NickstaDB / DeserLab

Related projects ⓘ

Alternatives and complementary repositories for DeserLab

• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆162Updated last year
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆124Updated 7 years ago
• h3xstream / http-script-generator
  ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)
  ☆289Updated last year
• nccgroup / freddy
  Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans
  ☆573Updated 3 years ago
• joernchen / xxeserve
  XXE Out of Band Server.
  ☆169Updated last year
• pwntester / SerialKillerBypassGadgetCollection
  Collection of bypass gadgets to extend and wrap ysoserial payloads
  ☆350Updated 2 years ago
• NetSPI / Burp-Extensions
  Central Repo for Burp extensions
  ☆149Updated 3 years ago
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆172Updated 4 years ago
• ONsec-Lab / scripts
  Utils
  ☆264Updated 8 years ago
• Coalfire-Research / java-deserialization-exploits
  A collection of curated Java Deserialization Exploits
  ☆590Updated 3 years ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆326Updated 10 months ago
• NetSPI / JavaSerialKiller
  Burp extension to perform Java Deserialization Attacks
  ☆208Updated 9 months ago
• mbechler / serianalyzer
  A static byte code analyzer for Java deserialization gadget research
  ☆241Updated 7 years ago
• digininja / nosqlilab
  A lab for playing with NoSQL Injection
  ☆128Updated 4 years ago
• mogwailabs / mjet
  MOGWAI LABS JMX exploitation toolkit
  ☆197Updated last year
• doyensec / StandardizedImageProcessingTest
  A test suite built with Mocha/Chai to test for behavioral differences between image libraries for the web
  ☆69Updated 4 years ago
• pyn3rd / CVE-2018-2893
  CVE-2018-2893-PoC
  ☆103Updated 6 years ago
• NytroRST / XSSFuzzer
  XSS Fuzzer is a tool which generates XSS payloads based on user-defined vectors and fuzzing lists.
  ☆138Updated 5 years ago
• ropnop / xxetimes
  An interactive OOB XXE data exfiltration tool
  ☆90Updated 7 years ago
• siberas / sjet
  siberas JMX exploitation toolkit
  ☆128Updated last year
• yandex / burp-molly-pack
  Security checks pack for Burp Suite
  ☆138Updated 6 years ago
• yassineaboukir / CVE-2018-0296
  Script to test for Cisco ASA path traversal vulnerability (CVE-2018-0296) and extract system information.
  ☆201Updated 9 months ago
• pyn3rd / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows
  ☆185Updated 4 years ago
• Lopseg / Jsdir
  Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.
  ☆114Updated 4 years ago
• ozzi- / JWT4B
  JWT Support for Burp
  ☆248Updated 3 months ago
• SpiderLabs / Airachnid-Burp-Extension
  A Burp Extension to test applications for vulnerability to the Web Cache Deception attack
  ☆135Updated 3 years ago
• joaomatosf / JavaDeserH2HC
  Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).
  ☆493Updated 2 years ago
• mogwaisec / mjet
  Mogwai Java Management Extensions (JMX) Exploitation Toolkit
  ☆172Updated 8 years ago
• 5alt / ultrarelay
  poison and relay NTLM credentials
  ☆173Updated 5 years ago
• petercunha / jenkins-rce
  Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!
  ☆295Updated 5 years ago