omerlh / insecure-deserialisation-net-pocLinks
A small webserver vulnerable to insecure deserialization
☆20Updated 7 years ago
Alternatives and similar repositories for insecure-deserialisation-net-poc
Users that are interested in insecure-deserialisation-net-poc are comparing it to the libraries listed below
Sorting:
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 11 years ago
- Parse X509 certificates to get the (sub)domains in it.☆28Updated 7 years ago
- cve-2014-0130 rails directory traversal vuln☆19Updated 8 years ago
- Utilities for creating Burp Suite Extensions.☆21Updated 7 months ago
- ☆13Updated 8 years ago
- A simple grep user interface for searching code which can be used for SAST.☆8Updated 5 years ago
- Generate pentest reports based on github issues.☆17Updated 2 years ago
- Burp Suite plugin that allow to deserialize Java objects and convert them in an XML format. Unpack also gzip responses. Based on BurpJDSe…☆20Updated last year
- Burp plugin to do random fuzzing of HTTP requests☆33Updated 8 years ago
- CVE-2017-8570 Exploit☆21Updated 7 years ago
- ☆38Updated 4 years ago
- Squirtle the Browser-based NTLM Attack Toolkit☆17Updated 10 years ago
- Burp extension to decode NTLM SSP headers and extract domain/host information☆32Updated 4 years ago
- Gives context to a system. Uses EQGRP shadow broker leaked list to give some descriptions to processes.☆45Updated 8 years ago
- Python script which will type a file into an RDP session. For when drag and drop and disk mounting is not possible☆32Updated last year
- Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.☆12Updated 6 years ago
- Encima De la Mosca HTTP proxy POC for infecting files on-the-fly and SSLstrip2☆41Updated 6 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆16Updated 11 years ago
- A quick and dirty .NET "Deserialize_*" fuzzer based on James Forshaw's (@tiraniddo) DotNetToJScript.☆42Updated 6 years ago
- The DetectDynamicJS Burp Extension provides an additional passive scanner that tries to find differing content in JavaScript files and ai…☆13Updated 6 years ago
- ☆13Updated 4 years ago
- the Open Source Windows Privilege Escalation Guide☆10Updated 8 years ago
- Nashorn Post Exploitation☆32Updated 7 years ago
- Windows LNK/URL shortcut auto-binding hotkey (not a bug, feature)☆30Updated 7 years ago
- A BurpSuite extension for beautifying .NET message parameters and hiding some of the extra clutter that comes with .NET web apps (i.e. __…☆12Updated 9 years ago
- .NET Deserialization Passive Scanner☆45Updated 7 years ago
- Burp extension for automated handling of CSRF tokens☆16Updated 7 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- Python tool for expired domain discovery in crossdomain.xml files☆23Updated 8 years ago
- WStalker: an easy proxy☆25Updated 5 years ago