SuperSerial
Vulnerability scanner
A Burp Suite Extender to identify Java Deserialization vulnerabilities in client requests and server responses.
9 stars
1 watching
2 forks
Language: Java
last commit: over 4 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
| directdefense/superserial-active | An active Java deserialization vulnerability identifier and exploiter | 7 |
 secdec/attack-surface-detector-burp | Identifies web app endpoints and parameters to help detect vulnerabilities | 98 |
 bishopfox/gadgetprobe | Tools for analyzing and exploiting vulnerabilities in Java deserialization vulnerabilities | 585 |
 federicodotta/java-deserialization-scanner | A plugin for detecting and exploiting vulnerabilities in Java deserialization | 775 |
 gand3lf/semgrepper | An extension to Burp Suite that integrates Semgrep for vulnerability scanning and analysis | 87 |
 codewatchorg/burp-indicatorsofvulnerability | A Burp extension that scans application traffic for signs of vulnerabilities and potential attack targets | 41 |
 contrast-security-oss/burptrast | Automates vulnerability assessment and endpoint discovery for web applications using Contrast Security's Teamserver API. | 16 |
 vulnerscom/burp-dirbuster | A plugin designed to facilitate the use of Dirbuster in Burp Suite for discovering potential vulnerabilities. | 70 |
 cys4srl/sensitivediscoverer | An extension for Burp Suite to automatically search for sensitive strings in HTTP messages | 42 |
 s0md3v/striker | An offensive information and vulnerability scanner that identifies potential security issues in web applications | 2,234 |
| vulnerscom/burp-vulners-scanner | A tool that searches for vulnerabilities in web applications using an external API | 834 |
 jackofmosttrades/gadgetinspector | Analyzes Java applications for potential deserialization gadget chains to help identify vulnerabilities and prioritize remediation. | 996 |
 gauravnarwani97/trishul | Automated vulnerability detection tool for web applications | 234 |
 netspi/javaserialkiller | A Burp extension that enables Java Deserialization Attacks using a payload generator tool | 208 |
 the-login/dns-analyzer | A tool to analyze DNS vulnerabilities in web applications and identify potential security risks. | 94 |