Project Name | Stars | Downloads | Repos Using This | Packages Using This | Most Recent Commit | Total Releases | Latest Release | Open Issues | License | Language |
---|---|---|---|---|---|---|---|---|---|---|
Ysoserial | 7,002 | 3 months ago | 55 | mit | Java | |||||
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization. | ||||||||||
Jexboss | 1,470 | 4 years ago | 28 | other | Python | |||||
JexBoss: Jboss (and Java Deserialization Vulnerabilities) verify and EXploitation Tool | ||||||||||
Ysomap | 1,045 | 3 months ago | 2 | apache-2.0 | Java | |||||
A helpful Java Deserialization exploit framework. | ||||||||||
Cve 2019 18935 | 238 | 2 years ago | 2 | apache-2.0 | Python | |||||
RCE exploit for a .NET JSON deserialization vulnerability in Telerik UI for ASP.NET AJAX. | ||||||||||
Deserlab | 157 | 5 years ago | 1 | mit | Java | |||||
Java deserialization exploitation lab. | ||||||||||
Java Deserialization Exploit | 117 | 7 years ago | other | Java | ||||||
Rails Doubletap Rce | 100 | 4 years ago | 9 | Ruby | ||||||
RCE on Rails 5.2.2 using a path traversal (CVE-2019-5418) and a deserialization of Ruby objects (CVE-2019-5420) | ||||||||||
Exserial | 65 | 8 years ago | Python | |||||||
Java Untrusted Deserialization Exploits Tools | ||||||||||
Ysoserial Modified | 53 | 5 years ago | mit | Java | ||||||
That repository contains my updates to the well know java deserialization exploitation tool ysoserial. | ||||||||||
Cve 2023 27372 | 51 | 5 months ago | Python | |||||||
SPIP before 4.2.1 allows Remote Code Execution via form values in the public area because serialization is mishandled. The fixed versions are 3.2.18, 4.0.10, 4.1.8, and 4.2.1. |