Alternatives and similar repositories for beanshooter:

Users that are interested in beanshooter are comparing it to the libraries listed below

• laluka / jolokia-exploitation-toolkit
  jolokia-exploitation-toolkit
  ☆284Updated 2 months ago
• teambi0s / dfunc-bypasser
  This tool is for letting you know how strong your disable_functions is and how you can bypass that.
  ☆124Updated 5 years ago
• qtc-de / remote-method-guesser
  Java RMI Vulnerability Scanner
  ☆851Updated 7 months ago
• pimps / ysoserial-modified
  That repository contains my updates to the well know java deserialization exploitation tool ysoserial.
  ☆177Updated 2 years ago
• mubix / IOXIDResolver
  IOXIDResolver.py from AirBus Security
  ☆229Updated last year
• testanull / ProxyNotShell-PoC
  ☆406Updated 2 years ago
• BishopFox / GadgetProbe
  Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.
  ☆595Updated 3 years ago
• pyn3rd / Spring-Boot-Vulnerability
  ☆402Updated 3 years ago
• synacktiv / HopLa
  HopLa Burp Suite Extender plugin - Adds autocompletion support and useful payloads in Burp Suite
  ☆722Updated 3 years ago
• sherlocksecurity / VMware-CVE-2022-22954
  POC for VMWARE CVE-2022-22954
  ☆282Updated 2 years ago
• dotPY-hax / gitlab_RCE
  RCE for old gitlab version <= 11.4.7 & 12.4.0-12.8.1 and LFI for old gitlab versions 10.4 - 12.8.1
  ☆157Updated 4 years ago
• httpvoid / CVE-Reverse
  ☆281Updated 3 years ago
• dmaasland / proxyshell-poc
  ☆378Updated 3 years ago
• mpgn / BackupOperatorToDA
  From an account member of the group Backup Operators to Domain Admin without RDP or WinRM on the Domain Controller
  ☆412Updated last month
• simioni87 / auth_analyzer
  Burp Extension for testing authorization issues. Automated request repeating and parameter value extraction on the fly.
  ☆190Updated 8 months ago
• ambionics / wrapwrap
  Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.
  ☆203Updated 4 months ago
• zzzteph / probable_subdomains
  Subdomains analysis and generation tool. Reveal the hidden!
  ☆235Updated this week
• FDlucifer / Proxy-Attackchain
  Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)
  ☆523Updated last year
• BishopFox / rmiscout
  RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities
  ☆429Updated 2 years ago
• BishopFox / CVE-2023-3519
  RCE exploit for CVE-2023-3519
  ☆221Updated last year
• Almorabea / Polkit-exploit
  Privilege escalation with polkit - CVE-2021-3560
  ☆118Updated 3 years ago
• mogwailabs / mjet
  MOGWAI LABS JMX exploitation toolkit
  ☆200Updated last year
• duc-nt / CVE-2022-44268-ImageMagick-Arbitrary-File-Read-PoC
  CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator
  ☆272Updated 2 years ago
• PortSwigger / burp-extensions-montoya-api
  Burp Extensions Api
  ☆155Updated last week
• Ridter / noPac
  Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user
  ☆843Updated 2 years ago
• NotSoSecure / Blacklist3r
  project-blacklist3r
  ☆521Updated 2 years ago
• noperator / CVE-2019-18935
  RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.
  ☆353Updated 2 years ago
• SecurityRiskAdvisors / cmd.jsp
  A super small jsp webshell with file upload capabilities.
  ☆294Updated 3 years ago
• epi052 / cve-2018-15473
  Multi-threaded, IPv6 aware, wordlists/single-user username enumeration via CVE-2018-15473
  ☆105Updated 9 months ago
• jakabakos / CVE-2023-36664-Ghostscript-command-injection
  Ghostscript command injection vulnerability PoC (CVE-2023-36664)
  ☆117Updated last year