PortSwigger / java-deserialization-scannerLinks
All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
☆28Updated 3 years ago
Alternatives and similar repositories for java-deserialization-scanner
Users that are interested in java-deserialization-scanner are comparing it to the libraries listed below
Sorting:
- YSOSERIAL Integration with burp suite☆41Updated 3 years ago
- The Web Audit Search Engine - Index and Search HTTP Requests and Responses in Web Application Audits with ElasticSearch☆23Updated 6 years ago
- ☆43Updated 5 years ago
- Burp Suite extension to passively scan for applications revealing server error messages☆65Updated last year
- HTML5 WebSocket message fuzzer☆147Updated 6 years ago
- Burp extension to passively scan for applications revealing software version numbers☆32Updated last year
- Full TTY reverse shell over SSH☆58Updated 5 years ago
- Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database☆106Updated 5 years ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆94Updated 3 years ago
- A server vulnerable to XXE that can be used to test payloads using the xxer tool.☆26Updated 7 years ago
- A Burp extension to show the Collaborator client in a tab☆36Updated 2 years ago
- ☆108Updated 3 years ago
- siberas JMX exploitation toolkit☆131Updated 2 years ago
- Java serialization brute force attack tool.☆123Updated 8 years ago
- Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.☆47Updated 4 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 6 years ago
- Proof of concept for CVE-2020-5902☆72Updated 5 years ago
- JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.☆100Updated 6 years ago
- ☆104Updated 5 years ago
- ☆50Updated 5 years ago
- BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.☆66Updated 4 months ago
- Burp extension to filter JSON on the fly with JQ queries in the HTTP message viewer.☆48Updated 4 years ago
- Extension providing view with filtering capabilities for both complete and incomplete requests from all burp tools.☆25Updated 3 years ago
- Burp Wiener API (Legacy)☆62Updated last year
- Custom Parameter Handler extension for Burp Suite.☆44Updated 4 years ago
- A lab for playing with NoSQL Injection☆134Updated 5 years ago
- ☆60Updated 6 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆124Updated 7 years ago
- Fuzzing for LFI using Burpsuite☆65Updated 8 years ago
- Burp extension☆58Updated 7 years ago