There are 0 repository under ysoserial topic.
80+ Gadgets(30 More than ysoserial). JNDI-Injection-Exploit-Plus is a tool for generating workable JNDI links and provide background services by starting RMI server,LDAP server and HTTP server.
JMX enumeration and attacking tool.
Some codes for bypassing Oracle WebLogic CVE-2018-2628 patch
proof-of-concept for generating Java deserialization payload | Proxy MemShell
A proof-of-concept tool for generating payloads that exploit unsafe Java object deserialization.
Some PoC (Proof-of-Concept) about vulnerability of java deserialization of untrusted data
🌊 Dockerfiles for apps I use. Also take a look at https://github.com/security-dockerfiles
Python-based proof-of-concept tool for generating payloads that utilize unsafe Java object deserialization.
Generate all ysoserial payloads with burp collaborator (or similar)
Automates generating Java serialized payload wordlist with Ysoserial and associated compression/encoding