breenmachine / JavaUnserializeExploits

Related projects ⓘ

Alternatives and complementary repositories for JavaUnserializeExploits

• mbechler / serjs
  A Java serializer in JavaScript
  ☆82Updated 6 years ago
• njfox / Java-Deserialization-Exploit
  ☆128Updated 8 years ago
• mogwaisec / mjet
  Mogwai Java Management Extensions (JMX) Exploitation Toolkit
  ☆172Updated 8 years ago
• frohoff / inspector-gadget
  Primitive tool for exploring/querying Java classes via the Tinkerpop Gremlin graph traversal language
  ☆104Updated 8 years ago
• dancezarp / TBDEx
  ☆84Updated 7 years ago
• RUB-NDS / DTD-Attacks
  Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java
  ☆56Updated 8 years ago
• ssexxe / XXEBugFind
  A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications
  ☆72Updated 10 years ago
• 0ang3el / HQLi-playground
  ☆45Updated 8 years ago
• illikainen / exploits
  ☆88Updated 3 years ago
• nccgroup / pcap-burp
  Pcap importer for Burp
  ☆107Updated 3 years ago
• metalnas / loubia
  Python script to exploit java unserialize on t3 (Weblogic)
  ☆61Updated 7 years ago
• LinkedInAttic / sometime
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆60Updated 7 years ago
• vysecurity / CVE-2017-8759
  CVE-2017-8759 - A vulnerability in the SOAP WDSL parser.
  ☆173Updated 7 years ago
• PaulSec / HQLmap
  (Deprecated) HQLmap, Automatic tool to exploit HQL injections
  ☆225Updated 4 years ago
• foxglovesec / JavaUnserializeExploits
  ☆492Updated 8 years ago
• CaledoniaProject / CVE-2018-1270
  Spring messaging STOMP protocol RCE
  ☆114Updated 6 years ago
• TheRook / CSRF-Request-Builder
  ☆77Updated 8 years ago
• fakhrizulkifli / Defeating-PHP-GD-imagecreatefromgif
  Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromgif()
  ☆121Updated 9 years ago
• wonderqs / Blade
  A webshell connection tool with customized WAF bypass payloads
  ☆126Updated 6 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆121Updated 6 years ago
• mseclab / Burp-PyJFuzz
  Burp Suite plugin which implement PyJFuzz for fuzzing web application.
  ☆56Updated 7 years ago
• zerothoughts / jndipoc
  Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls
  ☆42Updated 8 years ago
• GDSSecurity / Jetleak-Testing-Script
  Script to test if a server is vulnerable to the JetLeak vulnerability
  ☆144Updated 8 years ago
• Hood3dRob1n / CVE-2016-3714
  ImaegMagick Code Execution (CVE-2016-3714)
  ☆68Updated 8 years ago
• silentsignal / burp-image-size
  Image size issues plugin for Burp Suite
  ☆93Updated 6 years ago
• schierlm / JavaPayload
  JavaPayload is a collection of pure Java payloads to be used for post-exploitation from pure Java exploits or from common misconfiguratio…
  ☆119Updated 2 years ago