Alternatives and similar repositories for insecure-deserialisation-net-poc

Users that are interested in insecure-deserialisation-net-poc are comparing it to the libraries listed below

• brandonprry / vulnerable_xxe
  A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.
  ☆26Updated 11 years ago
• smiegles / certs
  Parse X509 certificates to get the (sub)domains in it.
  ☆28Updated 7 years ago
• omarkurt / cve-2014-0130
  cve-2014-0130 rails directory traversal vuln
  ☆19Updated 8 years ago
• augustd / burp-suite-utils
  Utilities for creating Burp Suite Extensions.
  ☆21Updated 7 months ago
• mrfuzzy8 / Scripts
  ☆13Updated 8 years ago
• MohitDabas / sastgriper
  A simple grep user interface for searching code which can be used for SAST.
  ☆8Updated 5 years ago
• issue2report / issue2report
  Generate pentest reports based on github issues.
  ☆17Updated 2 years ago
• federicodotta / BurpJDSer-ng-edited
  Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…
  ☆20Updated last year
• floyd-fuh / burp-HttpFuzzer
  Burp plugin to do random fuzzing of HTTP requests
  ☆33Updated 8 years ago
• ParsingTeam / ppsx-file-generator
  CVE-2017-8570 Exploit
  ☆21Updated 7 years ago
• tls-attacker / TLS-Attacker-BurpExtension
  ☆38Updated 4 years ago
• grutz / squirtle
  Squirtle the Browser-based NTLM Attack Toolkit
  ☆17Updated 10 years ago
• GoSecure / burp-ntlm-challenge-decoder
  Burp extension to decode NTLM SSP headers and extract domain/host information
  ☆32Updated 4 years ago
• vysecurity / Invoke-ProcessScan
  Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.
  ☆45Updated 8 years ago
• cornerpirate / rdpupload
  Python script which will type a file into an RDP session. For when drag and drop and disk mounting is not possible
  ☆32Updated last year
• irsl / struts-any-results
  Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.
  ☆12Updated 6 years ago
• LeonardoNve / edm
  Encima De la Mosca HTTP proxy POC for infecting files on-the-fly and SSLstrip2
  ☆41Updated 6 years ago
• OpenSecurityResearch / flash-xdomain-xploit
  ActionScript Proof of Concept to perform cross-domain reads
  ☆16Updated 11 years ago
• debasishm89 / dotNetFuzz
  A quick and dirty .NET "Deserialize_*" fuzzer based on James Forshaw's (@tiraniddo) DotNetToJScript.
  ☆42Updated 6 years ago
• PortSwigger / detect-dynamic-js
  The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…
  ☆13Updated 6 years ago
• vysecurity / EmpireAMSI
  ☆13Updated 4 years ago
• AddaxSoft / OSWindowsPrivEscalation
  the Open Source Windows Privilege Escalation Guide
  ☆10Updated 8 years ago
• jacob-baines / longtime-sunshine
  Nashorn Post Exploitation
  ☆32Updated 7 years ago
• defcon-russia / shortcut_auto_bind
  Windows LNK/URL shortcut auto-binding hotkey (not a bug, feature)
  ☆30Updated 7 years ago
• allfro / dotNetBeautifier
  A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…
  ☆12Updated 9 years ago
• pwntester / dotnet-deserialization-scanner
  .NET Deserialization Passive Scanner
  ☆45Updated 7 years ago
• hvqzao / burp-token-rewrite
  Burp extension for automated handling of CSRF tokens
  ☆16Updated 7 years ago
• nccgroup / Extractor
  Extension adds a new tab in Burp Suite called Extractor
  ☆42Updated 6 years ago
• NetSPI / crossdomainscanner
  Python tool for expired domain discovery in crossdomain.xml files
  ☆23Updated 8 years ago
• nccgroup / wstalker
  WStalker: an easy proxy
  ☆25Updated 5 years ago