Alternatives and similar repositories for remote-code-execution-sample

Users that are interested in remote-code-execution-sample are comparing it to the libraries listed below

• Cisco-AMP / java_security
  ☆14Updated 6 years ago
• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• fergarrui / custom-bytecode-analyzer
  Java bytecode analyzer customizable via JSON rules
  ☆74Updated 7 years ago
• frohoff / inspector-gadget
  Primitive tool for exploring/querying Java classes via the Tinkerpop Gremlin graph traversal language
  ☆107Updated 9 years ago
• kiview / damn-vulnerable-spring-boot-app
  Spring-Boot app for demonstrating security vulnaribilities
  ☆13Updated 5 years ago
• dschadow / CloudSecurity
  Cloud security projects with Spring Cloud Config Server and Vault
  ☆28Updated 2 weeks ago
• fuzzitdev / javafuzz
  coverage guided fuzz testing for java
  ☆228Updated 4 years ago
• cschneider4711 / SWAT
  Serial Whitelist Application Trainer
  ☆29Updated 6 years ago
• kantega / notsoserial
  Java Agent which mitigates deserialisation attacks by making certain classes unserializable
  ☆188Updated 9 years ago
• righettod / log-requests-to-sqlite
  BURP extension to record every HTTP request send via BURP and create an audit trail log of an assessment.
  ☆65Updated 2 months ago
• Swordfish-Security / Checkmarx-Custom-Query-Rules
  ☆13Updated 4 years ago
• CERT-W / hadoop-attack-library
  A collection of pentest tools and resources targeting Hadoop environments
  ☆35Updated 8 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• pwntester / XStreamServer
  RCE Exploit PoC for Spring based RESTFul APIs using XStream as Unmarshaler
  ☆20Updated 11 years ago
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆85Updated 7 years ago
• secdec / astam-correlator
  Vulnerability consolidation and management tool, enhances scan results by merging different findings of the same weakness across multiple…
  ☆24Updated 2 years ago
• LinkedInAttic / sometime
  A BurpSuite plugin to detect Same Origin Method Execution vulnerabilities
  ☆60Updated 8 years ago
• 1337g / CVE-2018-0101-DOS-POC
  ☆14Updated 7 years ago
• JReFrameworker / JReFrameworker
  A practical tool for bytecode manipulation and creating Managed Code Rootkits (MCRs) in the Java Runtime Environment
  ☆58Updated 5 years ago
• kohsuke / youdebug
  Non-interactive Java debugger with Groovy
  ☆80Updated last year
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆123Updated 7 years ago
• SECFORCE / CVE-2017-3599
  Proof of concept exploit for CVE-2017-3599
  ☆23Updated 8 years ago
• stevespringett / vulndb-data-mirror
  A simple Java command-line utility to mirror the entire contents of VulnDB.
  ☆45Updated 7 months ago
• cn-panda / logbackRceDemo
  The project is a simple vulnerability Demo environment written by SpringBoot. Here, I deliberately wrote a vulnerability environment wher…
  ☆87Updated 3 years ago
• spoofzu / jvmxray
  Externalize Java application access to protected resources as log messages.
  ☆42Updated 2 weeks ago
• alex91ar / randomstringutils
  Cracker for Apache.lang.commons RandomStringUtils(). Code for "The Java Soothsayer" talk at EkoParty 2017 by Alejo Popovici.
  ☆32Updated 7 years ago
• fbogner / race2rce
  A PoC that shows that Web Vulnerabilities can indeed be interesting
  ☆20Updated 7 years ago
• maaaaz / weblogicpassworddecryptor
  A simple script to decrypt stored passwords from Oracle WebLogic Server configuration files
  ☆30Updated 8 years ago
• carterjones / javasnoop
  Automatically exported from code.google.com/p/javasnoop
  ☆27Updated 10 years ago
• jas502n / CVE-2019-10392
  CVE-2019-10392 RCE Jackson with Git Client Plugin 2.8.2 (Authenticated)
  ☆21Updated 5 years ago