Alternatives and similar repositories for MySQL-JDBC-Deserialization-Payload

Users that are interested in MySQL-JDBC-Deserialization-Payload are comparing it to the libraries listed below

• Ramos-dev / R9000
  ☆57Updated 5 years ago
• shengqi158 / Jackson-databind-RCE-PoC
  ☆83Updated 8 years ago
• tobechenghuai / Shiro_721_Padding_Oracle_RCE
  Shiro_721 exp 纯手工实现Padding Oracle整个过程
  ☆67Updated 6 years ago
• Afant1 / RemoteObjectInvocationHandler
  bypass JEP290 RaspHook code
  ☆63Updated 5 years ago
• gitrobtest / Java-Security
  Java Security Documents
  ☆81Updated 6 years ago
• SecurityCN / Vulnerability-analysis
  ☆62Updated 5 years ago
• QAX-A-Team / redis_lua_exploit
  ☆146Updated 7 years ago
• QAX-A-Team / SerialWriter
  SerialWriter is an incomplete implementation of Java serialization for study of Java deserialization vulnerabilities.
  ☆104Updated 7 years ago
• jas502n / SHIRO-721
  RememberMe Padding Oracle Vulnerability RCE
  ☆72Updated 6 years ago
• jas502n / fastjson-RCE
  fastjson-1.2.47
  ☆67Updated 6 years ago
• wuppp / shiro_rce_exp
  Shiro RCE (Padding Oracle Attack)
  ☆148Updated 6 years ago
• threedr3am / FindClassInJars
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Updated 5 years ago
• jas502n / fastjson-1.2.58-rce
  fastjson-1.2.58-rce with h2 database
  ☆34Updated 6 years ago
• proudwind / struts2_vulns
  Struts2 vuln env
  ☆43Updated 3 years ago
• kingkaki / Exploit-scripts
  存放一些自己写过的漏洞利用脚本
  ☆48Updated 6 years ago
• pyn3rd / my-presentation-slide
  ☆101Updated 2 years ago
• Ruil1n / after-deserialization-attack
  Java After-Deserialization Attack
  ☆79Updated 4 years ago
• Lonely-night / fastjson_gadgets_scanner
  ☆131Updated 3 years ago
• 1c3z / fileleak
  又一款敏感文件泄漏检测工具
  ☆105Updated 6 years ago
• guimaizi / testing_wave
  ☆59Updated 5 years ago
• fnmsd / ChunkedHTTPAdapter
  参考《利用分块传输吊打所有WAF》修改的requests的Adapter
  ☆98Updated 7 years ago
• bit4woo / Java_deserialize_vuln_lab
  Java 反序列化学习的实验代码 Java_deserialize_vuln_lab
  ☆87Updated 7 years ago
• jas502n / kibana-RCE
  kibana < 6.6.0 未授权远程代码命令执行 (Need Timelion And Canvas),CVE-2019-7609
  ☆89Updated 6 years ago
• kingkaki / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆103Updated 5 years ago
• iSafeBlue / fastjson-autotype-bypass-demo
  fastjson 1.2.68 版本 autotype bypass
  ☆142Updated 3 years ago
• Slzdude / behinder_source
  Behinder3.0 Beta4 源码（Decompile and Fixed）
  ☆206Updated 5 years ago
• AntSwordProject / ant_php_extension
  PHP 扩展, 用于 PHP-FPM、FastCGI、LD_PRELOAD等模式下突破 disabled_functions
  ☆106Updated 4 years ago
• threedr3am / tomcat-cluster-session-sync-exp
  tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包， 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
  ☆212Updated 5 years ago
• is101101 / sqlmap_chunked_proxy
  sqlmap分块传输代理
  ☆48Updated 6 years ago
• MagicZer0 / fastjson-rce-exploit
  exploit for fastjson remote code execution vulnerability
  ☆152Updated 3 years ago