Alternatives and similar repositories for remote-code-execution-sample

Users that are interested in remote-code-execution-sample are comparing it to the libraries listed below

• victims / maven-security-versions
  Identify vulnerable libraries in Maven dependencies
  ☆46Updated 2 years ago
• fergarrui / custom-bytecode-analyzer
  Java bytecode analyzer customizable via JSON rules
  ☆74Updated 7 years ago
• frohoff / inspector-gadget
  Primitive tool for exploring/querying Java classes via the Tinkerpop Gremlin graph traversal language
  ☆108Updated 9 years ago
• kantega / notsoserial
  Java Agent which mitigates deserialisation attacks by making certain classes unserializable
  ☆190Updated 9 years ago
• kohsuke / youdebug
  Non-interactive Java debugger with Groovy
  ☆80Updated last year
• cschneider4711 / SWAT
  Serial Whitelist Application Trainer
  ☆29Updated 6 years ago
• Cisco-AMP / java_security
  ☆14Updated 6 years ago
• kiview / damn-vulnerable-spring-boot-app
  Spring-Boot app for demonstrating security vulnaribilities
  ☆13Updated 6 years ago
• maaaaz / weblogicpassworddecryptor
  A simple script to decrypt stored passwords from Oracle WebLogic Server configuration files
  ☆30Updated 9 years ago
• mchr3k / org.intrace
  Java tracing agent and live trace client
  ☆73Updated 2 years ago
• fuzzitdev / javafuzz
  coverage guided fuzz testing for java
  ☆228Updated 4 years ago
• Contrast-Security-OSS / contrast-rO0
  A tiny Java agent that blocks attacks against unsafe deserialization
  ☆86Updated 7 years ago
• NashornTools / NnClassLoader
  Java ClassLoader for Nashorn with Maven support. Allows to define any Java dependencies directly in scripts.
  ☆13Updated 5 years ago
• mveytsman / dilettante
  Maven central doesn't do SSL when serving you JARs. Dilettante is a MiTM proxy for exploiting that.
  ☆160Updated 7 months ago
• mdsecresearch / ThriftDecoder
  Apache Thrift Decoder
  ☆34Updated 7 years ago
• JReFrameworker / JReFrameworker
  A practical tool for bytecode manipulation and creating Managed Code Rootkits (MCRs) in the Java Runtime Environment
  ☆58Updated 5 years ago
• fbogner / race2rce
  A PoC that shows that Web Vulnerabilities can indeed be interesting
  ☆20Updated 7 years ago
• OWASP / url-classifier
  Declarative syntax for defining sets of URLs. No need for error-prone regexs.
  ☆21Updated 6 years ago
• stealthcopter / CVE-2020-28243
  CVE-2020-28243 Local Privledge Escalation Exploit in SaltStack Minion
  ☆17Updated 4 years ago
• alex91ar / randomstringutils
  Cracker for Apache.lang.commons RandomStringUtils(). Code for "The Java Soothsayer" talk at EkoParty 2017 by Alejo Popovici.
  ☆32Updated 7 years ago
• Contrast-Security-OSS / joogle
  A static analysis API for finding deserialization attack gadgets
  ☆38Updated 2 years ago
• OWASP / lapse-plus
  LAPSE+ is a security scanner, based on the white box analysis of code for detecting vulnerabilities in Java EE Applications.
  ☆25Updated 7 years ago
• carterjones / javasnoop
  Automatically exported from code.google.com/p/javasnoop
  ☆27Updated 10 years ago
• pwntester / JVMDeserialization
  PoC for Scala and Groovy
  ☆14Updated 9 years ago
• httptoolkit / jvm-http-proxy-agent
  A JVM agent that automatically forces a proxy for HTTP(S) connections and trusts MitM certificates, for all major JVM HTTP clients
  ☆87Updated 6 months ago
• zhuowei / loljava
  Demonstration of the Java System.arraycopy type confusion vulnerability
  ☆22Updated 11 years ago
• faketime-java / faketime
  Fake currentTimeMillis() without class loader hacks
  ☆120Updated 4 years ago
• GrrrDog / Pentest-Env
  A bunch of tricks and configs to configure a work environment for web pentesting
  ☆12Updated 6 years ago
• irsl / jackson-rce-via-spel
  An example project that exploits the default typing issue in Jackson-databind via Spring application contexts and expressions
  ☆124Updated 7 years ago
• dschadow / JavaSecurity
  Java web and command line applications demonstrating various security topics
  ☆237Updated this week