NotSoCereal: A Deserialization exploit playground
☆54Jan 13, 2022Updated 4 years ago
Alternatives and similar repositories for NotSoCereal-Lab
Users that are interested in NotSoCereal-Lab are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Checklist for pentests, handy commands for to remembers, and a few tools to work on here and there. Far from complete!☆26Jul 28, 2023Updated 2 years ago
- ☆20Sep 6, 2023Updated 2 years ago
- CVE-2024-0044☆12Aug 24, 2024Updated last year
- yataf extracts secrets and paths from files or urls - its best used against javascript files☆52Sep 11, 2024Updated last year
- Framework for blind boolean-based sql injections exploatation. Use it if sqlmap does shit.☆29Mar 26, 2022Updated 4 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click. Zero configuration with optimized deployments.
- Timeinator is an extension for Burp Suite that can be used to perform timing attacks over an unreliable network such as the internet.☆22May 9, 2023Updated 3 years ago
- Pentest stuff☆50Nov 30, 2023Updated 2 years ago
- POC for CVE-2020-9484☆13Feb 10, 2021Updated 5 years ago
- A collection of Turbo Intruder scripts.☆73Feb 1, 2025Updated last year
- Run all your bug bounty VPN profiles in parallel and expose them via multiple local SOCKS proxies.☆113Nov 14, 2021Updated 4 years ago
- Chat.JS - Vulnerable NodeJS Web-App to practice NoSQLi and Deserialization exploitation☆32Mar 21, 2021Updated 5 years ago
- Lots of POC Codes & Preparation materials, scripts, discovery processes in there.☆16Feb 8, 2024Updated 2 years ago
- ☆21May 25, 2025Updated 11 months ago
- Semgrep rules to identify GWT attack surface☆12Apr 28, 2022Updated 4 years ago
- Proton VPN Special Offer - Get 70% off • AdSpecial partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
- Supporting material for the "Hunting Bugs In The Tropics" DEFCON 30 talk☆10Aug 18, 2022Updated 3 years ago
- Basic implementation of certstream to print new subdomains and domains☆36Jul 6, 2021Updated 4 years ago
- TESTR - A Vulnerable Python Web-App to practice XSS and Command Injection☆43Oct 8, 2022Updated 3 years ago
- A Burp Suite extension which augments your proxy traffic by injecting log4shell payloads into headers☆42Dec 13, 2021Updated 4 years ago
- Yet another Werkzeug Console Pin Exploit Explanation☆23Jul 30, 2021Updated 4 years ago
- 各种CMS、各种平台、各种系统、各种软件漏洞的EXP、POC ,该项目将持续更新☆14Apr 18, 2022Updated 4 years ago
- A tool to do basic fingerprinting across a large number of hosts☆11Oct 20, 2020Updated 5 years ago
- Burp Suite extension for testing Passkey systems.☆75Apr 1, 2025Updated last year
- A simple Google Protobuf Decoder for Burp☆43Nov 22, 2022Updated 3 years ago
- Virtual machines for every use case on DigitalOcean • AdGet dependable uptime with 99.99% SLA, simple security tools, and predictable monthly pricing with DigitalOcean's virtual machines, called Droplets.
- Journey so Far☆32Feb 15, 2022Updated 4 years ago
- After getting heavy demand on my Crest CPSA. I am sharing my notes on Network Security Assessment from recommended book for CPSA. Please …☆18Jun 9, 2023Updated 2 years ago
- visually see issues with supported cipher suites☆18Jun 18, 2024Updated last year
- ☆33Jun 19, 2021Updated 4 years ago
- ☆72Jun 26, 2022Updated 3 years ago
- A very high performance Domain Name parser package in Go.☆49Aug 27, 2021Updated 4 years ago
- ☆105Jan 3, 2023Updated 3 years ago
- Simple tool to decrypt Jenkins encrypted strings☆80Jun 27, 2023Updated 2 years ago
- An evil RMI server that can launch an arbitrary command. May be useful for CVE-2021-44228☆12Dec 12, 2021Updated 4 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- A red team emulation tool deveoped by CyCraft Technology☆25Apr 18, 2024Updated 2 years ago
- Socks5man is a Socks5 management tool and Python library☆12Mar 10, 2023Updated 3 years ago
- An attempt to automated hunting for delegation access across the domain☆27Jan 17, 2019Updated 7 years ago
- 7 days of Red Teaming TTPs that your favorite tools may use to acheive a post exploitation goal☆18Apr 17, 2021Updated 5 years ago
- Deeply Embeddable bare-metal C++ standard library☆12Feb 16, 2025Updated last year
- CNVD-2021-30167 用友NC BeanShell远程代码执行☆30Jun 4, 2021Updated 4 years ago
- An intentionally designed broken web application based on REST API☆13May 25, 2022Updated 3 years ago