KTH-LangSec/SerialDetector

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/KTH-LangSec/SerialDetector)

KTH-LangSec / SerialDetector

A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications

☆63

Alternatives and similar repositories for SerialDetector

Users that are interested in SerialDetector are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

Sorting:

nhattm3006 / Android-CTF
View on GitHub
☆14Jul 14, 2020Updated 5 years ago
ZephrFish / Lepus
View on GitHub
Subdomain finder
☆10Mar 13, 2025Updated last year
Contrast-Security-OSS / joogle
View on GitHub
A static analysis API for finding deserialization attack gadgets
☆38Nov 7, 2022Updated 3 years ago
wearearima / poc-cve-2018-1273
View on GitHub
POC for CVE-2018-1273
☆24Jun 5, 2018Updated 7 years ago
Freakboy / Behinder
View on GitHub
Behinder source code
☆175Nov 1, 2021Updated 4 years ago
Managed hosting for WordPress and PHP on Cloudways • Ad
Managed hosting with the flexibility to host WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Cloudways by DigitalOcean.
spaceraccoon / spring-boot-actuator-h2-rce
View on GitHub
Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
☆109Jan 26, 2020Updated 6 years ago
KTH-LangSec / silent-spring
View on GitHub
Silent Spring: Prototype Pollution Leads to Remote Code Execution in Node.js
☆75Jan 21, 2024Updated 2 years ago
qi4L / monitor-Go
View on GitHub
AWD 文件监控
☆29Sep 14, 2023Updated 2 years ago
BishopFox / GadgetProbe
View on GitHub
Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
☆612Mar 4, 2021Updated 5 years ago
denniskniep / interactsh_deploy
View on GitHub
Interactsh deployment to AWS EC2 Instance with Terraform
☆12Dec 29, 2021Updated 4 years ago
woodpecker-framework / woodpecker-bcel
View on GitHub
woodpecker框架专用bcel库
☆12Apr 30, 2021Updated 4 years ago
mlr0p / CVE-2021-33564
View on GitHub
Argument Injection in Dragonfly Ruby Gem
☆16May 26, 2021Updated 4 years ago
dxa4481 / XSSOauthPersistence
View on GitHub
Maintaining account persistence via XSS and Oauth
☆78Jan 7, 2019Updated 7 years ago
peterjson31337 / tetctf2021
View on GitHub
tetctf2020_amf_writeups
☆23Jan 3, 2021Updated 5 years ago
Managed Kubernetes at scale on DigitalOcean • Ad
DigitalOcean Kubernetes includes the control plane, bandwidth allowance, container registry, automatic updates, and more for free.
testanull / ProjectSIM
View on GitHub
☆14Dec 22, 2020Updated 5 years ago
qi4L / Ysoserial-go
View on GitHub
A Go library for generating Java deserialization payloads.
☆155Sep 9, 2024Updated last year
Vang3lis / CLFS_POC
View on GitHub
clfs CVE 的一些 POC 收集
☆16Oct 27, 2022Updated 3 years ago
JackOfMostTrades / gadgetinspector
View on GitHub
A byte code analyzer for finding deserialization gadget chains in Java applications
☆1,080Jun 15, 2021Updated 4 years ago
CodeShield-Security / SPDS
View on GitHub
Efficient and Precise Pointer-Tracking Data-Flow Framework
☆68Dec 10, 2024Updated last year
h2-stack / LL-RASP
View on GitHub
Low-level RASP: Protecting Applications Implemented in High-level Programming Languages
☆69Oct 19, 2025Updated 5 months ago
BlackFan / cspp-tools
View on GitHub
Client-Side Prototype Pollution Tools
☆88Sep 21, 2021Updated 4 years ago
Lucifaer / head_first_javarasp
View on GitHub
一些Java RASP demo
☆11Sep 26, 2019Updated 6 years ago
blacklanternsecurity / blockbuster
View on GitHub
A python-based padding oracle tool
☆20Mar 31, 2026Updated last week
1-Click AI Models by DigitalOcean Gradient • Ad
Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
Ruil1n / after-deserialization-attack
View on GitHub
Java After-Deserialization Attack
☆79Apr 26, 2021Updated 4 years ago
ZeddYu / Public-CTF
View on GitHub
Collect public CTF source code repo
☆48Sep 26, 2021Updated 4 years ago
SaneBow / gym-waf
View on GitHub
WAF Environment for OpenAI Gym
☆15Dec 13, 2020Updated 5 years ago
cuhk-seclab / TChecker
View on GitHub
☆44Jan 30, 2023Updated 3 years ago
aleenzz / .NET_study
View on GitHub
跟.net相关的学习
☆88Jun 24, 2024Updated last year
AlfredBerg / dnsline
View on GitHub
Tool for making it easy to collect dns results from the CLI
☆40Aug 14, 2024Updated last year
BishopFox / json-interop-vuln-labs
View on GitHub
Companion labs to "An Exploration of JSON Interoperability Vulnerabilities"
☆210Mar 9, 2023Updated 3 years ago
A2kaid / TG_Session_Compress_Steal
View on GitHub
steal Windows Telegram Desktop session
☆15Sep 8, 2020Updated 5 years ago
ecbftw / poc
View on GitHub
A collection of published exploits and proof-of-concept code.
☆21Dec 19, 2017Updated 8 years ago
Wordpress hosting with auto-scaling on Cloudways • Ad
Fully Managed hosting built for WordPress-powered businesses that need reliable, auto-scalable hosting. Cloudways SafeUpdates now available.
yzddmr6 / MyPresentations
View on GitHub
My security presentations
☆29Aug 21, 2023Updated 2 years ago
synacktiv / QLinspector
View on GitHub
Finding Java gadget chains with CodeQL
☆186Apr 3, 2026Updated last week
potats0 / AgentMemShellScanner
View on GitHub
清除基于java agent木马
☆79Apr 12, 2021Updated 5 years ago
luelueking / Deserial_Sink_With_JDBC
View on GitHub
Some ReadObject Sink With JDBC
☆245May 8, 2024Updated last year
sbani / CVE-2022-29221-PoC
View on GitHub
CVE-2022-29221 Proof of Concept Code - Smarty RCE
☆16May 25, 2022Updated 3 years ago
FoRTE-Research / winfuzz
View on GitHub
Accelerated execution for fast Windows fuzzing
☆25Jan 9, 2025Updated last year
adamdoupe / enemy-of-the-state
View on GitHub
This novel black-box web vulnerability scanner attempts to infer the state machine of the web application.
☆19Mar 12, 2020Updated 6 years ago