frohoff / jdeserialize
From https://code.google.com/p/jdeserialize/
☆35Updated 10 years ago
Alternatives and similar repositories for jdeserialize:
Users that are interested in jdeserialize are comparing it to the libraries listed below
- Java Agent which mitigates deserialisation attacks by making certain classes unserializable☆189Updated 8 years ago
- A tiny Java agent that blocks attacks against unsafe deserialization☆83Updated 7 years ago
- ☆132Updated 9 years ago
- Primitive tool for exploring/querying Java classes via the Tinkerpop Gremlin graph traversal language☆104Updated 8 years ago
- Maven central doesn't do SSL when serving you JARs. Dilettante is a MiTM proxy for exploiting that.☆160Updated last month
- Identify vulnerable libraries in Maven dependencies☆46Updated 2 years ago
- Serial Whitelist Application Trainer☆29Updated 5 years ago
- JMSDigger is JMS API basedEnterprise Messaging Application assessment tool☆30Updated 10 years ago
- A rule for the Maven enforcer plugin to check for vulnerable artifacts within a project.☆40Updated 4 years ago
- ☆128Updated 8 years ago
- coverage guided fuzz testing for java☆230Updated 3 years ago
- A practical tool for bytecode manipulation and creating Managed Code Rootkits (MCRs) in the Java Runtime Environment☆58Updated 5 years ago
- Owasp Orizon is a source code static analyzer tool designed to spot security issues in Java applications.☆144Updated 7 years ago
- Java Deserialization☆26Updated 8 years ago
- Experimental Java agent to stomp on things.☆15Updated 6 years ago
- This library was co-developed with a leading financial institution in order to build a single solution for Cross-Site Request Forgery (CS…☆20Updated 8 years ago
- JavaPayload is a collection of pure Java payloads to be used for post-exploitation from pure Java exploits or from common misconfiguratio…☆121Updated last month
- Java bytecode analyzer customizable via JSON rules☆74Updated 6 years ago
- Demo Application and Exploit☆35Updated 8 years ago
- A tool for manipulating SWF files, leveraging zlib to craft alphanumeric-only valid SWF files in order to allow CSRF with SOP bypass than…☆110Updated 11 months ago
- Automatically exported from code.google.com/p/javasnoop☆27Updated 9 years ago
- The FindBugs plugin for security audits of Java web applications and Android applications. (Also work with Scala and Groovy projects)☆21Updated last year
- Java tracing agent and live trace client☆73Updated last year
- A static analysis API for finding deserialization attack gadgets☆38Updated 2 years ago
- Python script to exploit java unserialize on t3 (Weblogic)☆61Updated 7 years ago
- TLS CBC Padding Oracle Checker☆52Updated 3 years ago
- Testing tools for Oracle Forms☆45Updated last year
- Demonstrate how usage of the Java Security Manager can prevent Remote Code Execution (RCE) exploits.☆25Updated last year
- Custom security ruleset for the popular Java static analysis tool PMD.☆61Updated 9 years ago
- A Java serializer in JavaScript☆81Updated 6 years ago