PortSwigger/freddy-deserialization-bug-finder external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

PortSwigger/freddy-deserialization-bug-finder

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/PortSwigger/freddy-deserialization-bug-finder)

Close

PortSwigger / freddy-deserialization-bug-finderView on GitHubMore

• External links
• Readme badge

☆43Apr 2, 2020Updated 5 years ago

Alternatives and similar repositories for freddy-deserialization-bug-finder

Users that are interested in freddy-deserialization-bug-finder are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• attackercan / burp-xss-sql-plugin

  View on GitHub
  ☆44Sep 28, 2016Updated 9 years ago
• sunny0day / burp-auto-drop

  View on GitHub
  Burp extension to automatically drop requests that match a certain regex.
  ☆10Mar 10, 2023Updated 3 years ago
• Frichetten / gitlab-runner-research

  View on GitHub
  Research on abusing GitLab Runners
  ☆31Jul 14, 2020Updated 5 years ago
• 3xp10it / paper

  View on GitHub
  ☆12Sep 27, 2018Updated 7 years ago
• nccgroup / BurpSuiteHTTPSmuggler

  View on GitHub
  A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques
  ☆738May 4, 2019Updated 6 years ago
• Proton VPN Special Offer - Get 70% off • Ad
  Special partner offer. Trusted by over 100 million users worldwide. Tested, Approved and Recommended by Experts.
• zwjjustdoit / Xstream-1.4.17

  View on GitHub
  XSTREAM<=1.4.17漏洞复现（CVE-2021-39141、CVE-2021-39144、CVE-2021-39150）
  ☆62Aug 25, 2021Updated 4 years ago
• PortSwigger / j2ee-scan

  View on GitHub
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆75Aug 25, 2021Updated 4 years ago
• erberkan / fortilogger_arbitrary_fileupload

  View on GitHub
  CVE-2021-3378 | FortiLogger - Unauthenticated Arbitrary File Upload (Metasploit)
  ☆22Feb 28, 2021Updated 5 years ago
• nccgroup / freddy

  View on GitHub
  Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans
  ☆583Sep 7, 2021Updated 4 years ago
• siberas / sjet

  View on GitHub
  siberas JMX exploitation toolkit
  ☆130Mar 13, 2023Updated 3 years ago
• PortSwigger / openapi-parser

  View on GitHub
  Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approve…
  ☆46Feb 22, 2024Updated 2 years ago
• hausec / Set-RBCDBytes

  View on GitHub
  ☆18Nov 24, 2020Updated 5 years ago
• imjdl / CVE-2019-11510-poc

  View on GitHub
  Pulse Secure SSL VPN pre-auth file reading
  ☆50Aug 26, 2019Updated 6 years ago
• superkojiman / dc416-exploitdev-intro

  View on GitHub
  Files for the Defcon Toronto Introduction to 64-bit Linux Exploitation
  ☆15Feb 23, 2018Updated 8 years ago
• 1-Click AI Models by DigitalOcean Gradient • Ad
  Deploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
• JannisKirschner / Horn3t

  View on GitHub
  Powerful Visual Subdomain Enumeration at the Click of a Mouse
  ☆137Jun 6, 2019Updated 6 years ago
• PortSwigger / taborator

  View on GitHub
  A Burp extension to show the Collaborator client in a tab
  ☆36Dec 23, 2022Updated 3 years ago
• secure-software-engineering / SPDS-experiments

  View on GitHub
  ☆11Oct 10, 2018Updated 7 years ago
• TheZ3ro / gogsownz

  View on GitHub
  Gogs CVEs
  ☆80Nov 30, 2019Updated 6 years ago
• Bort-Millipede / WLT3Serial

  View on GitHub
  Native Java-based deserialization exploit for WebLogic T3 (and T3S) listeners.
  ☆35Mar 2, 2020Updated 6 years ago
• B1anda0 / CVE-2020-8209

  View on GitHub
  该脚本为Citrix XenMobile 目录遍历漏洞（CVE-2020-8209）批量检测脚本。
  ☆31Dec 7, 2020Updated 5 years ago
• NetSec-Focus / netsec-focus.learningresources

  View on GitHub
  ☆14Aug 13, 2019Updated 6 years ago
• ah8r / csrf

  View on GitHub
  CSRF Scanner Extension for Burp Suite Pro
  ☆20Jun 5, 2018Updated 7 years ago
• masahiro331 / CVE-2020-8165

  View on GitHub
  ☆41Jan 19, 2023Updated 3 years ago
• GPU virtual machines on DigitalOcean Gradient AI • Ad
  Get to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
• aipengjie / reCAPTCHA

  View on GitHub
  A Burp Suite Extender that recognize CAPTCHA and use for intruder payload
  ☆18Dec 28, 2017Updated 8 years ago
• Sean-McRae / Kubernetes-Kubelet-RCE

  View on GitHub
  Kubernetes Kubelet RCE Automated Script. Utilizes both "run" and "exec" debug handlers.
  ☆10Sep 28, 2020Updated 5 years ago
• aurainfosec / xss_payloads

  View on GitHub
  XSS payloads for edge cases
  ☆34Nov 13, 2018Updated 7 years ago
• syriusbughunt / CVE-2018-14667

  View on GitHub
  All about CVE-2018-14667; From what it is to how to successfully exploit it.
  ☆50Nov 30, 2018Updated 7 years ago
• BytecodeDL / graphdb-intellij-plugin

  View on GitHub
  neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin
  ☆16Dec 28, 2023Updated 2 years ago
• annmuor / freeaudit

  View on GitHub
  Packaging audit toolkit using vulners.com vulnerability database
  ☆20Apr 9, 2018Updated 7 years ago
• mogwailabs / deserialization-filter-blacklists

  View on GitHub
  Native Java serialization filter blacklist for common gadgets
  ☆20Sep 12, 2019Updated 6 years ago
• PortSwigger / xss-validator

  View on GitHub
  This is a burp intruder extender that is designed for automation and validation of XSS vulnerabilities.
  ☆92Feb 10, 2022Updated 4 years ago
• staaldraad / wsproxy

  View on GitHub
  A websocket proxy
  ☆13Nov 13, 2017Updated 8 years ago
• DigitalOcean Gradient AI Platform • Ad
  Build production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
• TestingPens / Constole

  View on GitHub
  Scan for and exploit Consul agents
  ☆39Jun 11, 2019Updated 6 years ago
• u238 / grafana-CVE-2018-15727

  View on GitHub
  a small utility to generate a cookie in order to exploit a grafana vulnerability (CVE-2018-15727)
  ☆22Aug 31, 2018Updated 7 years ago
• irsl / jackson-rce-via-spel

  View on GitHub
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆124Jan 9, 2018Updated 8 years ago
• quahac / burp-intruder-hashcat-maskprocessor

  View on GitHub
  ☆19Oct 5, 2020Updated 5 years ago
• redhuntlabs / BurpSuite-Asset_Discover

  View on GitHub
  Burp Suite extension to discover assets from HTTP response.
  ☆233Jan 22, 2025Updated last year
• PortSwigger / active-scan-plus-plus

  View on GitHub
  ActiveScan++ Burp Suite Plugin
  ☆247Updated this week
• mpgn / CVE-2019-0192

  View on GitHub
  RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl
  ☆210Mar 10, 2019Updated 7 years ago