Alternatives and similar repositories for deserialization-filter-blacklists

Users that are interested in deserialization-filter-blacklists are comparing it to the libraries listed below

• samsbp / java-file-ftp
  POC for leaking java version through file and ftp protocols
  ☆24Updated 4 years ago
• mogwailabs / rmi-deserialization
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆101Updated 5 years ago
• b1ngz / spring-boot-actuator-cloud-vul
  Spring Boot Actuator + Spring Cloud Vul Env
  ☆19Updated 5 years ago
• Ramos-dev / R9000
  ☆58Updated 5 years ago
• motikan2010 / CVE-2020-5398
  CVE-2020-5398 - RFD(Reflected File Download) Attack for Spring MVC
  ☆86Updated 2 years ago
• QAX-A-Team / Papers
  Papers
  ☆34Updated 5 years ago
• mpgn / CVE-2019-3799
  CVE-2019-3799 - Spring Cloud Config Server: Directory Traversal < 2.1.2, 2.0.4, 1.4.6
  ☆31Updated 6 years ago
• Hpd0ger / InFoCollecter
  针对域名/页面的接口爬取，递归模式入库
  ☆22Updated 5 years ago
• LeadroyaL / java_xxe_2019
  总结了一下2019年在JVM环境中使用XXE攻击的知识
  ☆58Updated 5 years ago
• Maskhe / CVE-2020-15148-bypasses
  几条关于CVE-2020-15148（yii2反序列化）的绕过
  ☆75Updated 4 years ago
• shadow-horse / CVE-2019-17571
  Apache Log4j 1.2.X存在反序列化远程代码执行漏洞
  ☆78Updated 5 years ago
• jas502n / fastjson-1.2.61-RCE
  fastjson-1.2.61-RCE
  ☆33Updated 5 years ago
• jas502n / jackson-CVE-2020-8840
  FasterXML/jackson-databind 远程代码执行漏洞
  ☆74Updated 5 years ago
• jas502n / kibana-RCE
  kibana < 6.6.0 未授权远程代码命令执行 (Need Timelion And Canvas),CVE-2019-7609
  ☆89Updated 5 years ago
• Ruil1n / after-deserialization-attack
  Java After-Deserialization Attack
  ☆79Updated 4 years ago
• Jinone / tools
  bugbounty tools
  ☆18Updated last year
• mishmashclone / GrrrDog-Java-Deserialization-Cheat-Sheet
  https://github.com/GrrrDog/Java-Deserialization-Cheat-Sheet
  ☆51Updated 4 years ago
• verctor / nexus_rce_CVE-2019-7238
  Some debug notes and exploit(not blind)
  ☆39Updated 6 years ago
• codeplutos / Conference
  ☆28Updated 6 years ago
• jas502n / CVE-2019-2890
  CVE-2019-2890 WebLogic 反序列化RCE漏洞
  ☆44Updated 5 years ago
• OneSourceCat / BcelPayloadGenerator
  A fastjson payload generator
  ☆58Updated 4 years ago
• pwntester / BlockingServer
  Web Server that serves a single file and keeps the connection open until user releases it.
  ☆73Updated 11 years ago
• Symbo1 / HackerOne-Staffs
  HackerOne Staffs
  ☆29Updated 5 years ago
• jas502n / fastjson-1.2.60-rce
  autoType enable
  ☆36Updated 5 years ago
• LoRexxar / log_dependency_checklist
  Dependencies with Log4j2 Checklist
  ☆35Updated 3 years ago
• ttttmr / php-fpm
  用WebShell攻击PHP-FPM Attacking PHP-FPM with WebShell
  ☆41Updated 4 years ago
• bit4woo / Java_deserialize_vuln_lab
  Java 反序列化学习的实验代码 Java_deserialize_vuln_lab
  ☆87Updated 6 years ago
• fairyming / CVE-2020-8840
  CVE-2020-8840：FasterXML/jackson-databind 远程代码执行漏洞
  ☆36Updated 5 years ago
• Tom4t0 / My-CTF-Challenges
  ☆18Updated 7 years ago
• jas502n / phpweb
  phpweb 前台任意文件上传
  ☆16Updated 5 years ago