breenmachine/JavaUnserializeExploits external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

breenmachine/JavaUnserializeExploits

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/breenmachine/JavaUnserializeExploits)

Close

breenmachine / JavaUnserializeExploitsView on GitHubMore

• External links
• Readme badge

☆134Nov 6, 2015Updated 10 years ago

Alternatives and similar repositories for JavaUnserializeExploits

Users that are interested in JavaUnserializeExploits are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.

• foxglovesec / JavaUnserializeExploits

  View on GitHub
  ☆503Mar 10, 2016Updated 10 years ago
• r3dxpl0it / Apache-Superset-Remote-Code-Execution-PoC-CVE-2018-8021

  View on GitHub
  CVE-2018-8021 Proof-Of-Concept and Exploit
  ☆105Dec 3, 2018Updated 7 years ago
• Coalfire-Research / java-deserialization-exploits

  View on GitHub
  A collection of curated Java Deserialization Exploits
  ☆592May 16, 2021Updated 5 years ago
• brianwrf / RootHelper

  View on GitHub
  A Bash script that downloads and unzips scripts that will aid with privilege escalation on a Linux system.
  ☆46Jan 25, 2016Updated 10 years ago
• irsl / jackson-rce-via-spel

  View on GitHub
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆124Jan 9, 2018Updated 8 years ago
• Deploy on Railway without the complexity - Free Credits Offer • Ad
  Connect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
• securifera / CVE-2018-6546-Exploit

  View on GitHub
  CVE-2018-6546-Exploit
  ☆41Apr 15, 2018Updated 8 years ago
• mbechler / serjs

  View on GitHub
  A Java serializer in JavaScript
  ☆81May 21, 2018Updated 7 years ago
• pwntester / SerialKillerBypassGadgetCollection

  View on GitHub
  Collection of bypass gadgets to extend and wrap ysoserial payloads
  ☆387Apr 16, 2022Updated 4 years ago
• pwntester / JRE8u20_RCE_Gadget

  View on GitHub
  JRE8u20_RCE_Gadget
  ☆255Jul 1, 2016Updated 9 years ago
• iamultra / ssrfsocks

  View on GitHub
  Creates a SOCK proxy server that transmits data over an SSRF vulnerability
  ☆114Aug 8, 2012Updated 13 years ago
• pwntester / SpringBreaker

  View on GitHub
  Exploit PoC for Spring RCE issue (CVE-2011-2894)
  ☆44Dec 17, 2023Updated 2 years ago
• matthiaskaiser / jmet

  View on GitHub
  Java Message Exploitation Tool
  ☆510Jul 6, 2022Updated 3 years ago
• shengqi158 / svn_git_scanner

  View on GitHub
  用于扫描git，svn泄露
  ☆78Jul 29, 2015Updated 10 years ago
• Cryin / Paper

  View on GitHub
  Web Security Technology & Vulnerability Analysis Whitepapers
  ☆549Jan 1, 2019Updated 7 years ago
• Bare Metal GPUs on DigitalOcean Gradient AI • Ad
  Purpose-built for serious AI teams training foundational models, running large-scale inference, and pushing the boundaries of what's possible.
• njfox / Java-Deserialization-Exploit

  View on GitHub
  ☆128Oct 19, 2016Updated 9 years ago
• getcode2git / exserial

  View on GitHub
  Java Untrusted Deserialization Exploits Tools
  ☆67Dec 13, 2015Updated 10 years ago
• lightless233 / Java-Unserialization-Study

  View on GitHub
  QAQ Just study unserialize vulnerabilities in Java :)
  ☆195Aug 22, 2018Updated 7 years ago
• SecureSkyTechnology / study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095

  View on GitHub
  Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告
  ☆107Dec 13, 2017Updated 8 years ago
• breenmachine / dnsftp

  View on GitHub
  Client/Server scripts to transfer files over DNS. Client scripts are small and only use native tools on the host OS.
  ☆208Jan 24, 2016Updated 10 years ago
• NickstaDB / BaRMIe

  View on GitHub
  Java RMI enumeration and attack tool.
  ☆747Sep 28, 2017Updated 8 years ago
• ilmila / J2EEScan

  View on GitHub
  J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…
  ☆676Oct 29, 2025Updated 6 months ago
• hanc00l / weblogic_unserialize_exploit

  View on GitHub
  java unserialize vul for weblogic exploit
  ☆175Jul 20, 2018Updated 7 years ago
• strozfriedberg / xxe-recursive-download

  View on GitHub
  ☆231Nov 18, 2015Updated 10 years ago
• GPUs on demand by Runpod - Special Offer Available • Ad
  Run AI, ML, and HPC workloads on powerful cloud GPUs—without limits or wasted spend. Deploy GPUs in under a minute and pay by the second.
• brandonprry / vulnerable_soap_service

  View on GitHub
  This is a SOAP service written in C# that has intentional SQL injection vulnerabilties.
  ☆21Nov 27, 2016Updated 9 years ago
• OpenSecurityResearch / flash-xdomain-xploit

  View on GitHub
  ActionScript Proof of Concept to perform cross-domain reads
  ☆16Aug 26, 2013Updated 12 years ago
• GrrrDog / ZeroNights-HackQuest-2016

  View on GitHub
  2 web tasks from ZeroNights HackQuest 2016
  ☆50Mar 24, 2017Updated 9 years ago
• Tom4t0 / My-CTF-Challenges

  View on GitHub
  ☆17May 29, 2018Updated 7 years ago
• aipengjie / vulscans

  View on GitHub
  check cmd execute
  ☆14Feb 4, 2017Updated 9 years ago
• alanbaumgartner / Aurora

  View on GitHub
  Aurora Remote Administration Tool
  ☆20Apr 16, 2018Updated 8 years ago
• dschadow / Java-Web-Security

  View on GitHub
  Java-Web-Security - Sichere Webanwendungen mit Java entwickeln
  ☆222May 11, 2026Updated last week
• mackleadmire / CVE-2018-3191-Rce-Exploit

  View on GitHub
  ☆17Oct 25, 2018Updated 7 years ago
• GoSecure / break-fast-serial

  View on GitHub
  A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
  ☆55Mar 27, 2017Updated 9 years ago
• Open source password manager - Proton Pass • Ad
  Securely store, share, and autofill your credentials with Proton Pass, the end-to-end encrypted password manager trusted by millions.
• nccgroup / freddy

  View on GitHub
  Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans
  ☆584Sep 7, 2021Updated 4 years ago
• silentsignal / burp-image-size

  View on GitHub
  Image size issues plugin for Burp Suite
  ☆95Jun 27, 2018Updated 7 years ago
• pathetiq / BurpSmartBuster

  View on GitHub
  A Burp Suite content discovery plugin that add the smart into the Buster!
  ☆378Oct 12, 2020Updated 5 years ago
• olliencc / appsec-vulnerability-periodic-table

  View on GitHub
  Application Security Vulnerability Periodic Table
  ☆14Aug 25, 2014Updated 11 years ago
• mpgn / CVE-2019-0192

  View on GitHub
  RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl
  ☆210Mar 10, 2019Updated 7 years ago
• airman604 / jdbc-backdoor

  View on GitHub
  A fake JDBC driver that allows OS command execution.
  ☆126Oct 2, 2022Updated 3 years ago
• mogwaisec / mjet

  View on GitHub
  Mogwai Java Management Extensions (JMX) Exploitation Toolkit
  ☆175Jul 21, 2016Updated 9 years ago