pwntester/JVMDeserialization external links

---

GitHub - View repository

GitHub.dev - Open in online code editor

Star history - Growth chart over time

deps.dev - Dependencies and security vulnerabilities

Gitingest - Export source code for LLM usage

Repomix - Export source code for LLM usage

uithub - Export source code for LLM usage

Close

pwntester/JVMDeserialization

Readme badge preview -

If you own this repo, copy the snippet below and add it to your README.md

---

Copy

[![RelatedRepos](https://img.shields.io/badge/related-repos-yellow)](https://relatedrepos.com/gh/pwntester/JVMDeserialization)

Close

pwntester / JVMDeserializationView on GitHubMore

• External links
• Readme badge

PoC for Scala and Groovy

☆14Apr 4, 2016Updated 9 years ago

Alternatives and similar repositories for JVMDeserialization

Users that are interested in JVMDeserialization are comparing it to the libraries listed below

• pwntester / XStreamPOC

  View on GitHub
  POC for XStream RCE
  ☆13Dec 23, 2013Updated 12 years ago
• syriusbughunt / CVE-2018-14667

  View on GitHub
  All about CVE-2018-14667; From what it is to how to successfully exploit it.
  ☆50Nov 30, 2018Updated 7 years ago
• gorgiaxx / reGeorg

  View on GitHub
  The successor to reDuh, pwn a bastion webserver and create SOCKS proxies through the DMZ. Pivot and pwn.
  ☆19Apr 9, 2018Updated 7 years ago
• erpscanteam / CVE-2018-2636

  View on GitHub
  ERPScan Public POC for CVE-2018-2636
  ☆22Feb 1, 2018Updated 8 years ago
• CCrashBandicot / helpful

  View on GitHub
  CVE & others
  ☆19Aug 14, 2018Updated 7 years ago
• irsl / struts-any-results

  View on GitHub
  Demonstrating why Dynamic Method Invocation with unrestricted method names (the old default of Struts) is dangerous.
  ☆12Sep 30, 2018Updated 7 years ago
• NickstaDB / PoC

  View on GitHub
  Repo for proof of concept exploits and tools.
  ☆56Oct 15, 2020Updated 5 years ago
• syriusbughunt / From_JIRA_to_Shell

  View on GitHub
  Learn how to get a reverse shell from JIRA application server
  ☆24Dec 2, 2018Updated 7 years ago
• hengyunabc / dubbo-apache-commons-collections-bug

  View on GitHub
  演示dubbo rpc Apache commons collections 的Java序列化漏洞
  ☆42Nov 13, 2015Updated 10 years ago
• jas502n / CVE-2018-15982_EXP_IE

  View on GitHub
  CVE-2018-15982_EXP_IE
  ☆12Dec 12, 2018Updated 7 years ago
• girlkb / myVulnerabilityRecurrence

  View on GitHub
  漏洞复现记录
  ☆11Jun 18, 2019Updated 6 years ago
• topolik / ois-dos

  View on GitHub
  Java Deserialization
  ☆27Oct 21, 2016Updated 9 years ago
• GrrrDog / ZeroNights-HackQuest-2016

  View on GitHub
  2 web tasks from ZeroNights HackQuest 2016
  ☆50Mar 24, 2017Updated 8 years ago
• WhaleShark-Team / ChromeHeadlessInterface

  View on GitHub
  ☆23Jun 2, 2017Updated 8 years ago
• 1337g / CVE-2018-0101-DOS-POC

  View on GitHub
  ☆14Feb 7, 2018Updated 8 years ago
• GDSSecurity / AntiXSS-for-Java

  View on GitHub
  AntiXSS for Java is a port of the Microsoft Anti-Cross Site Scripting (AntiXSS) v1.5 library for .NET applications. The library requires …
  ☆16Jul 2, 2012Updated 13 years ago
• mbechler / serjs

  View on GitHub
  A Java serializer in JavaScript
  ☆80May 21, 2018Updated 7 years ago
• qichuangguo / RunWIFIPassWord

  View on GitHub
  wifi破解
  ☆12Nov 11, 2016Updated 9 years ago
• silience / sql

  View on GitHub
  ☆13Apr 11, 2018Updated 7 years ago
• aedoo / CVE-2018-2628-MultiThreading

  View on GitHub
  WebLogic WLS核心组件反序列化漏洞多线程批量检测脚本 CVE-2018-2628-MultiThreading
  ☆15Apr 19, 2018Updated 7 years ago
• bao7uo / dell-emc_recoverpoint

  View on GitHub
  Exploits for Dell EMC RecoverPoint enterprise data protection platform
  ☆13Jun 22, 2018Updated 7 years ago
• GhostTroops / shallot_eschalot

  View on GitHub
  create customized .onion addresses for your hidden service,make shallot and eschalot tools
  ☆13Jan 18, 2022Updated 4 years ago
• roo7break / serialator

  View on GitHub
  Python script to exploit CVE-2015-4852.
  ☆31Jul 20, 2016Updated 9 years ago
• mbechler / serianalyzer

  View on GitHub
  A static byte code analyzer for Java deserialization gadget research
  ☆252Apr 17, 2017Updated 8 years ago
• hktalent / weblogic_java_des

  View on GitHub
  weblogic T3 collections java InvokerTransformer Transformer InvokerTransformer weblogic.jndi.WLInitialContextFactory
  ☆14Feb 27, 2018Updated 8 years ago
• go-spider / CVE-2018-3252

  View on GitHub
  ☆18Dec 4, 2018Updated 7 years ago
• retanoj / BurpMultiProxy

  View on GitHub
  ☆13Feb 17, 2016Updated 10 years ago
• quantumvm / JavaReverseTCPShell

  View on GitHub
  Spawns a reverse TCP shell on the machine its run on
  ☆15Mar 29, 2014Updated 11 years ago
• pwntester / JRE8u20_RCE_Gadget

  View on GitHub
  JRE8u20_RCE_Gadget
  ☆255Jul 1, 2016Updated 9 years ago
• hktalent / MTX_HackerTools

  View on GitHub
  ☆15Jul 11, 2019Updated 6 years ago
• chengable / xss_jsfirewall

  View on GitHub
  前端xss防火墙
  ☆13Apr 3, 2017Updated 8 years ago
• mpgn / CVE-2018-19276

  View on GitHub
  CVE-2018-19276 - OpenMRS Insecure Object Deserialization RCE
  ☆16Mar 11, 2019Updated 6 years ago
• JackDoan / TP-Link-ArcherC5-RCE

  View on GitHub
  CVE-2018-19537
  ☆20Nov 26, 2018Updated 7 years ago
• mackleadmire / CVE-2018-3191-Rce-Exploit

  View on GitHub
  ☆17Oct 25, 2018Updated 7 years ago
• ilmila / springcss-cve-2014-3625

  View on GitHub
  spring mvc cve-2014-3625
  ☆32Mar 11, 2016Updated 9 years ago
• shaded-enmity / r2-ropstats

  View on GitHub
  A set of tools based on radare2 for analysis of ROP gadgets and payloads.
  ☆15Apr 20, 2016Updated 9 years ago
• securifera / CVE-2018-6546-Exploit

  View on GitHub
  CVE-2018-6546-Exploit
  ☆41Apr 15, 2018Updated 7 years ago
• SecureSkyTechnology / study-struts2-s2-054_055-jackson-cve-2017-7525_cve-2017-15095

  View on GitHub
  Struts2の脆弱性S2-045, S2-055 および Jackson の脆弱性 CVE-2017-7525, CVE-2017-15095 の調査報告
  ☆107Dec 13, 2017Updated 8 years ago
• zerothoughts / jndipoc

  View on GitHub
  Proof of concept showing how java byte code can be injected through InitialContext.lookup() calls
  ☆42Jan 22, 2016Updated 10 years ago