qtc-de / beanshooterLinks
JMX enumeration and attacking tool.
☆471Updated 3 months ago
Alternatives and similar repositories for beanshooter
Users that are interested in beanshooter are comparing it to the libraries listed below
Sorting:
- Java RMI Vulnerability Scanner☆894Updated last year
- jolokia-exploitation-toolkit☆298Updated 10 months ago
- That repository contains my updates to the well know java deserialization exploitation tool ysoserial.☆183Updated 3 years ago
- IOXIDResolver.py from AirBus Security☆258Updated last year
- project-blacklist3r☆591Updated 3 weeks ago
- This tool is for letting you know how strong your disable_functions is and how you can bypass that.☆140Updated 5 years ago
- RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX.☆360Updated 3 years ago
- CVE-2022-44268 ImageMagick Arbitrary File Read - Payload Generator☆273Updated 2 years ago
- ☆413Updated 3 years ago
- ☆411Updated 2 years ago
- HopLa Burp Suite Extender plugin - Brings AI capabilities, autocompletion support, and a set of useful payloads to Burp Suite☆785Updated 2 months ago
- Privilege escalation with polkit - CVE-2021-3560☆122Updated 4 years ago
- Probe endpoints consuming Java serialized objects to identify classes, libraries, and library versions on remote Java classpaths.☆609Updated 4 years ago
- Log4j jndi injects the Payload generator☆487Updated 3 years ago
- MOGWAI LABS JMX exploitation toolkit☆205Updated 2 years ago
- Grafana Unauthorized arbitrary file reading vulnerability☆365Updated 2 years ago
- ☆387Updated 4 years ago
- Proxylogon & Proxyshell & Proxyoracle & Proxytoken & All exchange server history vulns summarization :)☆550Updated last year
- Burp Extensions Api☆183Updated last week
- Ghostcat read file/code execute,CNVD-2020-10487(CVE-2020-1938)☆402Updated 5 years ago
- A super small jsp webshell with file upload capabilities.☆309Updated 4 years ago
- RMIScout uses wordlist and bruteforce strategies to enumerate Java RMI functions and exploit RMI parameter unmarshalling vulnerabilities☆442Updated 3 years ago
- Python3 script to quickly get various information from a domain controller through his LDAP service.☆267Updated 10 months ago
- RCE 0-day for GhostScript 9.50 - Payload generator☆547Updated 4 years ago
- CVE 2023 25690 Proof of concept - mod_proxy vulnerable configuration on Apache HTTP Server versions 2.4.0 - 2.4.55 leads to HTTP Request …☆283Updated last year
- WSO2 RCE (CVE-2022-29464) exploit and writeup.☆374Updated 3 years ago
- Herramientas y utilidades de pentesting, ethical hacking y seguridad ofensiva.☆39Updated 4 months ago
- Kraken, a modular multi-language webshell coded by @secu_x11☆548Updated last year
- Exploiting CVE-2021-42278 and CVE-2021-42287 to impersonate DA from standard domain user☆937Updated 2 years ago
- Generates a `php://filter` chain that adds a prefix and a suffix to the contents of a file.☆228Updated last year