Alternatives and similar repositories for poracle:

Users that are interested in poracle are comparing it to the libraries listed below

• RUB-NDS / DTD-Attacks
  Tests for different parsers from Ruby, Python, .NET, PHP, Perl, Java
  ☆55Updated 8 years ago
• GrrrDog / ZeroNights-WebVillage-2017
  ☆70Updated 7 years ago
• mbechler / serjs
  A Java serializer in JavaScript
  ☆81Updated 6 years ago
• yolosec / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆34Updated 8 years ago
• nccgroup / Decoder-Improved
  Improved decoder for Burp Suite
  ☆137Updated 3 years ago
• danghvu / pwp
  Python Web framework P0wner
  ☆75Updated 12 years ago
• pinnace / burp-jwt-fuzzhelper-extension
  JWT Fuzzer for BurpSuite. Adds an Intruder hook for on-the-fly JWT fuzzing.
  ☆98Updated 5 years ago
• o2platform / DefCon_RESTing
  Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro
  ☆52Updated 11 years ago
• silentsignal / burp-image-size
  Image size issues plugin for Burp Suite
  ☆93Updated 6 years ago
• yolosec / deserialize-server
  Demo server for testing Java deserialization payloads
  ☆15Updated 8 years ago
• dxa4481 / Damn-Vulnerable-Redis-Container
  An example of obtaining RCE via Redis and CSRF
  ☆76Updated 8 years ago
• alex91ar / randomstringutils
  Cracker for Apache.lang.commons RandomStringUtils(). Code for "The Java Soothsayer" talk at EkoParty 2017 by Alejo Popovici.
  ☆32Updated 7 years ago
• nccgroup / jmxbf
  A brute force program to test weak accounts configured to access a JMX Registry
  ☆34Updated 8 years ago
• dancezarp / TBDEx
  ☆84Updated 8 years ago
• nccgroup / OutlookLeakTest
  The Outlook HTML Leak Test Project
  ☆132Updated 6 years ago
• pwntester / DupeKeyInjector
  DupeKeyInjector
  ☆135Updated 3 years ago
• 0x00string / oldays
  public exploits
  ☆35Updated last year
• cweb / unicode-hax
  A library to assist in security-testing Unicode enabled applications during fuzzing, XSS, SQLi, etc.
  ☆42Updated 7 years ago
• s-n-t / phpggc
  ☆73Updated 6 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆122Updated 7 years ago
• GrrrDog / TLS-Redirection
  TLS Redirection
  ☆120Updated 7 years ago
• federicodotta / HandyCollaborator
  Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!
  ☆103Updated 6 years ago
• regilero / HTTPWookiee
  HTTPWookiee is an HTTP server and proxy stress tool (respect of RFC, HTTP Smuggling issues, etc). If you run an HTTP server project conta…
  ☆50Updated 7 years ago
• Hood3dRob1n / CVE-2016-3714
  ImaegMagick Code Execution (CVE-2016-3714)
  ☆69Updated 8 years ago
• zerothoughts / jndipoc
  Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls
  ☆42Updated 9 years ago
• pwntester / dotnet-deserialization-scanner
  .NET Deserialization Passive Scanner
  ☆45Updated 7 years ago
• jmxploit / jmxploit
  A tool to analyse JMX API security level.
  ☆43Updated 10 years ago
• Techlord-RCE / dns-rebind-toolkit
  A front-end JavaScript toolkit for creating DNS rebinding attacks.
  ☆45Updated 6 years ago
• njfox / Java-Deserialization-Exploit
  ☆128Updated 8 years ago
• Gifts / XXE-OOB-Exploitation-Toolset-for-Automation
  XXE OOB Exploitation Toolset for Automation
  ☆63Updated 11 years ago