Alternatives and similar repositories for Struts2-Vuln

Users that are interested in Struts2-Vuln are comparing it to the libraries listed below

• iSafeBlue / fastjson-autotype-bypass-demo
  fastjson 1.2.68 版本 autotype bypass
  ☆142Updated 3 years ago
• Afant1 / JavaSearchTools
  ☆61Updated 5 years ago
• jas502n / CVE-2019-2888
  WebLogic EJBTaglibDescriptor XXE漏洞(CVE-2019-2888)
  ☆59Updated 6 years ago
• uknowsec / BurpSuite-Extender-fastjson
  Reference：https://www.w2n1ck.com/article/44/
  ☆155Updated 5 years ago
• kingkaki / Struts2-Vulenv
  struts2 漏洞环境源代码
  ☆75Updated 3 years ago
• kingkaki / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆103Updated 5 years ago
• 1c3z / fileleak
  又一款敏感文件泄漏检测工具
  ☆105Updated 6 years ago
• jas502n / xxl-job
  xxl-job RESTful API RCE
  ☆74Updated 4 years ago
• langligelang / CAS_EXP
  CAS 硬编码 远程代码执行漏洞
  ☆125Updated 4 years ago
• timwhitez / Frog-Fp
  🐸fingerprint detect framework 批量深度指纹识别框架
  ☆121Updated 2 months ago
• Maskhe / vuls
  收集整理一些漏洞，利用方法，poc等等，方便快速查阅
  ☆58Updated 4 years ago
• iSafeBlue / redis-rce
  Redis RCE 的几种方法
  ☆90Updated last year
• jas502n / SHIRO-550
  Shiro RememberMe 1.2.4 反序列化 漏洞
  ☆56Updated 6 years ago
• bit4woo / secqa
  解答开发关于安全漏洞的常见问题
  ☆41Updated 5 years ago
• potats0 / javaSerializationTools
  ☆143Updated 5 years ago
• guimaizi / testing_wave
  ☆59Updated 5 years ago
• jas502n / SHIRO-721
  RememberMe Padding Oracle Vulnerability RCE
  ☆72Updated 6 years ago
• rufherg / WebLogic_Basic_Poc
  用于WebLogic poc及exp测试的基础脚本，后续将集成各版本poc库
  ☆94Updated 5 years ago
• lalajun / RMIDeserialize
  RMI 反序列化环境 一步步
  ☆213Updated 5 years ago
• w0x68y / bypassWAF
  bypassD盾、安全狗、云锁
  ☆108Updated 4 years ago
• Y4er / javaagent-tomcat-memshell
  使用java agent反序列化注入内存shell
  ☆68Updated 5 years ago
• 1135 / Kong_exploit
  ☆41Updated 5 years ago
• fuhei / tongda_rce
  通达OA RCE漏洞
  ☆78Updated 5 years ago
• DVPNET / Report_Public
  DVPNET 公开漏洞知识库
  ☆94Updated 4 years ago
• DSO-Lab / defvul
  DSO-Lab 漏洞研究成果整理
  ☆83Updated 3 years ago
• r35tart / RedisDirScan
  此脚本用于测试 Rdies 未授权访问，在没权限写ssh私钥和定时任务又不知道web绝对路径的情况下，进行WEB目录探测
  ☆73Updated 6 years ago
• Conanjun / passive-scan-client-and-sendto
  burp被动扫描自动转发和手动重发插件
  ☆51Updated 5 years ago
• r00tuser111 / ActuatorExploitTools
  一款用于攻击spring boot actuator的集成环境，目前集成三种攻击方式，支持1.x、2.x
  ☆86Updated 4 years ago
• TheKingOfDuck / paramFuzzer
  一款高效的参数fuzz工具|A faster param fuzzing test tool
  ☆102Updated 5 years ago
• NS-Sp4ce / MoAn_Honey_Pot_Urls
  X安蜜罐用的一些存在JSonp劫持的API
  ☆94Updated 4 years ago