Alternatives and similar repositories for tools

Users that are interested in tools are comparing it to the libraries listed below

• jas502n / Burp_AES_Plugin
  Burpsuite Plugin For AES Crack
  ☆38Updated 5 years ago
• samsbp / java-file-ftp
  POC for leaking java version through file and ftp protocols
  ☆24Updated 5 years ago
• Maskhe / CVE-2020-15148-bypasses
  几条关于CVE-2020-15148（yii2反序列化）的绕过
  ☆75Updated 5 years ago
• EvilPulsar / S2-061
  some struts tag , attributes which out of the range will call SetDynamicAttribute() function, it will cause ONGL expression execute
  ☆70Updated 4 years ago
• b1ngz / spring-boot-actuator-cloud-vul
  Spring Boot Actuator + Spring Cloud Vul Env
  ☆19Updated 5 years ago
• OneSourceCat / BcelPayloadGenerator
  A fastjson payload generator
  ☆58Updated 5 years ago
• jas502n / BurpSuite-Plugin
  Plugin For BurpSuite (Pentester)
  ☆36Updated 2 years ago
• LandGrey / flink-unauth-rce
  exploit Apache Flink Web Dashboard unauth rce on right way by python2 scripts
  ☆90Updated 6 years ago
• Ramos-dev / R9000
  ☆58Updated 5 years ago
• Symbo1 / HackerOne-Staffs
  HackerOne Staffs
  ☆29Updated 5 years ago
• jas502n / fastjson-1.2.61-RCE
  fastjson-1.2.61-RCE
  ☆33Updated 6 years ago
• hex0wn / learn-java-bug
  ☆73Updated 3 years ago
• aboutbo / tools
  ☆19Updated 4 years ago
• fairyming / CVE-2020-8840
  CVE-2020-8840：FasterXML/jackson-databind 远程代码执行漏洞
  ☆36Updated 5 years ago
• jiangsir404 / Xss-Sql-Fuzz
  burpsuite 插件对GP所有参数(过滤特殊参数)一键自动添加xss sql payload 进行fuzz
  ☆63Updated 6 years ago
• mishmashclone / GrrrDog-Java-Deserialization-Cheat-Sheet
  https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet
  ☆51Updated 4 years ago
• jas502n / fastjson-1.2.60-rce
  autoType enable
  ☆36Updated 6 years ago
• securitysamurai / FuzzDB
  A database of options to use when pen testing an application. Sample XSS, SQLi and much more. It's been gathered over time. It's not perf…
  ☆16Updated 5 years ago
• Al1ex / CVE-2020-36179
  CVE-2020-36179~82 Jackson-databind SSRF&RCE
  ☆81Updated 4 years ago
• pyn3rd / Apache-Tomcat-MongoDB-Remote-Code-Execution
  Apache Tomcat + MongoDB Remote Code Execution
  ☆113Updated 4 years ago
• jas502n / CVE-2020-26259
  CVE-2020-26259: XStream is vulnerable to an Arbitrary File Deletion on the local host when unmarshalling as long as the executing process…
  ☆25Updated 4 years ago
• jas502n / kibana-RCE
  kibana < 6.6.0 未授权远程代码命令执行 (Need Timelion And Canvas),CVE-2019-7609
  ☆89Updated 6 years ago
• potats0 / cve_2020_14644
  ☆69Updated 5 years ago
• jas502n / CVE-2019-2890
  CVE-2019-2890 WebLogic 反序列化RCE漏洞
  ☆44Updated 5 years ago
• LuckyC4t / shiro-urldns
  shiro反序列化检测(只是个玩具23333)
  ☆11Updated last year
• Ruil1n / after-deserialization-attack
  Java After-Deserialization Attack
  ☆79Updated 4 years ago
• z1Ro0 / tomcat_nofile_webshell
  Tomcat基于动态注册Filter的无文件Webshell
  ☆26Updated 5 years ago
• Dor-Tumarkin / CVE-2019-17564-FastJson-Gadget
  Basic code for creating the Alibaba FastJson + Spring gadget chain, as used to exploit Apache Dubbo in CVE-2019-17564 - more information …
  ☆16Updated 2 years ago
• tobechenghuai / Shiro_721_Padding_Oracle_RCE
  Shiro_721 exp 纯手工实现Padding Oracle整个过程
  ☆67Updated 5 years ago
• MagicZer0 / Weblogic_CVE-2020-2883_POC
  Proof of concept for Weblogic CVE-2020-2883
  ☆15Updated 5 years ago