Alternatives and similar repositories for jackson-databind-POC

Users that are interested in jackson-databind-POC are comparing it to the libraries listed below

• Wfzsec / ysoserial-poc
  记录调试分析ysoserial系列的学习过程，主要包含手动构造的一些poc，便于加深对漏洞和工具的理解
  ☆30Updated 5 years ago
• ldbfpiaoran / springboot-acl-bypass
  springboot getRequestURI acl bypass
  ☆37Updated 5 years ago
• 1135 / Kong_exploit
  ☆41Updated 5 years ago
• jas502n / xxl-job
  xxl-job RESTful API RCE
  ☆74Updated 4 years ago
• Heart-Sky / port-multiplexing
  端口复用相关思路和工具
  ☆65Updated 6 years ago
• iSafeBlue / redis-rce
  Redis RCE 的几种方法
  ☆90Updated last year
• welk1n / FastjsonPocs
  一些结合第三方组件的Fastjson POC，在1.2.48以后版本中陆续被添加至黑名单。
  ☆56Updated 6 years ago
• fairyming / CVE-2020-8840
  CVE-2020-8840：FasterXML/jackson-databind 远程代码执行漏洞
  ☆37Updated 5 years ago
• threedr3am / log-agent
  利用agent hock指定的class，在jar运行周期内，用于跟踪被执行的方法，辅助做一些事情，比如挖洞啊
  ☆126Updated 5 years ago
• longofo / PaddingOracleAttack-Shiro-721
  Shiro-721 Padding Oracle Attack
  ☆73Updated 4 years ago
• jweny / shiro-cve-2020-17523
  shiro-cve-2020-17523 漏洞的两种绕过姿势分析 以及配套的漏洞环境
  ☆119Updated 4 years ago
• Draven996 / jniwebshell
  ☆42Updated 6 years ago
• xyy-ws / NoAgent-memshell-scanner
  ☆108Updated 3 years ago
• iSafeBlue / fastjson-autotype-bypass-demo
  fastjson 1.2.68 版本 autotype bypass
  ☆142Updated 3 years ago
• rufherg / WebLogic_Basic_Poc
  用于WebLogic poc及exp测试的基础脚本，后续将集成各版本poc库
  ☆94Updated 5 years ago
• threedr3am / FindClassInJars
  个人用于在自动化挖掘gadget时，方便查找gadget chains中class所在jar包，以助于便捷审计测试gadget有效性的那么一个小工具。
  ☆60Updated 5 years ago
• Al1ex / CVE-2020-36179
  CVE-2020-36179~82 Jackson-databind SSRF&RCE
  ☆81Updated 4 years ago
• lijiejie / log4j2_vul_local_scanner
  Log4j 漏洞本地检测脚本。 Scan all java processes on your host to check whether it's affected by log4j2 remote code execution vulnerability (CVE-20…
  ☆84Updated 4 years ago
• Afant1 / RemoteObjectInvocationHandler
  bypass JEP290 RaspHook code
  ☆63Updated 5 years ago
• langligelang / maobugs
  java 漏洞平台包含各种CVE
  ☆23Updated 3 years ago
• SummerSec / LookupInterface
  CodeQL 寻找 JNDI利用 Lookup接口
  ☆164Updated 3 years ago
• threedr3am / GuanYu
  JVM runtime class loading protection agent.（JVM类加载保护agent）
  ☆49Updated 4 years ago
• 0xrumble / BytecodeScreen
  ☆50Updated 3 years ago
• H3rmesk1t / Fastjson-Gadgets-Automatic-Scanner
  Automatically scan jar packages by using ast to find fastjson gadgets. In particular, this project is limited to mining Gadgets that may …
  ☆49Updated 3 years ago
• jas502n / fastjson-1.2.61-RCE
  fastjson-1.2.61-RCE
  ☆33Updated 6 years ago
• potats0 / AgentMemShellScanner
  清除基于java agent木马
  ☆80Updated 4 years ago
• TheKingOfDuck / JNDI-Injection-Exploit
  JNDI注入测试工具改版（A tool which generates JNDI links can start several servers to exploit JNDI Injection vulnerability,like Jackson,Fastjson,et…
  ☆49Updated 5 years ago
• phith0n / PaddingZip
  PaddingZip is a tool that you can craft a zip file that contains the padding characters between the file content.
  ☆76Updated 3 years ago
• fupinglee / SpringBootWebshell
  Springboot的一个webshell
  ☆45Updated 6 years ago
• TheKingOfDuck / Copy2Java
  一键生成Java代码的burp插件/Generate Java script for fuzzing in Burp。
  ☆51Updated 3 years ago