gadgetinspector
Vulnerability scanner
Analyzes Java applications for potential deserialization gadget chains to help identify vulnerabilities and prioritize remediation.
A byte code analyzer for finding deserialization gadget chains in Java applications
996 stars
26 watching
220 forks
Language: Java
last commit: over 3 years ago Related projects:
| Repository | Description | Stars |
|---|---|---|
 bishopfox/gadgetprobe | Tools for analyzing and exploiting vulnerabilities in Java deserialization vulnerabilities | 585 |
 directdefense/superserial | A Burp Suite Extender to identify Java Deserialization vulnerabilities in client requests and server responses. | 9 |
 kathanp19/gaussrf | A tool for identifying potential vulnerabilities in websites by fetching known URLs and filtering out ones with open redirects or SSRF parameters. | 165 |
 david-a-wheeler/flawfinder | Analyzes C/C++ source code for security vulnerabilities and reports potential flaws. | 489 |
 mbechler/serianalyzer | Analyzes Java bytecode to identify potential deserialization vulnerabilities. | 241 |
 federicodotta/java-deserialization-scanner | A plugin for detecting and exploiting vulnerabilities in Java deserialization | 775 |
 gand3lf/semgrepper | An extension to Burp Suite that integrates Semgrep for vulnerability scanning and analysis | 87 |
 hackthelegacy/hack400tool | A set of tools for gathering information and exploiting vulnerabilities in IBM Power Systems | 96 |
 qtc-de/remote-method-guesser | A tool used to identify and exploit security vulnerabilities in Java RMI endpoints | 828 |
 nodesecure/cli | Analyzes JavaScript package or local Node.js project for security vulnerabilities and provides detailed reports. | 367 |
 ekultek/pybelt | A collection of tools for hackers and security researchers to explore vulnerabilities and test systems | 511 |
 portswigger/backslash-powered-scanner | An extension for Burp Suite that scans for unknown classes of injection vulnerabilities using a novel approach | 637 |
 keensecuritylab/binabsinspector | Automated tool for scanning vulnerabilities in binaries using abstract interpretation and Ghidra support | 1,573 |
 designsecurity/progpilot | An application security testing tool for identifying vulnerabilities in PHP code | 330 |
 whwlsfb/log4j2scan | A tool that scans websites for Log4j2 remote code execution vulnerabilities using multiple DNS log platforms and supports various scan types | 773 |