Alternatives and similar repositories for FastjsonVulns

Users that are interested in FastjsonVulns are comparing it to the libraries listed below

• KpLi0rn / ysoserial
  在原有yso基础上实现依赖分离，内存马注入等功能。A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆68Updated 4 years ago
• 0linlin0 / Java
  java
  ☆54Updated 2 years ago
• passer-W / snakeyaml-memshell
  springboot跨线程注入内存马
  ☆122Updated 3 years ago
• Rvn0xsy / SMTP-NC
  SMTP Netcat , test SMTP protocol
  ☆105Updated 3 years ago
• woodpecker-framework / woodpecker-requests
  woodpecker-framework框架http发包库,专门为漏洞检测与利用场景设计。
  ☆67Updated 2 years ago
• 0xrumble / BytecodeScreen
  ☆50Updated 2 years ago
• su18 / rasp-vuln
  当死去的记忆突然开始攻击我，我终于想起了我还写过一款十分十分垃圾的 rasp 靶场。
  ☆78Updated 3 years ago
• wuppp / releaseBehinderShell
  卸载冰蝎内存马
  ☆68Updated 4 years ago
• r00tuser111 / SerializationDumper-Shiro
  基于SerializationDumper的Shiro Cookie序列化数据解密小工具
  ☆53Updated 5 years ago
• turn1tup / JspEncounter
  ☆122Updated 2 years ago
• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆48Updated 3 years ago
• longofo / Apache-Dubbo-Hessian2-CVE-2021-43297
  Apache Dubbo Hessian2 CVE-2021-43297 demo
  ☆46Updated 3 years ago
• zhutougg / LandrayDES
  蓝凌OA的前后台密码的加解密工具
  ☆95Updated 4 years ago
• cckuailong / YarnRpcRCE
  ☆82Updated 3 years ago
• Scorpio-m7 / tomcat-backdoor
  ☆54Updated 3 years ago
• SummerSec / LookupInterface
  CodeQL 寻找 JNDI利用 Lookup接口
  ☆163Updated 3 years ago
• woodpecker-appstore / springboot-vuldb
  ☆70Updated 4 years ago
• lz2y / DubboPOC
  Apache Dubbo漏洞测试Demo及其POC
  ☆64Updated 2 years ago
• woodpecker-appstore / java-memshell-generator
  Java 内存马生成插件
  ☆54Updated 2 years ago
• Lotus6 / FileMonitor
  Java命令行文件监控小工具(代码审计)
  ☆103Updated 3 years ago
• bitterzzZZ / CVE-2021-43297-POC
  CVE-2021-43297 POC，Apache Dubbo<= 2.7.13时可以实现RCE
  ☆38Updated 3 years ago
• welk1n / FastjsonPocs
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Updated 5 years ago
• 8ypass / weblogicExploit
  weblogic历史漏洞利用工具
  ☆91Updated 3 years ago
• haby0 / sec-note
  记录各语言、框架中危险的sink，个人代码审计、漏洞研究使用。
  ☆115Updated 3 years ago
• R17a-17 / JavaVulnSummary
  Java漏洞分析汇合
  ☆142Updated 3 years ago
• r3change / jdwp-shellifier
  ☆43Updated 3 years ago
• zhzhdoai / Weblogic_Vuln
  CVE-2015-4852、CVE-2016-0638、CVE-2016-3510、CVE-2019-2890漏洞POC
  ☆17Updated 5 years ago
• turn1tup / JvmRaspBypass
  ☆14Updated 2 years ago
• xiaopan233 / Java_agent_without_file
  Java agent without file 无文件的Java agent
  ☆82Updated 3 years ago
• qi4L / Ysoserial-go
  A Go library for generating Java deserialization payloads.
  ☆155Updated last year