yaml-payload
Deserialization payload generator
A utility for generating deserialization payloads in SnakeYAML format to exploit certain security vulnerabilities
A tiny project for generating SnakeYAML deserialization payloads
563 stars
5 watching
102 forks
Language: Java
last commit: over 5 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 notsosecure/serializedpayloadgenerator | A tool to generate deserialization payloads for exploiting vulnerabilities in various frameworks | 101 |
 netspi/javaserialkiller | A Burp extension that enables Java Deserialization Attacks using a payload generator tool | 208 |
 vavkamil/xss2png | Generates PNG images with stored XSS payloads in IDAT chunks. | 170 |
 mhaskar/xmldecoder-payload-generator | A tool to generate XML payloads for use with XMLDecoder based on ProcessBuilder and Runtime exec | 149 |
 cloudbase/powershell-yaml | A PowerShell module that serializes and deserializes simple objects to and from YAML format. | 429 |
 two06/inception | An In-memory compilation and reflective loading framework for generating and executing malicious C# payloads to evade antivirus detection. | 368 |
 bishopfox/gadgetprobe | Tools for analyzing and exploiting vulnerabilities in Java deserialization vulnerabilities | 585 |
 decorators-squad/eo-yaml | A YAML serialization library for Java 8 and above with an intuitive API and features like block style representation and support for comments. | 263 |
 jcazevedo/moultingyaml | A Scala wrapper for a YAML serialization library | 99 |
 joaomatosf/javadeserh2hc | A lab project providing code samples and tools to understand deserialization vulnerabilities in Java applications. | 491 |
 genetic-malware/ebowla | A framework for creating environmental keyed payloads | 737 |
 pandastrike/yaml-cli | A simple command-line utility for parsing and modifying YAML files. | 86 |
 arieljt/vtcodesimilarity-yaragen | Automatically generates Yara rules to hunt for similar code samples based on VirusTotal's code similarity feature. | 96 |
 tailrecursion/cljson | A Clojure/ClojureScript library for accelerating JSON data deserialization in browser applications. | 62 |
 xen0ph0n/yaragenerator | Automates the creation of Yara rules to detect malware and other malicious objects of interest by analyzing sample files from various sources. | 332 |