 8 years ago
- Rip web accessible (distributed) version control systems: SVN/GIT/HG...☆1,777Jul 19, 2024Updated last year
- Command line utility for searching and downloading exploits☆1,815Sep 10, 2025Updated 5 months ago
- Totally Automatic LFI Exploiter (+ Reverse Shell) and Scanner☆1,914Apr 13, 2022Updated 3 years ago
- [discontinued] Mass exploiter of CVE-2015-1579 for WordPress CMS☆28May 21, 2018Updated 7 years ago
- ☆27Mar 22, 2019Updated 6 years ago
- BLACKBOx Penetration Testing Framework☆31Dec 20, 2018Updated 7 years ago
- A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs☆55Mar 27, 2017Updated 8 years ago
- Simple shell script for automated domain recognition with some tools☆20Mar 9, 2019Updated 6 years ago
- ☆22May 13, 2019Updated 6 years ago
- Opencart Bruteforce and Upload Image☆11Aug 13, 2019Updated 6 years ago
- Drupal Exploiter Tool (Drupal Hunter)☆37Apr 29, 2018Updated 7 years ago
- Unlimited Reverse IP Lookup using hackertarget.com API.☆35Aug 3, 2020Updated 5 years ago
- PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.☆3,753Sep 29, 2025Updated 5 months ago
- Some wordpress user enumeration scripts.☆38Dec 21, 2016Updated 9 years ago
- EyeWitness is designed to take screenshots of websites, provide some server header info, and identify default credentials if possible.☆56May 31, 2024Updated last year
- Collection of useful command line commands☆14Dec 10, 2021Updated 4 years ago
- Exploit laravel database config☆10Feb 10, 2019Updated 7 years ago
- A high-performance DNS stub resolver for bulk lookups and reconnaissance (subdomain enumeration)☆3,541Jul 21, 2025Updated 7 months ago