Alternatives and similar repositories for deserialization-filter-blacklists

Users that are interested in deserialization-filter-blacklists are comparing it to the libraries listed below

• samsbp / java-file-ftp
  POC for leaking java version through file and ftp protocols
  ☆24Updated 5 years ago
• motikan2010 / CVE-2020-5398
  CVE-2020-5398 - RFD(Reflected File Download) Attack for Spring MVC
  ☆87Updated 3 years ago
• b1ngz / spring-boot-actuator-cloud-vul
  Spring Boot Actuator + Spring Cloud Vul Env
  ☆19Updated 5 years ago
• mogwailabs / rmi-deserialization
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆101Updated 6 years ago
• LeadroyaL / java_xxe_2019
  总结了一下2019年在JVM环境中使用XXE攻击的知识
  ☆58Updated 6 years ago
• Ramos-dev / R9000
  ☆57Updated 5 years ago
• CHYbeta / CVE-2018-11235-DEMO
  ☆14Updated 7 years ago
• jas502n / jackson-CVE-2020-8840
  FasterXML/jackson-databind 远程代码执行漏洞
  ☆73Updated 5 years ago
• jas502n / kibana-RCE
  kibana < 6.6.0 未授权远程代码命令执行 (Need Timelion And Canvas),CVE-2019-7609
  ☆89Updated 6 years ago
• Hpd0ger / InFoCollecter
  针对域名/页面的接口爬取，递归模式入库
  ☆22Updated 6 years ago
• codeplutos / Conference
  ☆28Updated 6 years ago
• shadow-horse / CVE-2019-17571
  Apache Log4j 1.2.X存在反序列化远程代码执行漏洞
  ☆78Updated 5 years ago
• verctor / nexus_rce_CVE-2019-7238
  Some debug notes and exploit(not blind)
  ☆39Updated 6 years ago
• Maskhe / CVE-2020-15148-bypasses
  几条关于CVE-2020-15148（yii2反序列化）的绕过
  ☆75Updated 5 years ago
• bit4woo / Java_deserialize_vuln_lab
  Java 反序列化学习的实验代码 Java_deserialize_vuln_lab
  ☆87Updated 7 years ago
• fnmsd / zimbra_poc
  Zimbra XXE+SSRF+UPLOAD Poc
  ☆59Updated 6 years ago
• jas502n / fastjson-1.2.61-RCE
  fastjson-1.2.61-RCE
  ☆33Updated 6 years ago
• mpgn / CVE-2019-3799
  CVE-2019-3799 - Spring Cloud Config Server: Directory Traversal < 2.1.2, 2.0.4, 1.4.6
  ☆31Updated 6 years ago
• Ruil1n / after-deserialization-attack
  Java After-Deserialization Attack
  ☆78Updated 4 years ago
• jas502n / fastjson-1.2.60-rce
  autoType enable
  ☆36Updated 6 years ago
• hex0wn / learn-java-bug
  ☆73Updated 3 years ago
• jas502n / CVE-2019-8451
  Jira未授权SSRF漏洞
  ☆31Updated 6 years ago
• EvilPulsar / S2-061
  some struts tag , attributes which out of the range will call SetDynamicAttribute() function, it will cause ONGL expression execute
  ☆70Updated 5 years ago
• QAX-A-Team / Papers
  Papers
  ☆34Updated 6 years ago
• OneSourceCat / BcelPayloadGenerator
  A fastjson payload generator
  ☆58Updated 5 years ago
• bit4woo / Burp_Extender_random_X-Forward-For
  a Burp Extender that add an random X-Forward-For IP address for each request
  ☆31Updated 9 years ago
• ttttmr / php-fpm
  用WebShell攻击PHP-FPM Attacking PHP-FPM with WebShell
  ☆41Updated 4 years ago
• jas502n / CVE-2019-7238
  Nexus Repository Manager 3 Remote Code Execution without authentication < 3.15.0
  ☆84Updated 6 years ago
• jas502n / BurpSuite-Plugin
  Plugin For BurpSuite (Pentester)
  ☆36Updated 3 years ago
• Xyntax / XCTF-2019-tfboys
  source code of XCTF 2019 Final web task "tfboys"
  ☆30Updated 3 years ago