noperator / CVE-2019-18935

Related projects: ⓘ

• pimps / ysoserial-modified
  That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
  ☆173Updated 2 years ago
• httpvoid / CVE-Reverse
  ☆277Updated 2 years ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆581Updated 3 years ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
  ☆247Updated 2 years ago
• NotSoSecure / Blacklist3r
  project-blacklist3r
  ☆473Updated 2 years ago
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆502Updated 7 months ago
• bao7uo / RAU_crypto
  Telerik UI for ASP.NET AJAX File upload and .NET deserialisation exploit (CVE-2017-11317, CVE-2017-11357, CVE-2019-18935)
  ☆167Updated 4 years ago
• bao7uo / dp_crypto
  Base64-based encryption oracle exploit for CVE-2017-9248 (Telerik UI for ASP.NET AJAX dialog handler)
  ☆164Updated 3 years ago
• chipik / SAP_RECON
  PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
  ☆215Updated 3 years ago
• Re4son / Churrasco
  Changes for Visual Studio 2013
  ☆112Updated 9 years ago
• SecurityRiskAdvisors / cmd.jsp
  A super small jsp webshell with file upload capabilities.
  ☆286Updated 3 years ago
• h4x0r-dz / RCE-Exploit-in-BIG-IP
  ☆203Updated 3 years ago
• BishopFox / rmiscout
  RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
  ☆420Updated 2 years ago
• 0xacb / viewgen
  Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys
  ☆577Updated last year
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆252Updated last year
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆601Updated 6 months ago
• mubix / IOXIDResolver
  IOXIDResolver.py from AirBus Security
  ☆212Updated 10 months ago
• Ridter / cve-2020-0688
  cve-2020-0688
  ☆322Updated last year
• milo2012 / CVE-2018-13379
  CVE-2018-13379
  ☆250Updated 5 years ago
• hausec / ProxyLogon
  ☆289Updated 2 months ago
• alt3kx / CVE-2021-21985_PoC
  ☆214Updated last year
• ZeddYu / HTTP-Smuggling-Lab
  Use HTTP Smuggling Lab to learn HTTP Smuggling.
  ☆343Updated last year
• ivanitlearning / Juicy-Potato-x86
  Juicy Potato for x86 Windows
  ☆116Updated 4 years ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆326Updated 8 months ago
• RedCursorSecurityConsulting / CVE-2020-0668
  Use CVE-2020-0668 to perform an arbitrary privileged file move operation.
  ☆207Updated 4 years ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆276Updated 5 months ago
• joernchen / xxeserve
  XXE Out of Band Server.
  ☆168Updated last year
• Illuminopi / RCEvil.NET
  ☆233Updated 5 years ago
• PortSwigger / hackvertor
  ☆84Updated 7 months ago
• mhaskar / RCEScanner
  Simple python script to extract unsafe functions from php projects
  ☆195Updated 6 years ago