PortSwigger / freddy-deserialization-bug-finderView external linksLinks
☆43Apr 2, 2020Updated 5 years ago
Alternatives and similar repositories for freddy-deserialization-bug-finder
Users that are interested in freddy-deserialization-bug-finder are comparing it to the libraries listed below
Sorting:
- Research on abusing GitLab Runners☆30Jul 14, 2020Updated 5 years ago
- ☆44Sep 28, 2016Updated 9 years ago
- CVE-2021-3378 | FortiLogger - Unauthenticated Arbitrary File Upload (Metasploit)☆22Feb 28, 2021Updated 4 years ago
- Native Java-based deserialization exploit for WebLogic T3 (and T3S) listeners.☆35Mar 2, 2020Updated 5 years ago
- Files for the Defcon Toronto Introduction to 64-bit Linux Exploitation☆15Feb 23, 2018Updated 7 years ago
- Burp extension to automatically drop requests that match a certain regex.☆10Mar 10, 2023Updated 2 years ago
- siberas JMX exploitation toolkit☆130Mar 13, 2023Updated 2 years ago
- XSTREAM<=1.4.17漏洞复现(CVE-2021-39141、CVE-2021-39144、CVE-2021-39150)☆62Aug 25, 2021Updated 4 years ago
- Kubernetes Kubelet RCE Automated Script. Utilizes both "run" and "exec" debug handlers.☆10Sep 28, 2020Updated 5 years ago
- ☆12Sep 27, 2018Updated 7 years ago
- ☆41Jan 19, 2023Updated 3 years ago
- A Burp Suite extension to help pentesters to bypass WAFs or test their effectiveness using a number of techniques☆735May 4, 2019Updated 6 years ago
- ☆14Aug 13, 2019Updated 6 years ago
- filetransfer via a webrtc datachannel☆13Nov 24, 2017Updated 8 years ago
- 该脚本为Citrix XenMobile 目录遍历漏洞(CVE-2020-8209)批量检测脚本。☆31Dec 7, 2020Updated 5 years ago
- Pulse Secure SSL VPN pre-auth file reading☆50Aug 26, 2019Updated 6 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆75Aug 25, 2021Updated 4 years ago
- All about CVE-2018-14667; From what it is to how to successfully exploit it.☆50Nov 30, 2018Updated 7 years ago
- Gogs CVEs☆80Nov 30, 2019Updated 6 years ago
- ☆11Oct 10, 2018Updated 7 years ago
- CVE-2020-28243 Local Privledge Escalation Exploit in SaltStack Minion☆18Mar 3, 2021Updated 4 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆124Jan 9, 2018Updated 8 years ago
- CVE-2024-23897 jenkins-cli☆15Jan 27, 2024Updated 2 years ago
- ☆14Jul 13, 2020Updated 5 years ago
- ☆18Nov 24, 2020Updated 5 years ago
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆584Sep 7, 2021Updated 4 years ago
- [WIP] a simple UI for Vulhub☆16Jun 10, 2021Updated 4 years ago
- Linux AV tests☆13Apr 23, 2019Updated 6 years ago
- Zimbra XXE+SSRF+UPLOAD Poc☆59Jun 25, 2019Updated 6 years ago
- Tool for pivoting over SMB pipes☆16Jul 20, 2019Updated 6 years ago
- BUGX.IO Vulnerability Review Standard☆13Mar 25, 2020Updated 5 years ago
- neo4j plugin of ByteCodeDL for the IntelliJ Platform. ByteCodeDL-Neo4j-IDEA-Plugin☆16Dec 28, 2023Updated 2 years ago
- This tool is designed to simplify and automate the extraction and organization of useful data from Cobalt Strike logs.☆18Apr 24, 2019Updated 6 years ago
- Parse OpenAPI specifications, previously known as Swagger specifications, into the BurpSuite for automating RESTful API testing – approve…☆45Feb 22, 2024Updated last year
- A static analysis API for finding deserialization attack gadgets☆38Nov 7, 2022Updated 3 years ago
- BloodHound Data Scanner☆45Jul 7, 2020Updated 5 years ago
- Weblogic IIOP CVE-2020-2551☆340Apr 7, 2020Updated 5 years ago
- A VPN Client and Server built using pytun and scapy☆12Jun 2, 2017Updated 8 years ago
- EXIF-based command and control PoC☆15Mar 20, 2020Updated 5 years ago