jwilk / traversal-archives

Related projects ⓘ

Alternatives and complementary repositories for traversal-archives

• wh1t3p1g / ysoserial
  forked from frohoff/ysoserial and added my own payloads.
  ☆149Updated 4 years ago
• Y4er / CVE-2020-2555
  Weblogic com.tangosol.util.extractor.ReflectionExtractor RCE
  ☆176Updated last year
• jas502n / solr_rce
  Apache Solr RCE via Velocity template
  ☆107Updated 5 years ago
• waderwu / attackRmi
  attackRmi
  ☆250Updated 4 years ago
• su18 / JDBC-Attack
  JDBC Connection URL Attack
  ☆390Updated 3 years ago
• mpgn / Spring-Boot-Actuator-Exploit
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆317Updated 4 years ago
• LoRexxar / redis-rogue-server
  Redis 4.x & 5.x RCE
  ☆139Updated 5 years ago
• silentsignal / burp-requests
  Copy as requests plugin for Burp Suite
  ☆127Updated 3 months ago
• xmsec / redis-ssrf
  redis ssrf gopher generater & redis ssrf to rce by master-slave-sync
  ☆82Updated 4 years ago
• ozzi- / JWT4B
  JWT Support for Burp
  ☆248Updated 3 months ago
• synacktiv / php_filter_chains_oracle_exploit
  A CLI to exploit parameters vulnerable to PHP filter chain error based oracle.
  ☆228Updated 5 months ago
• nibiwodong / CNVD-2020-10487-Tomcat-ajp-POC
  CNVD-2020-10487(CVE-2020-1938), tomcat ajp 文件读取漏洞poc
  ☆118Updated 4 years ago
• lalajun / RMIDeserialize
  RMI 反序列化环境 一步步
  ☆211Updated 4 years ago
• doyensec / ajpfuzzer
  A command-line fuzzer for the Apache JServ Protocol (ajp13)
  ☆91Updated 2 years ago
• inspiringz / Shiro-721
  Shiro-721 RCE Via RememberMe Padding Oracle Attack
  ☆254Updated 4 years ago
• waderwu / extractor-java
  CodeQL extractor for java, which don't need to compile java source
  ☆322Updated last year
• CHYbeta / OddProxyDemo
  ☆185Updated 6 months ago
• Y4er / CVE-2020-2883
  Weblogic coherence.jar RCE
  ☆178Updated 4 years ago
• Y4er / CVE-2020-2551
  Weblogic IIOP CVE-2020-2551
  ☆333Updated 4 years ago
• jas502n / Redis-RCE
  remote code execute for redis4 and redis5
  ☆81Updated 5 years ago
• 5up3rc / weblogic_cmd
  weblogic t3 deserialization rce
  ☆264Updated 7 years ago
• pwntester / SerialKillerBypassGadgetCollection
  Collection of bypass gadgets to extend and wrap ysoserial payloads
  ☆350Updated 2 years ago
• hvqzao / burp-wildcard
  Burp extension intended to compact Burp extension tabs by hijacking them to own tab.
  ☆128Updated 3 years ago
• wh1t3p1g / tabby-path-finder
  A neo4j procedure for tabby
  ☆116Updated 5 months ago
• Imanfeng / Apache-Solr-RCE
  Apache Solr Exploits 🌟
  ☆337Updated 4 years ago
• pwntester / JRE8u20_RCE_Gadget
  JRE8u20_RCE_Gadget
  ☆252Updated 8 years ago
• synacktiv / QLinspector
  Finding Java gadget chains with CodeQL
  ☆159Updated 3 months ago
• phith0n / collision-webshell
  A webshell and a normal file that have the same MD5
  ☆188Updated 2 years ago
• mogwailabs / rmi-deserialization
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆101Updated 5 years ago