Alternatives and similar repositories for Java-Deserialization-Cheat-Sheet

Users that are interested in Java-Deserialization-Cheat-Sheet are comparing it to the libraries listed below

• joaomatosf / jexboss
  JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
  ☆2,480Updated 5 years ago
• frohoff / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆8,559Updated last year
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,440Updated last year
• mbechler / marshalsec
  ☆3,614Updated 9 months ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆4,060Updated last year
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,684Updated 11 months ago
• summitt / Nope-Proxy
  TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
  ☆1,637Updated last year
• qazbnm456 / awesome-cve-poc
  ✍️ A curated list of CVE PoCs.
  ☆3,447Updated 3 years ago
• pwntester / ysoserial.net
  Deserialization payload generator for a variety of .NET formatters
  ☆3,580Updated 10 months ago
• tarunkant / Gopherus
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆3,221Updated 2 years ago
• JackOfMostTrades / gadgetinspector
  A byte code analyzer for finding deserialization gadget chains in Java applications
  ☆1,063Updated 4 years ago
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,861Updated 4 years ago
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,378Updated last month
• ptoomey3 / evilarc
  Create tar/zip archives that can exploit directory traversal vulnerabilities
  ☆1,025Updated 4 years ago
• NickstaDB / SerializationDumper
  A tool to dump Java serialization streams in a more human readable form.
  ☆1,054Updated last year
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,113Updated 10 months ago
• kost / dvcs-ripper
  Rip web accessible (distributed) version control systems: SVN/GIT/HG...
  ☆1,763Updated last year
• federicodotta / Java-Deserialization-Scanner
  All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
  ☆796Updated 3 years ago
• abatchy17 / WindowsExploits
  Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
  ☆1,895Updated 5 years ago
• d3vilbug / HackBar
  HackBar plugin for Burpsuite
  ☆1,597Updated 4 years ago
• sensepost / reGeorg
  The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
  ☆3,127Updated 7 months ago
• worawit / MS17-010
  MS17-010
  ☆2,217Updated 2 years ago
• ambionics / phpggc
  PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
  ☆3,626Updated last month
• gquere / pwn_jenkins
  Notes about attacking Jenkins servers
  ☆2,083Updated last year
• nixawk / labs
  Vulnerability Labs for security analysis
  ☆1,173Updated 4 years ago
• snoopysecurity / awesome-burp-extensions
  A curated list of amazingly awesome Burp Extensions
  ☆3,301Updated 8 months ago
• quentinhardy / odat
  ODAT: Oracle Database Attacking Tool
  ☆1,713Updated last year
• IOActive / jdwp-shellifier
  ☆896Updated last year
• RhinoSecurityLabs / CVEs
  Proof-of-Concept exploits for CVEs found by the team at Rhino Security Labs
  ☆879Updated 4 months ago
• PortSwigger / turbo-intruder
  Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
  ☆1,660Updated 2 weeks ago