Alternatives and similar repositories for BurpSuite-Extender-fastjson:

Users that are interested in BurpSuite-Extender-fastjson are comparing it to the libraries listed below

• iSafeBlue / fastjson-autotype-bypass-demo
  fastjson 1.2.68 版本 autotype bypass
  ☆140Updated 2 years ago
• admintony / shiro_rememberMe_Rce
  利用长亭xray高级版的回显Gadget重写的一个shiro反序列化利用工具。
  ☆123Updated 4 years ago
• kingkaki / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆102Updated 4 years ago
• Afant1 / JavaSearchTools
  ☆61Updated 4 years ago
• jas502n / CVE-2019-2888
  WebLogic EJBTaglibDescriptor XXE漏洞(CVE-2019-2888)
  ☆58Updated 5 years ago
• timwhitez / Frog-Fp
  🐸fingerprint detect framework 批量深度指纹识别框架
  ☆119Updated 2 years ago
• 1c3z / fileleak
  又一款敏感文件泄漏检测工具
  ☆104Updated 5 years ago
• imsebao / Code-Audit
  ☆69Updated 5 years ago
• fuhei / tongda_rce
  通达OA RCE漏洞
  ☆79Updated 4 years ago
• DSO-Lab / defvul
  DSO-Lab 漏洞研究成果整理
  ☆82Updated 2 years ago
• langligelang / CAS_EXP
  CAS 硬编码 远程代码执行漏洞
  ☆125Updated 3 years ago
• Qclover / jsspider
  A js infomation dig tool.
  ☆69Updated 4 years ago
• Mochazz / Struts2-Vuln
  关于Struts2框架的历史漏洞个人分析文章
  ☆53Updated 4 years ago
• sv3nbeast / 2019_Vul_warning_Poc_Collect
  整理的2019年厂商发布的漏洞预警公开POC集合，不足之处还希望多多补充，完善
  ☆112Updated 5 years ago
• wuppp / shiro_rce_exp
  Shiro RCE (Padding Oracle Attack)
  ☆143Updated 5 years ago
• TheKingOfDuck / paramFuzzer
  一款高效的参数fuzz工具|A faster param fuzzing test tool
  ☆101Updated 4 years ago
• w0x68y / bypassWAF
  bypassD盾、安全狗、云锁
  ☆107Updated 3 years ago
• Jumbo-WJB / burp_find_shiro
  通过burp代理流量寻找shiro站点
  ☆60Updated 4 years ago
• jas502n / SHIRO-550
  Shiro RememberMe 1.2.4 反序列化 漏洞
  ☆53Updated 5 years ago
• guimaizi / testing_wave
  ☆58Updated 4 years ago
• Y4er / fastjson-bypass-autotype-1.2.68
  fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.
  ☆223Updated 2 years ago
• TheKingOfDuck / burpJsEncrypter
  More Easier Burp Extension To Solve Javascript Front End Encryption,一款更易使用的解决前端加密问题的Burp插件。
  ☆45Updated 4 years ago
• jiansiting / CVE-2019-2725
  weblogic绕过和wls远程执行
  ☆36Updated 5 years ago
• jas502n / SHIRO-721
  RememberMe Padding Oracle Vulnerability RCE
  ☆71Updated 5 years ago
• r35tart / RedisDirScan
  此脚本用于测试 Rdies 未授权访问，在没权限写ssh私钥和定时任务又不知道web绝对路径的情况下，进行WEB目录探测
  ☆73Updated 5 years ago
• rufherg / WebLogic_Basic_Poc
  用于WebLogic poc及exp测试的基础脚本，后续将集成各版本poc库
  ☆92Updated 4 years ago
• LFYSec / ActuatorExploit
  SpringBoot Actuator未授权自动化利用，支持信息泄漏/RCE
  ☆232Updated 4 years ago
• Artemis1029 / Java_xmlhack
  帮助java环境下任意文件下载情况自动化读取源码的小工具
  ☆165Updated 5 years ago
• StarkChristmas / Shiro_exploit
  Apache Shiro Java Analysis and Utilization of Deserialization Vulnerabilities
  ☆41Updated 4 years ago
• TheKingOfDuck / BypassAVAddUsers
  绕过杀毒软件添加用户
  ☆96Updated 5 years ago