Alternatives and similar repositories for write-ups:

Users that are interested in write-ups are comparing it to the libraries listed below

• vah13 / Oracle-BI-bugs
  ☆34Updated 5 years ago
• Haxel0rd / haxel0rds
  Some private tools i decided to release for public.
  ☆49Updated 11 months ago
• pimps / gopher-tomcat-deployer
  Gopher Tomcat Deployer
  ☆47Updated 6 years ago
• PalindromeLabs / Java-Deserialization-CVEs
  Compiled dataset of Java deserialization CVEs
  ☆61Updated 4 years ago
• aurainfosec / xss_payloads
  XSS payloads for edge cases
  ☆34Updated 6 years ago
• hackvertor / taborator
  A Burp extension to show the Collaborator client in a tab
  ☆23Updated 2 years ago
• jackadamson / CVE-2021-26700
  RCE in NPM VSCode Extension
  ☆20Updated 3 years ago
• Al1ex / CVE-2020-35728
  CVE-2020-35728 & Jackson-databind RCE
  ☆41Updated 4 years ago
• jas502n / CVE-2019-8451
  Jira未授权SSRF漏洞
  ☆31Updated 5 years ago
• x41sec / BeanStack
  X41 BeanStack - Stack Trace Fingerprinting BETA
  ☆52Updated 4 years ago
• ka1n4t / CVE-2020-17530
  ☆65Updated 4 years ago
• lc / research
  miscellaneous security research stuff
  ☆38Updated 5 years ago
• IdealDreamLast / CVE-2020-9484
  用Kali 2.0复现Apache Tomcat Session反序列化代码执行漏洞
  ☆52Updated 4 years ago
• B1anda0 / CVE-2020-8209
  该脚本为Citrix XenMobile 目录遍历漏洞（CVE-2020-8209）批量检测脚本。
  ☆31Updated 4 years ago
• synacktiv / mojarragadget
  ☆15Updated 3 years ago
• Al1ex / CVE-2020-17530
  S2-061 CVE-2020-17530
  ☆29Updated 4 years ago
• irsl / apache-openoffice-rce-via-uno-links
  ☆35Updated 2 years ago
• hakivvi / ObjectPwnStream
  a Ruby implementation of Java's ObjectInputStream and ObjectOutputStream.
  ☆16Updated 2 years ago
• securifera / CVE-2019-1579
  ☆63Updated 5 years ago
• GrrrDog / Sploits
  Place for random PoCs
  ☆17Updated 4 years ago
• s1kr10s / BurpFuzz
  ☆13Updated 4 years ago
• orangetw / JNDI-Injection-Bypass
  Some payloads of JNDI Injection in JDK 1.8.0_191+
  ☆9Updated 4 years ago
• intruder-io / rebind-server
  A web server designed to shut off on command to exploit DNS rebinding in Chromium-based browsers
  ☆12Updated last year
• EdoardoVignati / java-deserialization-of-untrusted-data-poc
  Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data
  ☆26Updated 3 years ago
• mpgn / CVE-2019-9580
  CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE
  ☆32Updated 5 years ago
• JavanXD / Demo-Exploit-Jackson-RCE
  Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.
  ☆17Updated 6 years ago
• FSecureLABS / N1QLMap
  The tool exfiltrates data from Couchbase database by exploiting N1QL injection vulnerabilities.
  ☆75Updated 4 years ago
• KTH-LangSec / SerialDetector
  A proof-of-concept tool for detection and exploitation Object Injection Vulnerabilities in .NET applications
  ☆62Updated 4 years ago
• atorralba / GHSL_CTF_4
  My solution for GitHub Security Lab CTF 4: CodeQL and Chill - The Java Edition
  ☆19Updated 4 years ago
• PortSwigger / reissue-request-scripter
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆29Updated 3 years ago