Alternatives and similar repositories for find-sec-bugs-demos:

Users that are interested in find-sec-bugs-demos are comparing it to the libraries listed below

• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆41Updated last week
• CSPF-Founder / VulnerableSpring
  Vulnerable Java based Web Application
  ☆31Updated 5 years ago
• anandtiwarics / python-burp-rest-api
  Python Package for burprestapi
  ☆16Updated 5 years ago
• OpenSecurityResearch / jmsdigger
  JMSDigger is JMS API basedEnterprise Messaging Application assessment tool
  ☆30Updated 10 years ago
• iriusrisk / RopeyTasks
  Deliberately vulnerable web application
  ☆22Updated 7 years ago
• federicodotta / BurpJDSer-ng-edited
  Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…
  ☆20Updated last year
• pwntester / dotnet-deserialization-scanner
  .NET Deserialization Passive Scanner
  ☆45Updated 7 years ago
• pwntester / XStreamServer
  RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler
  ☆20Updated 11 years ago
• topolik / ois-dos
  Java Deserialization
  ☆26Updated 8 years ago
• tothi / ctfs
  some example ctf writeups
  ☆27Updated 4 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 6 years ago
• laconicwolf / Burp-API-Scripts
  A collection of scripts used to interact with the Burp Rest API
  ☆52Updated 6 years ago
• lpredova / Katyusha
  💣 REST and SOAP web API fuzzer
  ☆26Updated 8 years ago
• PortSwigger / headless-burp
  Provides a suite of Burp extensions and a maven plugin to automate security tests using BurpSuite.
  ☆25Updated 6 years ago
• GoSecure / 44con-code-review-workshop
  References, tools and sample payloads
  ☆10Updated 8 years ago
• yolosec / deserialize-server
  Demo server for testing Java deserialization payloads
  ☆15Updated 8 years ago
• nccgroup / Extractor
  Extension adds a new tab in Burp Suite called Extractor
  ☆42Updated 6 years ago
• dnet / burp-oauth
  OAuth plugin for Burp Suite Extender
  ☆42Updated 6 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆123Updated 7 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• augustd / burp-suite-software-version-checks
  Burp extension to passively scan for applications revealing software version numbers
  ☆31Updated 11 months ago
• PortSwigger / java-deserialization-scanner
  All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities
  ☆27Updated 3 years ago
• PortSwigger / replicator
  Burp extension to help developers replicate findings from pen tests
  ☆70Updated 9 months ago
• securityMB / burp-exceptions
  Simple trick to increase readability of exceptions raised by Burp extensions written in Python
  ☆43Updated 8 years ago
• 4ARMED / terraform-burp-collaborator
  Terraform configuration to build a Burp Private Collaborator Server
  ☆25Updated 7 years ago
• AppSecConsulting / Pentest-Tools
  Penetration Testing Tools Developed by AppSec Consulting.
  ☆48Updated 6 years ago
• ikkisoft / bradamsa
  Burp Suite extension to generate Intruder payloads using Radamsa
  ☆89Updated 7 years ago
• dsopas / rfd-checker
  RFD Checker - security CLI tool to test Reflected File Download issues
  ☆61Updated 6 years ago
• Contrast-Security-OSS / vulnerable-spring-boot-application
  ☆14Updated last year
• tls-attacker / TLS-Attacker-BurpExtension
  ☆38Updated 4 years ago