summitt / burp-ysoserial
YSOSERIAL Integration with burp suite
☆164Updated 2 years ago
Alternatives and similar repositories for burp-ysoserial:
Users that are interested in burp-ysoserial are comparing it to the libraries listed below
- Java serialization brute force attack tool.☆122Updated 7 years ago
- Central Repo for Burp extensions☆151Updated 3 years ago
- Java deserialization exploitation lab.☆236Updated 6 years ago
- ZAP/Burp plugin that generate script to reproduce a specific HTTP request (Intended for fuzzing or scripted attacks)☆290Updated last year
- Jsdir is a Burp Suite extension that extracts hidden paths from js files and beautifies it for further reading.☆118Updated 4 years ago
- poison and relay NTLM credentials☆174Updated 6 years ago
- Takes a URL and checks the system for the tilde enum vuln and then find the files.☆171Updated 6 years ago
- An Out-of-Band XXE server for retrieving file contents over FTP.☆180Updated 4 years ago
- CVE-2018-2893-PoC☆103Updated 6 years ago
- WebLogic Exploit☆142Updated 6 years ago
- RCE on Apache Solr using deserialization of untrusted data via jmx.serviceUrl☆209Updated 6 years ago
- A Burp extension for generic extraction and reuse of data within HTTP requests and responses.☆91Updated 3 years ago
- CVE-2018-7600 - Drupal 7.x RCE☆71Updated 6 years ago
- Mogwai Java Management Extensions (JMX) Exploitation Toolkit☆173Updated 8 years ago
- Apache Tomcat Remote Code Execution on Windows☆185Updated 5 years ago
- Atlassian JIRA Template injection vulnerability RCE☆93Updated 5 years ago
- Utils☆267Updated 9 years ago
- XXE Out of Band Server.☆170Updated last year
- A vulnerable application exposing Spring Boot Actuators☆121Updated 6 years ago
- Security checks pack for Burp Suite☆139Updated 7 years ago
- (Deprecated) HQLmap, Automatic tool to exploit HQL injections☆228Updated 5 years ago
- Script to test if a server is vulnerable to the JetLeak vulnerability☆144Updated 8 years ago
- A Burp Extension to test applications for vulnerability to the Web Cache Deception attack☆138Updated 4 years ago
- CVE-2018-2894 WebLogic Unrestricted File Upload Lead To RCE Check Script☆138Updated 6 years ago
- J2EEScan is a plugin for Burp Suite Proxy. The goal of this plugin is to improve the test coverage during web application penetration tes…☆74Updated 3 years ago
- CVE-2019-3396 confluence SSTI RCE☆174Updated 4 years ago
- Jenkins RCE PoC. From unauthenticated user to remote code execution, it's a hacker's dream!☆294Updated 5 years ago
- Collection of bypass gadgets to extend and wrap ysoserial payloads☆351Updated 2 years ago
- Apache Solr RCE (ENABLE_REMOTE_JMX_OPTS="true")☆101Updated 5 years ago
- JNDI Attacking Tool☆238Updated 2 years ago