Alternatives and similar repositories for fastjson_gadgets_scanner

Users that are interested in fastjson_gadgets_scanner are comparing it to the libraries listed below

• QAX-A-Team / SerialWriter
  SerialWriter is an incomplete implementation of Java serialization for study of Java deserialization vulnerabilities.
  ☆105Updated 7 years ago
• zsxsoft / reGeorg
  A modified reGeorg for One-line PHP Shell.
  ☆86Updated 6 years ago
• proudwind / struts2_vulns
  Struts2 vuln env
  ☆43Updated 2 years ago
• shengqi158 / Jackson-databind-RCE-PoC
  ☆82Updated 7 years ago
• QAX-A-Team / redis_lua_exploit
  ☆143Updated 7 years ago
• gitrobtest / Java-Security
  Java Security Documents
  ☆80Updated 5 years ago
• jas502n / fastjson-RCE
  fastjson-1.2.47
  ☆66Updated 6 years ago
• bit4woo / Java_deserialize_vuln_lab
  Java 反序列化学习的实验代码 Java_deserialize_vuln_lab
  ☆87Updated 6 years ago
• LeadroyaL / java-xxe-defense-demo
  java xxe defense demo
  ☆49Updated 6 years ago
• jas502n / SHIRO-721
  RememberMe Padding Oracle Vulnerability RCE
  ☆71Updated 5 years ago
• Ramos-dev / R9000
  ☆58Updated 5 years ago
• 5alt / VulHint
  VulHint是辅助代码审计的 sublime text 3 插件
  ☆67Updated 6 years ago
• threedr3am / tomcat-cluster-session-sync-exp
  tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包， 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
  ☆213Updated 5 years ago
• codeplutos / MySQL-JDBC-Deserialization-Payload
  MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload
  ☆13Updated 5 years ago
• aRe00t / rce-over-spark
  Remote Command Execution Over Spark
  ☆97Updated 7 years ago
• SecurityCN / Vulnerability-analysis
  ☆62Updated 5 years ago
• codeplutos / java-security-manager-bypass
  ☆147Updated 6 years ago
• lightless233 / Java-Unserialization-Study
  QAQ Just study unserialize vulnerabilities in Java :)
  ☆196Updated 7 years ago
• Ruil1n / after-deserialization-attack
  Java After-Deserialization Attack
  ☆79Updated 4 years ago
• cowtowncoder / jackson-compat-minor
  Test repository for verifying compatibility between adjacent minor versions
  ☆36Updated 5 months ago
• lightless233 / geye
  🚀Faster Github Monitor🚀
  ☆104Updated 2 years ago
• AntSwordProject / ant_php_extension
  PHP 扩展, 用于 PHP-FPM、FastCGI、LD_PRELOAD等模式下突破 disabled_functions
  ☆104Updated 3 years ago
• jas502n / kibana-RCE
  kibana < 6.6.0 未授权远程代码命令执行 (Need Timelion And Canvas),CVE-2019-7609
  ☆89Updated 5 years ago
• 0Kee-Team / JavaProbe
  A Java runtime information-gathering tool which uses the Java Attach API for information acquisition
  ☆204Updated 4 years ago
• MagicZer0 / fastjson-rce-exploit
  exploit for fastjson remote code execution vulnerability
  ☆152Updated 2 years ago
• Afant1 / RemoteObjectInvocationHandler
  bypass JEP290 RaspHook code
  ☆62Updated 4 years ago
• wh1t3p1g / Struts2Environment
  Struts2 历史版本的漏洞环境
  ☆84Updated 8 years ago
• threedr3am / FindClassInJars
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Updated 5 years ago
• neverlovelynn / chrome_headless_xss
  A plugin to check xss by using chrome_headless
  ☆52Updated 6 years ago
• kingkaki / Struts2-Vulenv
  struts2 漏洞环境源代码
  ☆75Updated 3 years ago