Alternatives and similar repositories for CVE-2020-8840

Users that are interested in CVE-2020-8840 are comparing it to the libraries listed below

• EvilPulsar / S2-061
  some struts tag , attributes which out of the range will call SetDynamicAttribute() function, it will cause ONGL expression execute
  ☆70Updated 4 years ago
• TheKingOfDuck / Copy2Java
  一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。
  ☆50Updated 3 years ago
• jas502n / SHIRO-550
  Shiro RememberMe 1.2.4 反序列化 漏洞
  ☆55Updated 6 years ago
• r00tuser111 / ActuatorExploitTools
  一款用于攻击spring boot actuator的集成环境，目前集成三种攻击方式，支持1.x、2.x
  ☆86Updated 4 years ago
• Al1ex / CVE-2020-36179
  CVE-2020-36179~82 Jackson-databind SSRF&RCE
  ☆81Updated 4 years ago
• ldbfpiaoran / springboot-acl-bypass
  springboot getRequestURI acl bypass
  ☆37Updated 5 years ago
• jkgh006 / assetscan
  资产扫描工具
  ☆46Updated 5 years ago
• jas502n / xxl-job
  xxl-job RESTful API RCE
  ☆74Updated 4 years ago
• jas502n / SpringBoot_Actuator_RCE
  SpringBoot_Actuator_RCE
  ☆96Updated 5 years ago
• UnicodeSec / Blogs
  宽字节安全团队的博客
  ☆31Updated 4 years ago
• potats0 / cve_2020_14644
  ☆69Updated 5 years ago
• OneSourceCat / BcelPayloadGenerator
  A fastjson payload generator
  ☆58Updated 5 years ago
• jas502n / fastjson-1.2.61-RCE
  fastjson-1.2.61-RCE
  ☆33Updated 6 years ago
• iSafeBlue / redis-rce
  Redis RCE 的几种方法
  ☆90Updated last year
• Ramos-dev / R9000
  ☆58Updated 5 years ago
• 0x141 / ShiroRce-Burp
  ☆41Updated 5 years ago
• jas502n / Shiro_Xray
  CommonsBeanutils1,CommonsCollectionsK1
  ☆58Updated 4 years ago
• ramoncjs3 / CVE-2019-0230
  CVE-2019-0230 & s2-059 poc.
  ☆36Updated 5 years ago
• Wfzsec / ysoserial-poc
  记录调试分析ysoserial系列的学习过程，主要包含手动构造的一些poc，便于加深对漏洞和工具的理解
  ☆30Updated 5 years ago
• volcanohatred / webshell-bypass
  webshell-bypass
  ☆74Updated 5 years ago
• fairyming / CVE-2020-9548
  CVE-2020-9548：FasterXML/jackson-databind 远程代码执行漏洞
  ☆24Updated 5 years ago
• 1135 / Kong_exploit
  ☆41Updated 5 years ago
• tobechenghuai / Shiro_721_Padding_Oracle_RCE
  Shiro_721 exp 纯手工实现Padding Oracle整个过程
  ☆67Updated 5 years ago
• Afant1 / RemoteObjectInvocationHandler
  bypass JEP290 RaspHook code
  ☆62Updated 5 years ago
• TheKingOfDuck / JNDI-Injection-Exploit
  JNDI注入测试工具改版（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,et…
  ☆48Updated 4 years ago
• conjojo / Microsoft_Exchange_Server_SSRF_CVE-2021-26855
  Microsoft Exchange Server SSRF漏洞(CVE-2021-26855)
  ☆36Updated 4 years ago
• jas502n / Burp_AES_Plugin
  Burpsuite Plugin For AES Crack
  ☆38Updated 5 years ago
• mishmashclone / GrrrDog-Java-Deserialization-Cheat-Sheet
  https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet
  ☆51Updated 4 years ago
• threedr3am / FindClassInJars
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Updated 5 years ago
• Jumbo-WJB / burp_find_shiro
  通过burp代理流量寻找shiro站点
  ☆60Updated 5 years ago