Alternatives and similar repositories for java_xxe_2019

Users that are interested in java_xxe_2019 are comparing it to the libraries listed below

• bit4woo / Java_deserialize_vuln_lab
  Java 反序列化学习的实验代码 Java_deserialize_vuln_lab
  ☆87Updated 6 years ago
• codeplutos / Conference
  ☆28Updated 5 years ago
• genxor / Deserialize
  ☆1Updated 6 years ago
• boy-hack / bugbounty-cheatsheet
  A list of interesting payloads, tips and tricks for bug bounty hunters.
  ☆24Updated 5 years ago
• QiAnXinCodeSafe / Legendsec
  奇安信报开源软件漏洞cve所用目录。每个人报漏洞请建立自己的目录。
  ☆45Updated 5 years ago
• kevien / javacode
  some java code i met or i used
  ☆29Updated 6 years ago
• QAX-A-Team / Papers
  Papers
  ☆34Updated 5 years ago
• shadow-horse / CVE-2019-17571
  Apache Log4j 1.2.X存在反序列化远程代码执行漏洞
  ☆78Updated 5 years ago
• l3m0n / vtest
  用于辅助安全工程师漏洞挖掘、测试、复现，集合了mock、httplog、dns tools、xss，可用于测试各类无回显、无法直观判断或特定场景下的漏洞。
  ☆23Updated 6 years ago
• qianl0ng / CVE-2018-2893
  可以直接反弹shell
  ☆47Updated 2 years ago
• Hpd0ger / InFoCollecter
  针对域名/页面的接口爬取，递归模式入库
  ☆22Updated 5 years ago
• bit4woo / GUI_Burp_Extender_para_encrypter
  Burp_Extender_para_encrypter
  ☆39Updated 7 years ago
• pyn3rd / CVE-2018-3252
  CVE-2018-3252-PoC
  ☆74Updated 6 years ago
• SecurityCN / Vulnerability-analysis
  ☆62Updated 5 years ago
• jas502n / kibana-RCE
  kibana < 6.6.0 未授权远程代码命令执行 (Need Timelion And Canvas),CVE-2019-7609
  ☆89Updated 5 years ago
• Ramos-dev / R9000
  ☆58Updated 5 years ago
• SeriousAlpha / py-security-audit-tool
  python security audit tool，用于python源码的代码审计，支持命令注入，sql注入
  ☆62Updated 10 years ago
• jiangsir404 / pbscan
  基于burpsuite headless 的代理式被动扫描系统
  ☆96Updated 5 years ago
• 5alt / VulHint
  VulHint是辅助代码审计的 sublime text 3 插件
  ☆67Updated 6 years ago
• proudwind / struts2_vulns
  Struts2 vuln env
  ☆43Updated 2 years ago
• gitrobtest / Java-Security
  Java Security Documents
  ☆80Updated 5 years ago
• ab1gale / phpcms-2008-CVE-2018-19127
  ☆41Updated 6 years ago
• QAX-A-Team / SerialWriter
  SerialWriter is an incomplete implementation of Java serialization for study of Java deserialization vulnerabilities.
  ☆104Updated 7 years ago
• fnmsd / ChunkedHTTPAdapter
  参考《利用分块传输吊打所有WAF》修改的requests的Adapter
  ☆98Updated 6 years ago
• shengqi158 / Jackson-databind-RCE-PoC
  ☆82Updated 7 years ago
• threedr3am / FindClassInJars
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Updated 5 years ago
• l3m0n / vulenv
  漏洞测试环境 - 方便写扫描器利用复现
  ☆27Updated 5 years ago
• Lonely-night / fastjson_gadgets_scanner
  ☆131Updated 3 years ago
• hex0wn / learn-java-bug
  ☆73Updated 3 years ago
• lnyzx / L-XSS
  Make XSS Great Again
  ☆31Updated 5 years ago