cschneider4711 / DeserializationExercisesLinks
☆12Updated 6 years ago
Alternatives and similar repositories for DeserializationExercises
Users that are interested in DeserializationExercises are comparing it to the libraries listed below
Sorting:
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 6 years ago
- Study about HQL injection exploitation.☆51Updated 9 years ago
- A collection of published exploits and proof-of-concept code.☆21Updated 7 years ago
- OWASP Skanda - SSRF Exploitation Framework☆38Updated 11 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- Multithreaded Padding Oracle Attack on Oracle OAM (CVE-2018-2879)☆25Updated 5 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- ☆1Updated 6 years ago
- Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.☆12Updated 6 years ago
- CVE-2020-12828 PoC and Analysis.☆29Updated 4 years ago
- All about CVE-2018-14667; From what it is to how to successfully exploit it.☆50Updated 6 years ago
- A simple scanner to find and brute force tomcat manager logins☆28Updated 5 years ago
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 8 years ago
- Burp extension to passively scan for applications revealing software version numbers☆31Updated last year
- A tool to analyse JMX API security level.☆43Updated 10 years ago
- ☆38Updated 4 years ago
- Another plugin for CRLF vulnerability detection☆26Updated 8 years ago
- Utilities for creating Burp Suite Extensions.☆21Updated 7 months ago
- Scan for open S3 buckets and dump☆37Updated 7 years ago
- ☆29Updated 7 years ago
- My IDA scripts, tips and testing techniques for Thick Client applications.☆17Updated 10 years ago
- Proof of concept written in Python to show that in some situations a SSRF vulnerability can be used to steal NTLMv1/v2 hashes.☆57Updated 7 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- CVE-2017-10271 WEBLOGIC RCE (TESTED)☆39Updated 7 years ago
- Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…☆20Updated last year
- public exploits☆35Updated 2 years ago
- Terraform configuration to build a Burp Private Collaborator Server☆25Updated 7 years ago
- CVE-2019-9580 - StackStorm: exploiting CORS misconfiguration (null origin) to gain RCE☆32Updated 6 years ago
- Automate SSH communication with firewalls, switches, etc.☆26Updated 7 years ago
- Burp extension to decode NTLM SSP headers and extract domain/host information☆32Updated 4 years ago