breenmachine / JavaUnserializeExploits

Related projects ⓘ

Alternatives and complementary repositories for JavaUnserializeExploits

• njfox / Java-Deserialization-Exploit
  ☆128Updated 8 years ago
• mbechler / serjs
  A Java serializer in JavaScript
  ☆82Updated 6 years ago
• mogwaisec / mjet
  Mogwai Java Management Extensions (JMX) Exploitation Toolkit
  ☆172Updated 8 years ago
• RUB-NDS / DTD-Attacks
  Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java
  ☆56Updated 8 years ago
• 0ang3el / HQLi-playground
  ☆45Updated 8 years ago
• LinkedInAttic / sometime
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆60Updated 7 years ago
• illikainen / exploits
  ☆88Updated 3 years ago
• PaulSec / HQLmap
  (Deprecated) HQLmap, Automatic tool to exploit HQL injections
  ☆225Updated 4 years ago
• ssexxe / XXEBugFind
  A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications
  ☆72Updated 10 years ago
• schierlm / JavaPayload
  JavaPayload is a collection of pure Java payloads to be used for post-exploitation from pure Java exploits or from common misconfiguratio…
  ☆119Updated 2 years ago
• metalnas / loubia
  Python script to exploit java unserialize on t3 (Weblogic)
  ☆61Updated 7 years ago
• dancezarp / TBDEx
  ☆84Updated 7 years ago
• mseclab / Burp-PyJFuzz
  Burp Suite plugin which implement PyJFuzz for fuzzing web application.
  ☆56Updated 7 years ago
• nccgroup / pcap-burp
  Pcap importer for Burp
  ☆107Updated 3 years ago
• GoSecure / break-fast-serial
  A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs
  ☆54Updated 7 years ago
• firefart / CVE-2018-7600
  CVE-2018-7600 - Drupal 7.x RCE
  ☆71Updated 6 years ago
• zerothoughts / jndipoc
  Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls
  ☆42Updated 8 years ago
• Gifts / XXE-OOB-Exploitation-Toolset-for-Automation
  XXE OOB Exploitation Toolset for Automation
  ☆63Updated 10 years ago
• Lekensteyn / pacemaker
  Heartbleed (CVE-2014-0160) client exploit
  ☆319Updated 8 years ago
• CaledoniaProject / CVE-2018-1270
  Spring messaging STOMP protocol RCE
  ☆114Updated 6 years ago
• monoxgas / Trebuchet
  MS15-076 Privilege Escalation
  ☆98Updated 9 years ago
• vysecurity / CVE-2017-8759
  CVE-2017-8759 - A vulnerability in the SOAP WDSL parser.
  ☆173Updated 7 years ago
• zerothoughts / spring-jndi
  Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization with Spring Framework 4.2.4
  ☆116Updated 5 years ago
• fakhrizulkifli / Defeating-PHP-GD-imagecreatefromgif
  Proof-of-concept to exploit the flaw in the PHP-GD built-in function, imagecreatefromgif()
  ☆121Updated 9 years ago
• riusksk / FlashScanner
  Flash XSS Scanner
  ☆51Updated 8 years ago
• roo7break / serialator
  Python script to exploit CVE-2015-4852.
  ☆30Updated 8 years ago
• sensepost / ms16-098
  Windows 8.1 x64 Exploit for MS16-098 RNGOBJ_Integer_Overflow
  ☆92Updated 7 years ago