yolosec / deserialize-serverLinks
Demo server for testing Java deserialization payloads
☆15Updated 9 years ago
Alternatives and similar repositories for deserialize-server
Users that are interested in deserialize-server are comparing it to the libraries listed below
Sorting:
- Payload generator for Java Binary Deserialization attack with Commons FileUpload (CVE-2013-2186)☆38Updated 9 years ago
- Image size issues plugin for Burp Suite☆95Updated 7 years ago
- ☆71Updated 7 years ago
- Python Implementation of a .NET Padding Oracle Assessment Tool☆30Updated 9 years ago
- ActionScript Proof of Concept to perform cross-domain reads☆43Updated 12 years ago
- PHDAYS |||☆17Updated 12 years ago
- Burplay is a Burp Extension allowing for replaying any number of requests using same modifications definition. Its main purpose is to aid…☆83Updated 8 years ago
- Penetration Testing Tools Developed by AppSec Consulting.☆48Updated 6 years ago
- Materials related to the 2017 BSides Las Vegas presentation☆52Updated 4 years ago
- A C# web handler that is vulnerable to XXE with PoC. This is to serve as an example of what vulnerable C# code looks like.☆26Updated 12 years ago
- Burp Suite plugin created for using Collaborator tool during manual testing in a comfortable way!☆104Updated 7 years ago
- WhiteBox CMS analysis☆68Updated 2 years ago
- Modified version of ActiveScan++ Burp Suite extension☆31Updated 8 years ago
- Updated version of SWFIntruder☆27Updated 9 years ago
- Advanced XPath Injection Tool☆35Updated 10 years ago
- Burp Suite extension to generate Intruder payloads using Radamsa☆89Updated 8 years ago
- Various tools for managing bug bounty recon and exploration.☆49Updated 2 years ago
- Highlight Burp proxy requests made by different browsers☆29Updated 8 years ago
- CSV injection Vulnerable Script.☆29Updated 8 years ago
- Tool for checking Whether a domain or its multiple sub-domains are up and running.☆72Updated 6 years ago
- BurpSuite extension to assist with Automated Forced Browsing/Endpoint Enumeration☆23Updated 7 years ago
- An adaptive, intelligent XSS fuzzer that learns how the response is reflected and carefully crafts an XSS payload to match☆42Updated 13 years ago
- Extension adds a new tab in Burp Suite called Extractor☆42Updated 6 years ago
- Allows you to trace where inputs are reflected back to the user.☆37Updated 8 years ago
- Spray SMB with hashes, Then psexec☆32Updated 6 years ago
- Stay on top of new domains! Bug bounty hunters can use this tool to receive Pushbullet notifications each time there is a new target subd…☆26Updated 7 years ago
- Everything you need to exploit overly permissive crossdomain.xml files☆86Updated 10 years ago
- Burp extension to help developers replicate findings from pen tests☆70Updated last year
- HTTPoxy Exploit Scanner by 1N3 @CrowdShield☆102Updated 8 years ago
- Python script to exploit java unserialize on t3 (Weblogic)☆61Updated 8 years ago