☆76May 22, 2017Updated 9 years ago
Alternatives and similar repositories for marshalsec
Users that are interested in marshalsec are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- The cheat sheet about Java Deserialization vulnerabilities☆3,177May 26, 2023Updated 3 years ago
- Plattform to develop and experiment with existing java web attacks.☆32Jan 8, 2018Updated 8 years ago
- YSOSERIAL Integration with burp suite☆166Dec 16, 2022Updated 3 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆8,946Dec 4, 2025Updated 6 months ago
- It becomes the extension of Burp suite. The cookie set by the BipIP server may include a private IP, which is an extension to detect tha…☆16Mar 10, 2026Updated 3 months ago
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- A static byte code analyzer for Java deserialization gadget research☆253Apr 17, 2017Updated 9 years ago
- ☆27Mar 6, 2021Updated 5 years ago
- Deserialization payload generator for a variety of .NET formatters☆3,749Jun 11, 2026Updated 2 weeks ago
- Simple script for animated GIF viewing using sixels☆23Nov 5, 2021Updated 4 years ago
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆581Sep 7, 2021Updated 4 years ago
- ☆3,691Jan 9, 2025Updated last year
- Collection of bypass gadgets to extend and wrap ysoserial payloads☆389Apr 16, 2022Updated 4 years ago
- Shell Scripts Frontend Tool. Function library useful to build shell script frontends☆10Jun 16, 2020Updated 6 years ago
- JNIEasy - Java Native Objects based on JNI☆10Aug 30, 2023Updated 2 years ago
- Managed hosting for WordPress and PHP on Cloudways • AdManaged hosting for WordPress, Magento, Laravel, or PHP apps, on multiple cloud providers. Deploy in minutes on Cloudways by DigitalOcean.
- jdtrace - a DTrace based tool for Java☆10May 17, 2016Updated 10 years ago
- Win16 Display Calculator☆11Dec 19, 2018Updated 7 years ago
- Kotlin/Native Standard Library (mirror)☆11Mar 2, 2022Updated 4 years ago
- ☆21Aug 7, 2014Updated 11 years ago
- Are WiFi Passwords we use these day's actually safe?☆10Mar 7, 2017Updated 9 years ago
- Primitive tool for exploring/querying Java classes via the Tinkerpop Gremlin graph traversal language☆108May 12, 2016Updated 10 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆123Jan 9, 2018Updated 8 years ago
- ☆14Sep 2, 2020Updated 5 years ago
- Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"☆101Sep 20, 2019Updated 6 years ago
- Simple, predictable pricing with DigitalOcean hosting • AdAlways know what you'll pay with monthly caps and flat pricing. Enterprise-grade infrastructure trusted by 600k+ customers.
- A Burp extension to show the Collaborator client in a tab☆37Dec 23, 2022Updated 3 years ago
- Some payloads of JNDI Injection in JDK 1.8.0_191+☆484Dec 9, 2020Updated 5 years ago
- demo projects for maven tutorials☆11Oct 9, 2014Updated 11 years ago
- Motif version of the classic X File Manager (XFM)☆19Nov 20, 2022Updated 3 years ago
- A port of Doom for Xenix 386☆18May 16, 2026Updated last month
- ☆14Oct 2, 2020Updated 5 years ago
- 一个利用ASM对字节码进行污点传播分析的静态代码审计应用(添加了大量代码注释,适合大家进行源码学习)。也加入了挖掘Fastjson反序列化gadget chains和SQLInject(JdbcTemplate、MyBatis、JPA、Hibernate、原生jdbc等)静…☆456Mar 24, 2022Updated 4 years ago
- All-in-one plugin for Burp Suite for the detection and the exploitation of Java deserialization vulnerabilities☆802Nov 7, 2021Updated 4 years ago
- Burp extension to perform Java Deserialization Attacks☆218Feb 2, 2024Updated 2 years ago
- Managed Database hosting by DigitalOcean • AdPostgreSQL, MySQL, MongoDB, Kafka, Valkey, and OpenSearch available. Automatically scale up storage and focus on building your apps.
- Demo project to show how diKTat or KTlint rule-sets can fix style issues in your code.☆14Mar 28, 2023Updated 3 years ago
- Fire effect in awk☆12Jan 25, 2022Updated 4 years ago
- JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool☆2,520Jan 21, 2020Updated 6 years ago
- 年轻时候单纯想法的产物☆17Jan 29, 2018Updated 8 years ago
- Java安全相关的漏洞和技术demo,原生Java、Fastjson、Jackson、Hessian2、XML反序列化漏洞利用和Spring、Dubbo、Shiro、CAS、Tomcat、RMI、Nexus等框架\中间件\功能的exploits以及Java Security…☆2,690Mar 14, 2024Updated 2 years ago
- Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls☆43Jan 22, 2016Updated 10 years ago
- Semi-official reboot of Apache-Extras DMAKE (for AOO and others)☆12Mar 18, 2023Updated 3 years ago