Alternatives and similar repositories for JRE8u20_RCE_Gadget

Users that are interested in JRE8u20_RCE_Gadget are comparing it to the libraries listed below

• mpgn / CVE-2019-0192
  RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl
  ☆210Updated 6 years ago
• mpgn / CVE-2019-7238
  🐱‍💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱‍💻
  ☆151Updated 6 years ago
• Yt1g3r / CVE-2019-3396_EXP
  CVE-2019-3396 confluence SSTI RCE
  ☆174Updated 4 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆122Updated 6 years ago
• pyn3rd / CVE-2018-3245
  CVE-2018-3245-PoC
  ☆167Updated 3 years ago
• pwntester / SerialKillerBypassGadgetCollection
  Collection of bypass gadgets to extend and wrap ysoserial payloads
  ☆358Updated 3 years ago
• jas502n / fastjson-RCE
  fastjson-1.2.47
  ☆66Updated 5 years ago
• mogwaisec / mjet
  Mogwai Java Management Extensions (JMX) Exploitation Toolkit
  ☆173Updated 8 years ago
• QAX-A-Team / SerialWriter
  SerialWriter is an incomplete implementation of Java serialization for study of Java deserialization vulnerabilities.
  ☆104Updated 7 years ago
• Y4er / CVE-2020-2883
  Weblogic coherence.jar RCE
  ☆177Updated 5 years ago
• wh1t3p1g / ysoserial
  forked from frohoff/ysoserial and added my own payloads.
  ☆151Updated 5 years ago
• nnewkin / Poc_Pentest
  ☆1Updated 3 years ago
• LandGrey / CVE-2018-2894
  CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script
  ☆139Updated 6 years ago
• zerothoughts / spring-jndi
  Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization with Spring Framework 4.2.4
  ☆116Updated 6 years ago
• tdy218 / ysoserial-cve-2018-2628
  Some codes for bypassing Oracle WebLogic CVE-2018-2628 patch
  ☆114Updated 7 years ago
• Tr3jer / dnsAutoRebinding
  ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6
  ☆217Updated 7 years ago
• Lonely-night / fastjson_gadgets_scanner
  ☆131Updated 2 years ago
• QAX-A-Team / redis_lua_exploit
  ☆143Updated 6 years ago
• beched / php_disable_functions_bypass
  procfs-based PHP sandbox bypass
  ☆134Updated 6 years ago
• jas502n / CVE-2019-12409
  Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")
  ☆102Updated 5 years ago
• 5up3rc / weblogic_cmd
  weblogic t3 deserialization rce
  ☆270Updated 7 years ago
• codeplutos / MySQL-JDBC-Deserialization-Payload
  MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload
  ☆13Updated 5 years ago
• threedr3am / tomcat-cluster-session-sync-exp
  tomcat使用了自带session同步功能时，不安全的配置（没有使用EncryptInterceptor）导致存在的反序列化漏洞，通过精心构造的数据包， 可以对使用了tomcat自带session同步功能的服务器进行攻击。PS:这个不是CVE-2020-9484，9484…
  ☆213Updated 5 years ago
• LoRexxar / redis-rogue-server
  Redis 4.x & 5.x RCE
  ☆141Updated 5 years ago
• mogwailabs / rmi-deserialization
  Slides/Demos from the BSides Munich 2019 talk "Attacking Java RMI in 2019"
  ☆100Updated 5 years ago
• 5alt / ultrarelay
  poison and relay NTLM credentials
  ☆175Updated 6 years ago
• MagicZer0 / fastjson-rce-exploit
  exploit for fastjson remote code execution vulnerability
  ☆152Updated 2 years ago
• jas502n / CVE-2018-3191
  Weblogic-CVE-2018-3191远程代码命令执行漏洞
  ☆66Updated 6 years ago
• Y4er / CVE-2020-2555
  Weblogic com.tangosol.util.extractor.ReflectionExtractor RCE
  ☆177Updated 2 years ago
• jas502n / CNVD-C-2019-48814
  WebLogic wls9-async反序列化远程命令执行漏洞
  ☆242Updated 6 years ago