Plattform to develop and experiment with existing java web attacks.
☆31Jan 8, 2018Updated 8 years ago
Alternatives and similar repositories for java-web-vulnerabilities
Users that are interested in java-web-vulnerabilities are comparing it to the libraries listed below. We may earn a commission when you buy through links labeled 'Ad' on this page.
Sorting:
- ☆76May 22, 2017Updated 9 years ago
- Paper, data and code from Investigating Potential Security Vulnerability Manifestation through Various Analyses & Inferences Regarding In…☆20Jan 28, 2021Updated 5 years ago
- ☆17Oct 25, 2018Updated 7 years ago
- RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler☆20Dec 24, 2013Updated 12 years ago
- Exploit POC for CVE-2024-22026 affecting Ivanti EPMM "MobileIron Core"☆15May 15, 2024Updated 2 years ago
- Deploy on Railway without the complexity - Free Credits Offer • AdConnect your repo and Railway handles the rest with instant previews. Quickly provision container image services, databases, and storage volumes.
- C++ POC code for the wlbsctrl.dll hijack on IKEEXT☆56Apr 18, 2019Updated 7 years ago
- This repository holds a target infrastructure you can use for running the nimbostratus tools.☆24Mar 9, 2015Updated 11 years ago
- Curated UTF-8 URL-encoded character dictionary for injection testing, fuzzing, and bypass techniques against web applications and APIs, f…☆13Sep 20, 2021Updated 4 years ago
- 在学习Java反序列化漏洞的过程中,用来理解Java RMI程序的执行流程,演示如何攻击Java RMI程序的几个示例。☆11May 6, 2020Updated 6 years ago
- ☆20Apr 21, 2020Updated 6 years ago
- CloudHound is a cloudflare bypass tool which is using several methods such as DNS history Checkup, Cross-Site port Attack and etc to dete…☆20Apr 19, 2023Updated 3 years ago
- Tool to try multiple paths for PHPunit RCE CVE-2017-9841☆30Oct 18, 2021Updated 4 years ago
- A collection of Burp Suite Lambda Filters ~ Bambdas☆31Oct 1, 2024Updated last year
- Description and exploit of CVE-2023-33831 affecting FUXA web-based Process Visualization (SCADA/HMI/Dashboard) software.☆12Oct 27, 2024Updated last year
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Automatically identify deserialisation issues in Java and .NET applications by using active and passive scans☆583Sep 7, 2021Updated 4 years ago
- Burp extension that performs a passive scan to identify cloud buckets and then test them for publicly accessible vulnerabilities☆14Jan 17, 2023Updated 3 years ago
- © 哨兵博客 V3 Power by Bin4xin | Jekyll | Github Action.☆11Updated this week
- .NET Deserialization Passive Scanner☆47Mar 23, 2018Updated 8 years ago
- Vulnerable webapp testbed☆25May 11, 2016Updated 10 years ago
- gRPC / gRPC-Web Pentest Practicing Lab☆10Aug 29, 2023Updated 2 years ago
- Default Linux files/images location☆29Jan 12, 2021Updated 5 years ago
- Yet Another 403 Bypass Tool☆12Feb 19, 2023Updated 3 years ago
- A Threat hunter's playbook to aid the development of techniques and hypothesis for hunting campaigns.☆14Jul 18, 2018Updated 7 years ago
- Deploy to Railway using AI coding agents - Free Credits Offer • AdUse Claude Code, Codex, OpenCode, and more. Autonomous software development now has the infrastructure to match with Railway.
- Yet Another Vulnerability Database☆17Jul 23, 2021Updated 4 years ago
- Port scanner in bash☆16Nov 8, 2013Updated 12 years ago
- ☆28May 27, 2026Updated 2 weeks ago
- ☆42Dec 1, 2023Updated 2 years ago
- Advanced Recon Tool☆26Aug 24, 2020Updated 5 years ago
- Server prepared for SSRF post exploitation, javascript exploits and open redirect.☆13Jan 4, 2023Updated 3 years ago
- Combine words from two wordlist files and concatenate them with an optional delimiter☆40Sep 25, 2023Updated 2 years ago
- Your go-to resource for all things Smart Contract Security. Featuring guidelines, best practices, and in-depth articles. Sections include…☆23Oct 31, 2023Updated 2 years ago
- Digging into private data through Sonarcloud public projects☆11Sep 13, 2024Updated last year
- GPU virtual machines on DigitalOcean Gradient AI • AdGet to production fast with high-performance AMD and NVIDIA GPUs you can spin up in seconds. The definition of operational simplicity.
- ☆24May 31, 2024Updated 2 years ago
- WS-Attacker is a modular framework for web services Security penetration testing.☆12May 16, 2019Updated 7 years ago
- Regex out URI parameters from backend code, craft URIs to check for reflections or send to local burp proxy☆13Dec 8, 2022Updated 3 years ago
- I collect writeup about analysis CVEs and Exploits on the Windows in this repository.☆23Jun 8, 2022Updated 4 years ago
- SQL injection via unsanitized QuerySet.order_by() input☆13Jul 10, 2021Updated 4 years ago
- RCE in NPM VSCode Extension☆20Apr 11, 2021Updated 5 years ago
- fastjson-1.2.47☆66Aug 5, 2019Updated 6 years ago