Alternatives and similar repositories for logbackRceDemo

Users that are interested in logbackRceDemo are comparing it to the libraries listed below

• jbaines-r7 / spring4shell_vulnapp
  Intentionally Vulnerable to Spring4Shell
  ☆52Updated 3 years ago
• dschadow / JavaSecurity
  Java web and command line applications demonstrating various security topics
  ☆237Updated this week
• wdahlenburg / spring-gateway-demo
  Sample Spring application to Demonstrate the Gateway Actuator
  ☆47Updated 3 years ago
• cckuailong / spring-cloud-function-SpEL-RCE
  spring-cloud-function SpEL RCE, Vultarget & Poc
  ☆134Updated 3 years ago
• spaceraccoon / spring-boot-actuator-h2-rce
  Sample Spring Boot App Demonstrating RCE via Exposed env Actuator and H2 Database
  ☆107Updated 5 years ago
• frohoff / marshalsec
  ☆74Updated 8 years ago
• snyk / snyk-maven-plugin
  Test and monitor your projects for vulnerabilities with Maven. This plugin is officially maintained by Snyk.
  ☆81Updated 2 months ago
• mogwailabs / rmi-deserialization
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆100Updated 5 years ago
• JavanXD / Demo-Exploit-Jackson-RCE
  Exploiting CVE-2017-7525 demo project with Angular7 frontend and Spring.
  ☆18Updated 6 years ago
• mishmashclone / GrrrDog-Java-Deserialization-Cheat-Sheet
  https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet
  ☆50Updated 3 years ago
• shadowsock5 / jackson-databind-POC
  ☆16Updated 5 years ago
• blipzip / cve-2022-31692
  A project demonstrating an app that is vulnerable to Spring Security authorization bypass CVE-2022-31692
  ☆36Updated 2 years ago
• jas502n / CVE-2019-7238
  Nexus Repository Manager 3 Remote Code Execution without authentication < 3.15.0
  ☆82Updated 5 years ago
• Al1ex / CVE-2020-36179
  CVE-2020-36179~82 Jackson-databind SSRF&RCE
  ☆81Updated 4 years ago
• jas502n / solr_rce
  Apache Solr RCE via Velocity template
  ☆112Updated 5 years ago
• ASTTeam / IAST
  《深入理解IAST交互式应用安全测试》Interactive Application Security Testing.
  ☆13Updated 2 years ago
• ohnonoyesyes / CVE-2023-25194
  ☆93Updated 2 years ago
• mogwailabs / deserialization-filter-blacklists
  Native Java serialization filter blacklist for common gadgets
  ☆20Updated 5 years ago
• jas502n / database-jasypt
  jasypt Decrypt Encrypt
  ☆14Updated 3 years ago
• shadow-horse / CVE-2019-17571
  Apache Log4j 1.2.X存在反序列化远程代码执行漏洞
  ☆78Updated 5 years ago
• l3yx / javaDeserializeNotes
  Java反序列化漏洞学习笔记
  ☆16Updated 5 years ago
• Al1ex / CVE-2020-35728
  CVE-2020-35728 & Jackson-databind RCE
  ☆43Updated 4 years ago
• threedr3am / FindClassInJars
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Updated 5 years ago
• j3ssie / codeql-docker
  Ready to use docker image for CodeQL
  ☆90Updated last year
• cldrn / codeql-queries
  My CodeQL queries collection
  ☆97Updated last year
• iSafeBlue / redis-rce
  Redis RCE 的几种方法
  ☆90Updated last year
• threedr3am / log-agent
  利用agent hock指定的class，在jar运行周期内，用于跟踪被执行的方法，辅助做一些事情，比如挖洞啊
  ☆126Updated 4 years ago
• pwntester / codeql_grehack_workshop
  GreHack 2021 CodeQL for Java workshop
  ☆75Updated 3 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• jas502n / jackson-CVE-2020-8840
  FasterXML/jackson-databind 远程代码执行漏洞
  ☆74Updated 5 years ago