Several XStream gadgets ported from ysoserial
☆33Sep 26, 2021Updated 4 years ago
Alternatives and similar repositories for XStream-Gadgets
Users that are interested in XStream-Gadgets are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- Proof of Concepts for unsafe deserialization in Ruby☆17Oct 17, 2024Updated last year
- RmiTaste allows security professionals to detect, enumerate, interact and exploit RMI services by calling remote methods with gadgets fro…☆109Oct 10, 2020Updated 5 years ago
- 通过hosts碰撞发现目标内部系统,扩大攻击面。☆46Aug 11, 2021Updated 4 years ago
- CVE-2021-2109 && Weblogic Server RCE via JNDI☆31Jan 22, 2021Updated 5 years ago
- Custom / Experimental CodeQL queries☆36Apr 21, 2022Updated 3 years ago
- 1-Click AI Models by DigitalOcean Gradient • AdDeploy popular AI models on DigitalOcean Gradient GPU virtual machines with just a single click and start building anything your business needs.
- 个人用于在自动化挖掘gadget时,方便查找gadget chains中class所在jar包,以助于便捷审计测试gadget有效性的那么一个小工具。☆60Mar 25, 2020Updated 6 years ago
- 一个可以自定规则的动扫描器,支持主动和被动扫描☆25Oct 26, 2021Updated 4 years ago
- *Unofficial* lgtm.com CLI — Use at your own risk. Also don't add more than 3K projects to "My projects" list.☆13Feb 21, 2022Updated 4 years ago
- Illustrations of codeql's AST☆12Sep 10, 2021Updated 4 years ago
- ☆17Nov 28, 2021Updated 4 years ago
- Apache Dubbo漏洞测试Demo及其POC☆65Mar 27, 2023Updated 2 years ago
- Spel-research☆26Jun 21, 2022Updated 3 years ago
- HEVD Exploits for fun and learning.☆15Aug 30, 2025Updated 6 months ago
- python编写的多个通达常见漏洞exp☆38Aug 26, 2021Updated 4 years ago
- End-to-end encrypted cloud storage - Proton Drive • AdSpecial offer: 40% Off Yearly / 80% Off First Month. Protect your most important files, photos, and documents from prying eyes.
- The best articles and videos related to computer science and programming I found.☆11Apr 27, 2020Updated 5 years ago
- The Super Vulnerable Java Application (SVJA), as demonstrated in the Roniel and DaRon Podcast Show, is an Apache Struts application desig…☆13Jan 1, 2026Updated 2 months ago
- ☆13Oct 30, 2023Updated 2 years ago
- No longer maintained. Timing attacks on a browsers cache to try to predict websites/subreddits that have been viewed☆13Mar 26, 2022Updated 3 years ago
- Unofficial Dockerfile and scripts for building CodeQL databases for the OpenJDK☆49Jan 7, 2024Updated 2 years ago
- Apache/Alibaba Dubbo <= 2.7.3 PoC Code for CVE-2021-25641 RCE via Deserialization of Untrusted Data; Affects Versions <= 2.7.6 With Diffe…☆53Jun 6, 2021Updated 4 years ago
- ☆13Jun 1, 2021Updated 4 years ago
- 用于网站(HTTP)自动化判断开放和网页快照拍摄☆12Jan 25, 2021Updated 5 years ago
- JVM runtime class loading protection agent.(JVM类加载保护agent)☆48Mar 25, 2021Updated 5 years ago
- DigitalOcean Gradient AI Platform • AdBuild production-ready AI agents using customizable tools or access multiple LLMs through a single endpoint. Create custom knowledge bases or connect external data.
- mvn clean package -DskipTests☆46Apr 28, 2023Updated 2 years ago
- ☆12Jan 9, 2023Updated 3 years ago
- 打CTF实在厌倦了找利用链,就知道一个fastjson的版本,一堆依赖找啊找,头都疼。为了解决这个烦恼,用了卓卓师傅的fastjson黑名单工具和库,自己改造了一下。☆32Jan 3, 2020Updated 6 years ago
- java 内存马系列 实现(Servlets 、组件、Agent)☆10Mar 7, 2022Updated 4 years ago
- ☆31Jun 7, 2021Updated 4 years ago
- Slides from my AD Privesc talk at WAHCKon 2017☆16May 6, 2017Updated 8 years ago
- Leakuidator+ helps users to protect themselves against cross-site leaks, a class of vulnerabilities derived from side-channels built into…☆12Jun 19, 2022Updated 3 years ago
- JAVA IAST Example☆49Dec 13, 2021Updated 4 years ago
- study_summary☆10Aug 8, 2022Updated 3 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- 一个Java攻击框架☆23Nov 27, 2020Updated 5 years ago
- POC for XStream RCE☆13Dec 23, 2013Updated 12 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆43Apr 27, 2020Updated 5 years ago
- ☆38Nov 4, 2020Updated 5 years ago
- Top 2025 Vulnerabilities You Shouldn’t Accept in a Pentest Report☆14Feb 6, 2025Updated last year
- ebpf covert channel rootkit☆15Feb 6, 2024Updated 2 years ago
- ☆17Jun 9, 2016Updated 9 years ago