Exploit PoC for Spring RCE issue (CVE-2011-2894)
☆44Dec 17, 2023Updated 2 years ago
Alternatives and similar repositories for SpringBreaker
Users that are interested in SpringBreaker are comparing it to the libraries listed below
Sorting:
- CVE-2017-13089☆55Nov 15, 2017Updated 8 years ago
- spring mvc cve-2014-3625☆32Mar 11, 2016Updated 9 years ago
- Finally, reverse/bind shells written in python, encrypted with ssl!☆39Nov 1, 2019Updated 6 years ago
- S2-046-PoC☆112Mar 21, 2017Updated 8 years ago
- Repository to hold materials for DefCon_RESTing presentation by Dinis, Abe and Alvaro☆53Aug 5, 2013Updated 12 years ago
- Study about HQL injection exploitation.☆51May 15, 2016Updated 9 years ago
- Web hacking assistance toolkit☆111Sep 19, 2017Updated 8 years ago
- 用于还原svn仓库,支持1.6,1.7☆26Jun 3, 2016Updated 9 years ago
- ☆27Mar 6, 2021Updated 4 years ago
- S2-055的环境,基于rest-show-case改造☆37Dec 7, 2017Updated 8 years ago
- ☆82Apr 20, 2021Updated 4 years ago
- POC for XStream RCE☆13Dec 23, 2013Updated 12 years ago
- Microsoft Outlook WebAPP Brute☆65May 27, 2014Updated 11 years ago
- ☆133Nov 6, 2015Updated 10 years ago
- CVE-2019-2890 WebLogic 反序列化RCE漏洞☆44Dec 8, 2019Updated 6 years ago
- 2 web tasks from ZeroNights HackQuest 2016☆50Mar 24, 2017Updated 8 years ago
- Collection of bypass gadgets to extend and wrap ysoserial payloads☆386Apr 16, 2022Updated 3 years ago
- ☆91Feb 22, 2021Updated 5 years ago
- A tool for detecting XML External Entity (XXE) vulnerabilities in Java applications☆72Sep 4, 2014Updated 11 years ago
- ☆17Jan 3, 2021Updated 5 years ago
- A Metasploit module which allows authenticated database users to perform command execution of PostgreSQL 9.3 > Latest Version☆14May 8, 2019Updated 6 years ago
- ssrf、ssrfIntranetFuzz、dnsRebinding、recordEncode、dnsPoisoning、Support ipv4/ipv6☆217Aug 17, 2017Updated 8 years ago
- Primitive tool for exploring/querying Java classes via the Tinkerpop Gremlin graph traversal language☆110May 12, 2016Updated 9 years ago
- An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions☆124Jan 9, 2018Updated 8 years ago
- A Java serializer in JavaScript☆80May 21, 2018Updated 7 years ago
- Java Message Exploitation Tool☆511Jul 6, 2022Updated 3 years ago
- Spring messaging STOMP protocol RCE☆113Apr 12, 2018Updated 7 years ago
- JavaPayload is a collection of pure Java payloads to be used for post-exploitation from pure Java exploits or from common misconfiguratio…☆125Jan 20, 2025Updated last year
- Proof of concept exploit, showing how to do bytecode injection through untrusted deserialization with Spring Framework 4.2.4☆116May 17, 2019Updated 6 years ago
- Sample codes written for the Hackers to Hackers Conference magazine 2017 (H2HC).☆520Mar 11, 2022Updated 3 years ago
- CVE-2018-6546-Exploit☆41Apr 15, 2018Updated 7 years ago
- Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)☆38Apr 14, 2016Updated 9 years ago
- Java RMI enumeration and attack tool.☆745Sep 28, 2017Updated 8 years ago
- Burp Suite extension for JAX-RS☆65Mar 17, 2017Updated 8 years ago
- A POC for the Java agent of Elastic APM☆12Mar 1, 2018Updated 7 years ago
- Exploit for Adobe Coldfusion BlazeDS Java Object Deserialization RCE☆11Feb 7, 2018Updated 8 years ago
- SA-CORE-2018-004 POC #drupalgeddon3☆41Apr 28, 2018Updated 7 years ago
- ☆11Oct 28, 2022Updated 3 years ago
- ☆21Dec 4, 2014Updated 11 years ago