noperator / CVE-2019-18935

Related projects ⓘ

Alternatives and complementary repositories for CVE-2019-18935

• httpvoid / CVE-Reverse
  ☆278Updated 3 years ago
• 0xC01DF00D / Collabfiltrator
  Exfiltrate blind remote code execution output over DNS via Burp Collaborator.
  ☆249Updated 2 weeks ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆585Updated 3 years ago
• pimps / ysoserial-modified
  That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
  ☆176Updated 2 years ago
• bao7uo / RAU_crypto
  Telerik UI for ASP.NET AJAX File upload and .NET deserialisation exploit (CVE-2017-11317, CVE-2017-11357, CVE-2019-18935)
  ☆169Updated 4 years ago
• NotSoSecure / Blacklist3r
  project-blacklist3r
  ☆499Updated 2 years ago
• whitel1st / docem
  A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)
  ☆527Updated 9 months ago
• chipik / SAP_RECON
  PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)
  ☆215Updated 4 years ago
• bao7uo / dp_crypto
  Base64-based encryption oracle exploit for CVE-2017-9248 (Telerik UI for ASP.NET AJAX dialog handler)
  ☆165Updated 3 years ago
• GoSecure / dtd-finder
  List DTDs and generate XXE payloads using those local DTDs.
  ☆611Updated 9 months ago
• milo2012 / CVE-2018-13379
  CVE-2018-13379
  ☆250Updated 5 years ago
• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆278Updated 7 months ago
• BishopFox / rmiscout
  RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
  ☆422Updated 2 years ago
• h4x0r-dz / RCE-Exploit-in-BIG-IP
  ☆206Updated 3 years ago
• SecurityRiskAdvisors / cmd.jsp
  A super small jsp webshell with file upload capabilities.
  ☆290Updated 3 years ago
• qtc-de / beanshooter
  JMX enumeration and attacking tool.
  ☆392Updated last month
• 0xacb / viewgen
  Viewgen is a ViewState tool capable of generating both signed and encrypted payloads with leaked validation keys
  ☆584Updated last year
• hausec / ProxyLogon
  ☆290Updated 4 months ago
• alt3kx / CVE-2021-21985_PoC
  ☆214Updated last year
• Static-Flow / BurpSuite-Team-Extension
  This Burpsuite plugin allows for multiple web app testers to share their proxy history with each other in real time. Requests that comes …
  ☆252Updated 2 years ago
• Ridter / cve-2020-0688
  cve-2020-0688
  ☆322Updated last year
• Illuminopi / RCEvil.NET
  ☆233Updated 5 years ago
• mogwailabs / mjet
  MOGWAI LABS JMX exploitation toolkit
  ☆197Updated last year
• lc / 230-OOB
  An Out-of-Band XXE server for retrieving file contents over FTP.
  ☆172Updated 4 years ago
• tismayil / ohmybackup
  Scan Victim Backup Directories & Backup Files
  ☆178Updated last year
• trustedsec / cors-poc
  ☆127Updated 6 years ago
• dmaasland / proxyshell-poc
  ☆378Updated 3 years ago
• staaldraad / xxeserv
  A mini webserver with FTP support for XXE payloads
  ☆326Updated 10 months ago
• mubix / IOXIDResolver
  IOXIDResolver.py from AirBus Security
  ☆220Updated last year
• rsrdesarrollo / generator-burp-extension
  Everything you need about Burp Extension Generation
  ☆152Updated last year