wh1t3p1g / ysoserial

Related projects ⓘ

Alternatives and complementary repositories for ysoserial

• Y4er / CVE-2020-2555
  Weblogic com.tangosol.util.extractor.ReflectionExtractor RCE
  ☆176Updated last year
• 5up3rc / weblogic_cmd
  weblogic t3 deserialization rce
  ☆264Updated 7 years ago
• wuppp / shiro_rce_exp
  Shiro RCE (Padding Oracle Attack)
  ☆142Updated 5 years ago
• mhaskar / XMLDecoder-payload-generator
  A simple python script to generate XML payloads works for XMLDecoder based on ProcessBuilder and Runtime exec
  ☆149Updated 3 years ago
• kingkaki / ysoserial
  A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
  ☆101Updated 4 years ago
• Y4er / CVE-2020-2883
  Weblogic coherence.jar RCE
  ☆178Updated 4 years ago
• Y4er / CVE-2020-2551
  Weblogic IIOP CVE-2020-2551
  ☆333Updated 4 years ago
• waderwu / attackRmi
  attackRmi
  ☆250Updated 4 years ago
• jas502n / solr_rce
  Apache Solr RCE via Velocity template
  ☆107Updated 5 years ago
• Imanfeng / Apache-Solr-RCE
  Apache Solr Exploits 🌟
  ☆336Updated 4 years ago
• mpgn / Spring-Boot-Actuator-Exploit
  Spring Boot Actuator (jolokia) XXE/RCE
  ☆317Updated 4 years ago
• random-robbie / cve-2020-0688
  cve-2020-0688
  ☆162Updated 4 years ago
• codeplutos / MySQL-JDBC-Deserialization-Payload
  MySQL JDBC Deserialization Payload / MySQL客户端jdbc反序列化漏洞payload
  ☆13Updated 4 years ago
• lalajun / RMIDeserialize
  RMI 反序列化环境 一步步
  ☆211Updated 4 years ago
• Y4er / CVE-2020-14645
  Weblogic CVE-2020-14645 UniversalExtractor JNDI injection getDatabaseMetaData()
  ☆79Updated 4 years ago
• kiks7 / rusty_joomla_rce
  Rusty Joomla RCE Exploit
  ☆70Updated last year
• black-mirror / Weblogic
  Weblogic CVE-2019-2725 CVE-2019-2729 Getshell 命令执行
  ☆68Updated 5 years ago
• veracode-research / actuator-testbed
  A vulnerable application exposing Spring Boot Actuators
  ☆122Updated 5 years ago
• hvqzao / burp-wildcard
  Burp extension intended to compact Burp extension tabs by hijacking them to own tab.
  ☆128Updated 3 years ago
• nibiwodong / CNVD-2020-10487-Tomcat-ajp-POC
  CNVD-2020-10487(CVE-2020-1938), tomcat ajp 文件读取漏洞poc
  ☆118Updated 4 years ago
• mpgn / CVE-2019-7238
  🐱‍💻 Poc of CVE-2019-7238 - Nexus Repository Manager 3 Remote Code Execution 🐱‍💻
  ☆149Updated 5 years ago
• Al1ex / CVE-2020-36179
  CVE-2020-36179~82 Jackson-databind SSRF&RCE
  ☆81Updated 3 years ago
• jas502n / gitlab-SSRF-redis-RCE
  GitLab 11.4.7 SSRF配合redis远程执行代码
  ☆123Updated 5 years ago
• PortSwigger / authz
  ☆106Updated 7 years ago
• mogwailabs / mjet
  MOGWAI LABS JMX exploitation toolkit
  ☆197Updated last year
• inspiringz / Shiro-721
  Shiro-721 RCE Via RememberMe Padding Oracle Attack
  ☆254Updated 4 years ago
• Y4er / fastjson-bypass-autotype-1.2.68
  fastjson bypass autotype 1.2.68 with Throwable and AutoCloseable.
  ☆223Updated 2 years ago