Alternatives and similar repositories for Java-Deserialization-Cheat-Sheet

Users that are interested in Java-Deserialization-Cheat-Sheet are comparing it to the libraries listed below

• joaomatosf / jexboss
  JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool
  ☆2,470Updated 5 years ago
• frohoff / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆8,347Updated last year
• mbechler / marshalsec
  ☆3,561Updated 6 months ago
• cujanovic / SSRF-Testing
  SSRF (Server Side Request Forgery) testing resources
  ☆2,415Updated 9 months ago
• epinna / tplmap
  Server-Side Template Injection and Code Injection Detection and Exploitation Tool
  ☆3,995Updated last year
• enjoiz / XXEinjector
  Tool for automatic exploitation of XXE vulnerability using direct and different out of band methods.
  ☆1,655Updated 7 months ago
• summitt / Nope-Proxy
  TCP/UDP Non-HTTP Proxy Extension (NoPE) for Burp Suite.
  ☆1,629Updated last year
• tarunkant / Gopherus
  This tool generates gopher link for exploiting SSRF and gaining RCE in various servers
  ☆3,137Updated 2 years ago
• qazbnm456 / awesome-cve-poc
  ✍️ A curated list of CVE PoCs.
  ☆3,424Updated 3 years ago
• pwntester / ysoserial.net
  Deserialization payload generator for a variety of .NET formatters
  ☆3,479Updated 6 months ago
• swisskyrepo / SSRFmap
  Automatic SSRF fuzzer and exploitation tool
  ☆3,254Updated 4 months ago
• JackOfMostTrades / gadgetinspector
  A byte code analyzer for finding deserialization gadget chains in Java applications
  ☆1,041Updated 4 years ago
• d3vilbug / HackBar
  HackBar plugin for Burpsuite
  ☆1,579Updated 4 years ago
• federicodotta / Java-Deserialization-Scanner
  All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
  ☆786Updated 3 years ago
• ptoomey3 / evilarc
  Create tar/zip archives that can exploit directory traversal vulnerabilities
  ☆1,012Updated 4 years ago
• sensepost / reGeorg
  The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
  ☆3,100Updated 4 months ago
• kost / dvcs-ripper
  Rip web accessible (distributed) version control systems: SVN/GIT/HG...
  ☆1,747Updated last year
• BuffaloWill / oxml_xxe
  A tool for embedding XXE/XML exploits into different filetypes
  ☆1,099Updated 7 months ago
• 1N3 / IntruderPayloads
  A collection of Burpsuite Intruder payloads, BurpBounty payloads, fuzz lists, malicious file uploads and web pentesting methodologies and…
  ☆3,824Updated 3 years ago
• ambionics / phpggc
  PHPGGC is a library of PHP unserialize() payloads along with a tool to generate them, from command line or programmatically.
  ☆3,542Updated 3 months ago
• NickstaDB / SerializationDumper
  A tool to dump Java serialization streams in a more human readable form.
  ☆1,040Updated last year
• PortSwigger / turbo-intruder
  Turbo Intruder is a Burp Suite extension for sending large numbers of HTTP requests and analyzing the results.
  ☆1,622Updated last month
• irsdl / IIS-ShortName-Scanner
  latest version of scanners for IIS short filename (8.3) disclosure vulnerability
  ☆1,543Updated last year
• IOActive / jdwp-shellifier
  ☆877Updated last year
• worawit / MS17-010
  MS17-010
  ☆2,199Updated 2 years ago
• nixawk / labs
  Vulnerability Labs for security analysis
  ☆1,173Updated 4 years ago
• abatchy17 / WindowsExploits
  Windows exploits, mostly precompiled. Not being updated. Check https://github.com/SecWiki/windows-kernel-exploits instead.
  ☆1,880Updated 4 years ago
• InteliSecureLabs / Linux_Exploit_Suggester
  Linux Exploit Suggester; based on operating system release number
  ☆1,794Updated 11 years ago
• PortSwigger / http-request-smuggler
  ☆1,002Updated last month
• AonCyberLabs / Windows-Exploit-Suggester
  This tool compares a targets patch levels against the Microsoft vulnerability database in order to detect potential missing patches on th…
  ☆4,088Updated 2 years ago