mogwaisec / mjet

Related projects: ⓘ

• pwntester / JRE8u20_RCE_Gadget
  JRE8u20_RCE_Gadget
  ☆251Updated 8 years ago
• mpgn / CVE-2019-0192
  RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl
  ☆209Updated 5 years ago
• pwntester / SerialKillerBypassGadgetCollection
  Collection of bypass gadgets to extend and wrap ysoserial payloads
  ☆349Updated 2 years ago
• pyn3rd / CVE-2018-2893
  CVE-2018-2893-PoC
  ☆104Updated 5 years ago
• 5alt / ultrarelay
  poison and relay NTLM credentials
  ☆172Updated 5 years ago
• mbechler / serjs
  A Java serializer in JavaScript
  ☆82Updated 6 years ago
• Yt1g3r / CVE-2019-3396_EXP
  CVE-2019-3396 confluence SSTI RCE
  ☆173Updated 3 years ago
• summitt / burp-ysoserial
  YSOSERIAL Integration with burp suite
  ☆160Updated last year
• pyn3rd / CVE-2018-3245
  CVE-2018-3245-PoC
  ☆167Updated 3 years ago
• LandGrey / CVE-2018-2894
  CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script
  ☆135Updated 6 years ago
• zerothoughts / spring-jndi
  Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization with Spring Framework 4.2.4
  ☆116Updated 5 years ago
• NetSPI / Burp-Extensions
  Central Repo for Burp extensions
  ☆146Updated 2 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆123Updated 5 years ago
• beched / php_disable_functions_bypass
  procfs-based PHP sandbox bypass
  ☆133Updated 6 years ago
• Tr3jer / dnsAutoRebinding
  ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6
  ☆216Updated 7 years ago
• mpgn / CVE-2019-7238
  🐱‍💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱‍💻
  ☆149Updated 5 years ago
• codeplutos / CVE-2019-12086-jackson-databind-file-read
  ☆112Updated this week
• pyn3rd / CVE-2019-0232
  Apache Tomcat Remote Code Execution on Windows
  ☆185Updated 4 years ago
• NetSPI / Wsdler
  WSDL Parser extension for Burp
  ☆206Updated 6 years ago
• mbechler / serianalyzer
  A static byte code analyzer for Java deserialization gadget research
  ☆242Updated 7 years ago
• voidfyoo / CVE-2018-3191
  ☆130Updated this week
• PaulSec / HQLmap
  (Deprecated) HQLmap, Automatic tool to exploit HQL injections
  ☆223Updated 4 years ago
• hanc00l / weblogic_unserialize_exploit
  java unserialize vul for weblogic exploit
  ☆177Updated 6 years ago
• Bort-Millipede / WLT3Serial
  Native Java-based deserialization exploit for WebLogic T3 (and T3S) listeners.
  ☆35Updated 4 years ago
• brianwrf / WinSystemHelper
  A tool that checks and downloads scripts that will aid with privilege escalation on a Windows system.
  ☆170Updated 8 years ago
• quentinhardy / jndiat
  JNDI Attacking Tool
  ☆236Updated 2 years ago
• NickstaDB / SerialBrute
  Java serialization brute force attack tool.
  ☆123Updated 7 years ago
• firefart / CVE-2018-7600
  CVE-2018-7600 - Drupal 7.x RCE
  ☆71Updated 6 years ago
• kkirsche / CVE-2017-10271
  Oracle WebLogic WLS-WSAT Remote Code Execution Exploit (CVE-2017-10271)
  ☆125Updated 2 years ago
• iamultra / ssrfsocks
  Creates a SOCK proxy server that transmits data over an SSRF vulnerability
  ☆115Updated 12 years ago