maaaaz / weblogicpassworddecryptor
A simple script to decrypt stored passwords from Oracle WebLogic Server configuration files
☆30Updated 8 years ago
Related projects ⓘ
Alternatives and complementary repositories for weblogicpassworddecryptor
- A proof of concept that demonstrates asynchronous scanning for Java deserialization bugs☆54Updated 7 years ago
- Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls☆42Updated 8 years ago
- A brute force program to test weak accounts configured to access a JMX Registry☆33Updated 7 years ago
- PoC of Remote Command Execution via Log injection on SAP NetWeaver AS JAVA CRM☆52Updated 6 years ago
- Python script to exploit CVE-2015-4852.☆30Updated 8 years ago
- A tool to analyse JMX API security level.☆43Updated 10 years ago
- Oracle WebLogic WLS-WSAT Remote Code Execution Exploit (CVE-2017-10271)☆125Updated 2 years ago
- Exploit PoC for Spring RCE issue (CVE-2011-2894)☆41Updated 11 months ago
- Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro☆52Updated 11 years ago
- A Burp Extender plugin, that will take deserialized AMF objects and encode them in XML using the Xtream library☆27Updated 9 years ago
- A Java serializer in JavaScript☆82Updated 6 years ago
- Unified repository for different Metasploit Framework payloads☆47Updated 4 years ago
- RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler☆20Updated 10 years ago
- A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities☆60Updated 7 years ago
- A simple scanner to find and brute force tomcat manager logins☆28Updated 4 years ago
- A weaponized version of CVE-2018-9206☆62Updated 6 years ago
- ☆27Updated 3 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆34Updated 8 years ago
- miscellaneous security research stuff☆38Updated 5 years ago
- Memcache hacking tool.☆47Updated 7 years ago
- Proof of concept written in Python to show that in some situations a SSRF vulnerability can be used to steal NTLMv1/v2 hashes.☆57Updated 6 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆121Updated 6 years ago
- siberas JMX exploitation toolkit☆128Updated last year
- RCE Exploit PoC for XMLDecoder☆63Updated 11 years ago
- Pulse Secure SSL VPN pre-auth file reading☆50Updated 5 years ago
- ☆34Updated 5 years ago