pimps / ysoserial-modified
That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
☆173Updated 2 years ago
Related projects: ⓘ
- RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.☆342Updated 2 years ago
- ☆277Updated 2 years ago
- Changes for Visual Studio 2013☆112Updated 9 years ago
- ☆203Updated 3 years ago
- Collection of username lists for enumerating kerberos domain users☆79Updated 6 years ago
- jolokia-exploitation-toolkit☆276Updated 5 months ago
- Exfiltrate blind remote code execution output over DNS via Burp Collaborator.☆247Updated 2 years ago
- JMX enumeration and attacking tool.☆382Updated 5 months ago
- SNMP data gather scripts☆77Updated 7 months ago
- Extracts Key Values from .keytab files☆205Updated 4 years ago
- A super small jsp webshell with file upload capabilities.☆286Updated 3 years ago
- Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473☆98Updated 4 months ago
- ☆214Updated last year
- Juicy Potato for x86 Windows☆116Updated 4 years ago
- Scripts created to help with post exploitation of a Windows host☆95Updated 3 years ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆110Updated 4 years ago
- PoC for CVE-2020-6287, CVE-2020-6286 (SAP RECON vulnerability)☆215Updated 3 years ago
- Burpsuite plugin for Interact.sh☆197Updated 2 months ago
- Python exploit for the CVE-2021-22204 vulnerability in Exiftool☆88Updated 3 years ago
- A simple NodeJS WebSocket WebApp vulnerable to blind SQL injection☆69Updated 3 years ago
- Simple extension that allows to run nuclei scanner directly from burp and transforms json results into the issues.☆115Updated last year
- ☆127Updated last year
- An Out-of-Band XXE server for retrieving file contents over FTP.☆171Updated 4 years ago
- ☆289Updated 2 months ago
- RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1☆157Updated 3 years ago
- Combined port scanning w/ Masscan's speed & Nmap's scanning features.☆148Updated 2 years ago
- Office 365 and Exchange Enumeration☆176Updated 5 years ago
- A tool to embed XXE and XSS payloads in docx, odt, pptx, xlsx files (oxml_xxe on steroids)☆502Updated 7 months ago
- Username guessing tool primarily for use against the default Solaris SMTP service. Can use either EXPN, VRFY or RCPT TO.☆97Updated 2 years ago
- CVE-2019-1388 UAC提权 (nt authority\system)☆185Updated 4 years ago