wh1t3p1g / ysoserial
forked from frohoff/ysoserial and added my own payloads.
☆151Updated 5 years ago
Alternatives and similar repositories for ysoserial:
Users that are interested in ysoserial are comparing it to the libraries listed below
- Weblogic com.tangosol.util.extractor.ReflectionExtractor RCE☆176Updated 2 years ago
- weblogic t3 deserialization rce☆268Updated 7 years ago
- A simple python script to generate XML payloads works for XMLDecoder based on ProcessBuilder and Runtime exec☆148Updated 4 years ago
- Weblogic IIOP CVE-2020-2551☆332Updated 4 years ago
- attackRmi☆252Updated 4 years ago
- Shiro RCE (Padding Oracle Attack)☆142Updated 5 years ago
- Weblogic coherence.jar RCE☆176Updated 4 years ago
- Burp extension intended to compact Burp extension tabs by hijacking them to own tab.☆128Updated 4 years ago
- Apache Solr RCE via Velocity template☆108Updated 5 years ago
- Apache Solr Exploits 🌟☆337Updated 4 years ago
- Rusty Joomla RCE Exploit☆69Updated 2 years ago
- A vulnerable application exposing Spring Boot Actuators☆121Updated 6 years ago
- Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()☆79Updated 4 years ago
- A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.☆102Updated 5 years ago
- RMI 反序列化环境 一步步☆210Updated 4 years ago
- Weblogic CVE-2019-2725 CVE-2019-2729 Getshell 命令执行☆68Updated 5 years ago
- 🐱💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱💻☆150Updated 6 years ago
- CVE-2019-2725命令回显+webshell上传+最新绕过☆190Updated 5 years ago
- exploit Apache Flink Web Dashboard unauth rce on right way by python2 scripts☆90Updated 5 years ago
- fastjson-1.2.47☆66Updated 5 years ago
- Spring Boot Actuator (jolokia) XXE/RCE☆316Updated 4 years ago
- Exploitation Tool for CVE-2017-3066 targeting Adobe Coldfusion 11/12☆94Updated 2 years ago
- Confluence 未授权 RCE (CVE-2019-3396) 漏洞☆144Updated 5 years ago
- Redis 4.x & 5.x RCE☆139Updated 5 years ago
- cve-2020-0688☆163Updated 5 years ago
- fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.☆223Updated 2 years ago
- MOGWAI LABS JMX exploitation toolkit☆200Updated 2 years ago
- ☆186Updated 10 months ago
- ☆142Updated 4 years ago
- MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload☆13Updated 5 years ago